firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 19 Oct 2022 01:51:32 GMT
Expires: Wed, 19 Oct 2022 02:19:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6D2yCcbV2mXryYKlDAILAxk3EM1yV5JjcT1jlGe1vSpAJUD8e3xLGQ==
Age: 3152
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10ab470535c002d333b4f27d38b51091
ed3b0850c5d75881de410f7e8ca35e012e38bd38
31d6655d048ec8a62e00125766fea65cde04beae0b11f12ce7f722c9a5f7e232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "31D6655D048EC8A62E00125766FEA65CDE04BEAE0B11F12CE7F722C9A5F7E232"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6691
Expires: Wed, 19 Oct 2022 04:35:35 GMT
Date: Wed, 19 Oct 2022 02:44:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 533e1d53f291993ed5886f88a85c6e55
eb4396e8422f71168d32ac6ff3ef49496f625e62
0d1b73b2a228fe76bf14688e603741025a40803971e05570f873b28788334b33
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D1B73B2A228FE76BF14688E603741025A40803971E05570F873B28788334B33"
Last-Modified: Mon, 17 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8054
Expires: Wed, 19 Oct 2022 04:58:18 GMT
Date: Wed, 19 Oct 2022 02:44:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: c3AESKZ1/Ty3FDLDQ566veKvYM6NJm5fpyX6uf8AjriMD7a3qMPqSwFsWy5Q6xz00QBjaKltAgmE9Tn3ix/T2w==
x-amz-request-id: RW146QYC5T6K5VVM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 19 Oct 2022 02:36:08 GMT
age: 476
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cbdandhempwarehouse.net/
172.67.172.135301 Moved Permanently 162 B IP 172.67.172.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: cbdandhempwarehouse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 19 Oct 2022 02:44:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://cbdandhempwarehouse.net/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rPa5yzJVmBgtBMST%2FM1xZs895zGFXGzG%2BU%2FY8T8WnBfh%2FPl843JxzvcV7bR%2F5RNFSxw75VTW36TxuB3op%2FJpCCR9DSd1LAqAkXNvouYU40nDokv200hUSuVO7XI1u%2BJltrcE5DfZt8XA1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75c62b784b7a0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 19 Oct 2022 02:43:40 GMT
Cache-Control: max-age=3600
Expires: Wed, 19 Oct 2022 03:18:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pU8tCPvEnhTiYYDun-ZzVGAZczrAu3X1T_S3ntnKV0EqrnnslfMmtw==
Age: 25
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c9b278637bdca251f78b46e4a0850473
a48fe5095fc27af1c6b6628149d9e8f655295621
eea38f271e134a85a7b586631a8831888ab81f0edb33120b26bd35cdfa032e52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3607
Cache-Control: max-age=109367
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Etag: "634e5e95-1d7"
Expires: Thu, 20 Oct 2022 09:06:52 GMT
Last-Modified: Tue, 18 Oct 2022 08:06:45 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.74.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.74.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: voyx6AZrv54GEszjVSiJ1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +X9FaTCzlkgOfrZqMs71VSvlYfg=
cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.3
151.101.85.229200 OK 2.5 kB URL HTTP/2 cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.3
IP 151.101.85.229:0
File type ASCII text, with very long lines (6498), with no line terminators
Hash b337d87a81b4df63d2f1798a60bb4769
af3947f6fa2f8497f004546583bd6f223a3305a1
161b8d5632d06c7d1faca533a644dedb8b0338059482116a6d7d73ebc0c02fca
GET /npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.3 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"1962-NLNASu4jwzBScgHcLDtueKdlX1E"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:05 GMT
age: 3871
x-served-by: cache-fra19155-FRA, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2487
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f1f584f5294289a26f40e500dab14186
697e5b41c40afaa664641eb6d83590cc7858cd67
47c2e5b469214a8619f5bbf53ea5ea0b54440daeaee581f419d3e9614cb0785a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5774
Cache-Control: max-age=122341
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Etag: "634e88cc-117"
Expires: Thu, 20 Oct 2022 12:43:06 GMT
Last-Modified: Tue, 18 Oct 2022 11:06:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 776c99c0f98b13ca32f3a135e27c382f
af63ee3d58b338273d49bc6c46a41d351528f22b
2636c3762f530eca7b56930dbd3b17bc134fff48af67e474abddc4a2772ed03b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6067
Cache-Control: max-age=97774
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Etag: "634e27b0-117"
Expires: Thu, 20 Oct 2022 05:53:39 GMT
Last-Modified: Tue, 18 Oct 2022 04:12:32 GMT
Server: ECS (amb/6BA0)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash ff40bcb41afde5ffd318a7ec5c5efb4c
fcc50be7ee817d3af227ed59c28d377e3154fce3
782ffe0a59f358dc7cef8674a419822d248796e2e8d4757759b491a42016dc7a
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 02:44:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "806D17807BB6327671ECAC13A1E5B4234CFCFC8F"
Expires: Wed, 19 Oct 2022 14:00:00 GMT
Last-Modified: Wed, 19 Oct 2022 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1085
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c62b807814b4ff-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c3f38d84af81a6ebfb54697ef4be2cf9
77ec4310967d9c3d4783775fe3e4f9396866314e
f313f3080702cec87eef279b2468901c3d59aa49c0b662eebe907b9360672d49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 00793600302d280c0f99bf96cfb0f009
98cea63c09c9c100bfdfc64ce73946d0a916aafb
31634dcf178009925d65ad67462bfa02c239b5b5f2c9a79aecc3b9a011015957
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
142.250.74.170200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
IP 142.250.74.170:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 12:49:23 GMT
expires: Tue, 17 Oct 2023 12:49:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 136482
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.getresponse.chat/embedded_chat.js
151.101.65.195200 OK 5.9 kB URL HTTP/2 i.getresponse.chat/embedded_chat.js
IP 151.101.65.195:0
File type ASCII text, with very long lines (21955), with no line terminators
Hash 7443cbf6eb780b0e2494d63169bb56bf
d2a73b5ac48f709ee9b8b5fa63f2aaee5e3141d4
0b263d312ee52651defd05a13d8cdaa7c3408932d0af071dc70632f414d3f693
Analyzer Verdict Alert quad9 Sinkholed
GET /embedded_chat.js HTTP/1.1
Host: i.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=7200
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "89e367aaf61251fe21f01b1a2992b3e4e9bc4d7f7de03b6221d491e578496fda-br"
last-modified: Thu, 29 Sep 2022 11:30:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:05 GMT
x-served-by: cache-bma1620-BMA
x-cache: HIT
x-cache-hits: 4643
x-timer: S1666147446.874798,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5854
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-161834684-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-161834684-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1850)
Hash ff63247d6ed91116411468554366d055
fba7e859e746a71ad570a0169ad1c35979e4ff55
bbf643330467afab616bb67994d38125a24c6c5e18a6442dbceb7ed004633fff
GET /gtag/js?id=UA-161834684-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 19 Oct 2022 02:44:05 GMT
expires: Wed, 19 Oct 2022 02:44:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44080
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
IP 142.250.74.3:0
Hash 40c1df591dd297eac679c416df1cc586
9498c67bfb182859e17c0d9a877913252ae7a06e
c39187d45c0a5f2022e74460e8fd070e5382eeb20ad5db38f970273a66578044
POST /s/gts1d4/0jSY8c0wwQY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f1f584f5294289a26f40e500dab14186
697e5b41c40afaa664641eb6d83590cc7858cd67
47c2e5b469214a8619f5bbf53ea5ea0b54440daeaee581f419d3e9614cb0785a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5774
Cache-Control: max-age=122341
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Etag: "634e88cc-117"
Expires: Thu, 20 Oct 2022 12:43:06 GMT
Last-Modified: Tue, 18 Oct 2022 11:06:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6016dea5f80664eb009e16dd4989630a
b0aa29f72bd449aa2f33c7f9f531067fa741a6da
5dd595913b3fa11b3a64d2636abd887fa2d7dd85e16a2095d83431adf23408d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 71579834b14c6f22e0463e2694c4a45a
03fb37375ba385f5ab14738672a24ea7a2d14489
52a03a85c8af2358e4205fce04f0c527c39734f08babb39df297a30fb2a227bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer
142.250.74.168200 OK 66 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer
IP 142.250.74.168:0
File type ASCII text, with very long lines (2996)
Hash e3d97040ce4d4564810c403863d2ba79
69a9b446679ba28aec5fa3d18f46a7624b71d324
3f4bba3e362abb0db6940bf1dabd4c861b9923108c69495f2ea5441a42b57df2
GET /gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 19 Oct 2022 02:44:05 GMT
expires: Wed, 19 Oct 2022 02:44:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65632
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0a06ebc121a52a0a11efc0922cfd097c
723a192bff8ac6d82485de2d8228ff3b92223883
0c47de212153f4ee986bf798fe327257072f1e76f2ff417903f10c5391c35659
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0c7910c87c4cc6c11b2dbc7380f082a1
71eeb386564844634f372b76b7ab84cc77550c6f
b880e782e1ae4089ba9be5879dc53165470cb4d6b29f11dda55c7b2ec5a86ab1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 19 Oct 2022 02:44:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 18 Oct 2022 20:44:03 GMT
Expires: Wed, 19 Oct 2022 20:44:03 GMT
ETag: "71eeb386564844634f372b76b7ab84cc77550c6f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0c7910c87c4cc6c11b2dbc7380f082a1
71eeb386564844634f372b76b7ab84cc77550c6f
b880e782e1ae4089ba9be5879dc53165470cb4d6b29f11dda55c7b2ec5a86ab1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 19 Oct 2022 02:44:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 18 Oct 2022 20:44:03 GMT
Expires: Wed, 19 Oct 2022 20:44:03 GMT
ETag: "71eeb386564844634f372b76b7ab84cc77550c6f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1118ddf63f8b8ec9d526353200114556
ff7de0bad8f036b126e9687366ed2ba4c6adf6c8
e5b76219f19c1478570f9f75ca83acedb30c89e8467444e1e68b894e94df4154
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5012
Cache-Control: max-age=112588
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Etag: "634e65ae-117"
Expires: Thu, 20 Oct 2022 10:00:34 GMT
Last-Modified: Tue, 18 Oct 2022 08:37:02 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1118ddf63f8b8ec9d526353200114556
ff7de0bad8f036b126e9687366ed2ba4c6adf6c8
e5b76219f19c1478570f9f75ca83acedb30c89e8467444e1e68b894e94df4154
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5012
Cache-Control: max-age=112588
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Etag: "634e65ae-117"
Expires: Thu, 20 Oct 2022 10:00:34 GMT
Last-Modified: Tue, 18 Oct 2022 08:37:02 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
us-central1-grchat-d3548.cloudfunctions.net/buildButton
216.239.36.54200 OK 45 kB URL HTTP/2 us-central1-grchat-d3548.cloudfunctions.net/buildButton
IP 216.239.36.54:0
File type JSON data\012- , ASCII text, with very long lines (59407), with no line terminators
Hash 38f39081946bb674558fea5f10f8abcb
f6fee465a745651564111893fa76fcbd1615d0a7
4ce167d0bb5468a000a78405d5280e733a42abbbdd70e651c17f60d38f7dcb93
POST /buildButton HTTP/1.1
Host: us-central1-grchat-d3548.cloudfunctions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 212
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=utf-8
etag: W/"e80f-5VljlaUqxMaAB0VMMrIuXIw/JBM"
function-execution-id: phgxqk6eb6ka
x-cloud-trace-context: 4d1842edaa39085b372fca3b52848204
content-encoding: gzip
date: Wed, 19 Oct 2022 02:44:06 GMT
server: Google Frontend
cache-control: private
content-length: 44704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2a19448b4d96028081c621c46a5f3119
21cbe08c402f4c3b9f963cfb3a3ecfc0941aa06e
dd555b4fcfd17a907607379511d5b376808b90dd5a8452ed53f274f0531130fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 04e7e8d4173105fb56dfd8f6a9f11f12
c077a94eb1ade408197c1e61e142f5b14cbd84c4
5406ca695d74b86e4198b2661fa7d835b5695d7d40c6cb9048ec893581035b94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oeah0&_p=1392698127&cid=34403000.1666147454&ul=en-us&sr=1280x1024&_s=1&sid=1666147454&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oeah0&_p=1392698127&cid=34403000.1666147454&ul=en-us&sr=1280x1024&_s=1&sid=1666147454&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PR6SN12QDF>m=2oeah0&_p=1392698127&cid=34403000.1666147454&ul=en-us&sr=1280x1024&_s=1&sid=1666147454&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cbdandhempwarehouse.net
date: Wed, 19 Oct 2022 02:44:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
151.101.1.195200 OK 598 B URL HTTP/2 guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
IP 151.101.1.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1837), with no line terminators
Hash c95c415f805a226a9f6c1fc1d2265c11
1f901710a1cfbd9508454dd6afc59c86eaf5c764
a88ed36cb80fe79aedfa94d292375794e28cb1fab834bcb47bbcada5a1261689
Analyzer Verdict Alert quad9 Sinkholed
GET /?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "b5c903ecdb87cfa216a5ef4000a5ac6711579bd40a4f6537456f3f0e3e12e01e-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:06 GMT
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666147447.801896,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 598
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/FontManifest.json
151.101.1.195200 OK 2 B URL HTTP/2 guest.getresponse.chat/assets/FontManifest.json
IP 151.101.1.195:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/FontManifest.json HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: application/json
etag: "6731668a37f6a3ed10d77860e21c7ba693c377a061571ffa58564d1d699c1798"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:06 GMT
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666147447.836707,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
151.101.1.195200 OK 968 B URL HTTP/2 guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
IP 151.101.1.195:0
Hash 04c4be414fc775ab8172a821b496c7ed
3d8855b0c1048a4010b91470243a5a42154592c6
2a458242cf467be06d299f380badb7f9826e40c055473691928702df111ca08c
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/yaml_translations/guest_en.yaml HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/yaml; charset=utf-8
etag: "88f8d553780e0f2d677618727035d9d9a0cfa14479356f18835ebe652cec729a-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:06 GMT
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666147447.838632,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 968
X-Firefox-Spdy: h2
guest.getresponse.chat/initialization.js
151.101.1.195200 OK 571 B URL HTTP/2 guest.getresponse.chat/initialization.js
IP 151.101.1.195:0
Hash 1954309ff1fdea4693242a8674b85b59
5ae3c31a55596395e009fabcfe4c5f9e392251d8
ff2f8e7ab8427effd26efa3d9dc7fc5bb39cc19c41cdae129bd91ffa009888eb
Analyzer Verdict Alert quad9 Sinkholed
GET /initialization.js HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "6edb4debc86d53721262d354d31a4aec8e4231ce49b666fb9189f78ffa26dc8d-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Wed, 19 Oct 2022 02:44:06 GMT
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666147447.849792,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 571
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c190204159a1cbcfa30e3b35639f47ef
37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5
54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12460
Expires: Wed, 19 Oct 2022 06:11:46 GMT
Date: Wed, 19 Oct 2022 02:44:06 GMT
Connection: keep-alive
www.gstatic.com/firebasejs/8.10.1/firebase-app.js
142.250.74.163200 OK 7.0 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-app.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (22079)
Hash 937437225b56acc577b564e7a0b0278d
6934c4e50ac4a556f8d37d893521e74335e8676d
77d835d35239fed2528972a36a734991e34f5212b42d5b16e51e5c07ccb86e75
GET /firebasejs/8.10.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 7003
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 18:27:27 GMT
expires: Fri, 13 Oct 2023 18:27:27 GMT
cache-control: public, max-age=31536000
age: 461799
last-modified: Fri, 28 Jan 2022 20:19:14 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c190204159a1cbcfa30e3b35639f47ef
37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5
54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/8.10.1/firebase-performance.js
142.250.74.163200 OK 12 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-performance.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (38288)
Hash 5e00eb63f8d5d9e4bc19d42a52c110a8
bd2203b3fffe50b24d5ab2ee789a267341518ceb
1f3d548445f4c87b16ddd6054831d1c38c8e7569dd976b5f2e112d84a6501805
GET /firebasejs/8.10.1/firebase-performance.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 11644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Oct 2022 20:36:29 GMT
expires: Mon, 16 Oct 2023 20:36:29 GMT
cache-control: public, max-age=31536000
age: 194857
last-modified: Fri, 28 Jan 2022 20:19:10 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c190204159a1cbcfa30e3b35639f47ef
37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5
54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05c7bc81-316c-4f0d-bb3e-28d892d65e29.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05c7bc81-316c-4f0d-bb3e-28d892d65e29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccb0f6ae2ffc84b77d6048ab25ab3c91
4cbe904deab4f29866b499d55c0cd646de67fdb8
743c9908b18412433934d58665bd5c5aeded03cc48be57e916a43f79e2c664b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05c7bc81-316c-4f0d-bb3e-28d892d65e29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 3f5c3e27-e6e2-45b1-a986-853dbfbe2813
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFBfEbJoAMF-iQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1ba2-6a359b2847d892f12bb2b9a4;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8EHDb0C1ZGKbEfs8XDoBis3QUhH-Igwdcv0q0FChhX3biFeqJfnsA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 22:07:58 GMT
age: 16568
etag: "4cbe904deab4f29866b499d55c0cd646de67fdb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c190204159a1cbcfa30e3b35639f47ef
37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5
54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/8.10.1/firebase-database.js
142.250.74.163200 OK 52 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-database.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 28bce7d9c817ae3d6f571d19abf50499
c3f9c92a84e38d81f14866be9b4ab6fb265c928f
b6484f42b89f863c1c9d028d47b0704d7a61d44854f734d7861d826364a6193b
GET /firebasejs/8.10.1/firebase-database.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 52327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 11:02:54 GMT
expires: Tue, 17 Oct 2023 11:02:54 GMT
cache-control: public, max-age=31536000
age: 142872
last-modified: Fri, 28 Jan 2022 20:19:13 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc809406-f843-4494-9a76-eab77bec4daa.jpeg
34.120.237.76200 OK 35 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc809406-f843-4494-9a76-eab77bec4daa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b683fafb36238c7da6be76247f60600b
e975f7a307a970ab45b03f861fd7d875ec66028d
b65fa7f3e7e0d999ebdfc1a4beb74e21221e4ceabd9e57ed0af6ab4560e12fdd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc809406-f843-4494-9a76-eab77bec4daa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 35276
x-amzn-requestid: 6e8a79ad-d0f3-4290-a1ed-ef9b1239f193
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFApGzbIAMFRGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1b9d-65cf1b926ab122b1716a2983;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:17 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hPbTIgByMSbi22qlqk74Vk8h6AWf5DxSWDZHjew5y-RHl6X0uRu_wQ==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:42:49 GMT
age: 18077
etag: "e975f7a307a970ab45b03f861fd7d875ec66028d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
omnisrc.com/inshop/launcher-v2.js
172.64.149.25200 OK 18 kB URL HTTP/2 omnisrc.com/inshop/launcher-v2.js
IP 172.64.149.25:0
File type ASCII text, with very long lines (32010)
Hash f49eec721db2d70916b320ba51acbc5d
1788b8cf003af85f9238880d61467b7cad99495e
8c5b8a00a45fdeba88c32cc4f2b99a617b877c2bd59529943669fa42a2659f9a
GET /inshop/launcher-v2.js HTTP/1.1
Host: omnisrc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:05 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 10:58:52 GMT
etag: W/"63469dec-d514"
expires: Wed, 19 Oct 2022 03:28:42 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 923
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 75c62b804c6db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
142.250.74.163200 OK 57 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a6d32f510ddf08b185ef622c74199cbe
a87acea8483e9dbd1cd9bd745f26692d3df9ffb6
ec405abbd3327f578ef346ed97fd9cd00016f51eccd7e73057da65f1f5e149f1
GET /firebasejs/8.10.1/firebase-auth.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 56948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Oct 2022 19:56:28 GMT
expires: Sun, 15 Oct 2023 19:56:28 GMT
cache-control: public, max-age=31536000
age: 283658
last-modified: Fri, 28 Jan 2022 20:19:10 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39da57495ea698fe534e5d166081a28f
ce392e596465ef9bacb1ad517a7053b6d9cf34a8
417e0dc9684cf6244b1ef78fb58b18d8eed290b4da174030cd6567229c085b88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13134
x-amzn-requestid: 69c84abf-826b-4505-b72b-068af95e12e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z09pjGkuIAMFa7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63450fd6-3966cd917655b77a0c593bbd;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 06:40:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Yw2PvUwQCYySco1JuFpEN32eAOceHvq-d_5SuHyq0XyAqJxgVrJ6BA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:50:30 GMT
age: 17616
etag: "ce392e596465ef9bacb1ad517a7053b6d9cf34a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97a40388-4af0-420d-bed9-b95e11c797a2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97a40388-4af0-420d-bed9-b95e11c797a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af15d820ca84500be65f5d6df5e4f68d
b62e825f4ca21fb1caebbc8c3ba51f42c99c1e7d
b64a6e7d9a74d7cb273b2bb6abad92c2b9b236edf3144f7e79bf872bf77e8086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97a40388-4af0-420d-bed9-b95e11c797a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10533
x-amzn-requestid: 9860aa35-699e-4903-bb76-82708f4d0f47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aH05UEN7IAMFsNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c9b6e-2cbc5b1c281887c4504b5333;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 00:01:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: C1Arrm8Zqkx8hoBiylbdu0GaYCFBRKel3XEfxJiyb0fkJq6IjVP3Hg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 07:36:58 GMT
age: 68828
etag: "b62e825f4ca21fb1caebbc8c3ba51f42c99c1e7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
verify.authorize.net/anetseal/seal.js
104.18.17.243200 OK 2.6 kB URL HTTP/2 verify.authorize.net/anetseal/seal.js
IP 104.18.17.243:0
File type HTML document, ASCII text, with very long lines (1348)
Hash d281e736ec30c19cd728cefce542f030
81a3861c4621f56dcaaf1f66b5ac2336094b8439
8cf85eaa7df6c7dba4243a63fdebf01e239aefa978f00eb2fb6fb6b2d3d7ba50
GET /anetseal/seal.js HTTP/1.1
Host: verify.authorize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:05 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4007
etag: W/"0504eb1bf95d61:0"
last-modified: Mon, 28 Sep 2020 17:49:20 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 487
expires: Mon, 24 Oct 2022 02:44:05 GMT
cache-control: public, max-age=432000
set-cookie: __cfruid=f4d778dd8c2a27adbf5ed3e81b5b442da0ef3b7b-1666147445; path=/; domain=.authorize.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 75c62b80aed10b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4f7fb1-6ff7-4200-a364-c7687de3e6cd.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4f7fb1-6ff7-4200-a364-c7687de3e6cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b73891cfdb1a7b7316613e97d6f71c8d
af847fead79d25ce1f0fdc3bb7f043e834998090
035d0c6ae1c041f1ad77becefc57685de9b039a1e15c081009ba2b5f01ddfac8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4f7fb1-6ff7-4200-a364-c7687de3e6cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: d76e8a53-63e3-492a-9480-62e767424032
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aBq4HGcToAMFkYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a2500-5bf304b04114c31d15c008c4;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 03:12:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SJB7Qbhv21noYVMkseuzk3Yy4UnzK07DujhkiKwFf6xUxNLVCRtrRA==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:42:49 GMT
age: 18077
etag: "af847fead79d25ce1f0fdc3bb7f043e834998090"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c190204159a1cbcfa30e3b35639f47ef
37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5
54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 02:44:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
205.185.216.10200 OK 36 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
IP 205.185.216.10:0
Hash 307ab54c8180eedafcf5acb2577ac7ac
6e1b5aa308a2948f036c8f43c84235fd5cf841c1
7892c3c718e61ac2d647e0ce3799ee863d11c8ab983020ef78d65d5d5c8af946
GET //javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:08 GMT
content-encoding: gzip
content-length: 744
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-5f4"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1666147448.dop002.sk1.t,1666147448.cds066.sk1.hn,1666147448.cds221.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
205.185.216.10200 OK 6.7 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (28294), with no line terminators
Hash 64d94c8358b6661de4a2e642f3d7b76a
4783af52d81da2921d6dbe1b4e523dcdd4ffc4af
11fb7bf38897c1fb12995f1f94a390775c66a00c9c3858271e49ed4a5e58bbb5
GET //javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:08 GMT
content-encoding: gzip
content-length: 6652
content-type: text/css
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-6e8a"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
server-timing: dtSInfo;desc="1"
x-hw: 1666147448.dop002.sk1.t,1666147448.cds066.sk1.hn,1666147448.cds228.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
205.185.216.10200 OK 10 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
IP 205.185.216.10:0
Hash a1a47800674f9acf9e0a98e4151b6b84
efb9d3b8b81fa0006c6f292dda62a070148ef379
954c953d3d5f249a2d47c56ae9200a2a368ee6655836362df287d8d8e565b69a
GET //javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:08 GMT
content-encoding: gzip
content-length: 10132
content-type: application/javascript
last-modified: Wed, 05 Oct 2022 13:49:14 GMT
accept-ranges: bytes
server: nginx
etag: W/"633d8b5a-7edb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1666147448.dop002.sk1.t,1666147448.cds066.sk1.hn,1666147448.cds066.sk1.c
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
104.160.64.9200 OK 91 kB URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (51026)
Hash 9e575bc0dc8ef104a36861c6c2e0665b
a8fc3514bf7b881e5f3223912bf6a6db205a6da0
50b68f1839b768c513f80a3d6ae3f093315719b46430bd6bf7805a9021a5b1b6
GET /site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Wed, 19-Oct-2022 14:44:08 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Sun, 18-Dec-2022 02:44:08 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_60018804=0; expires=Fri, 17-Feb-2023 02:44:08 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
104.160.64.9200 OK 3.6 kB URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9813)
Hash 385404db0d8d69a0935d66fee1986985
e8472639ab14670669b0aed10e7aa588d25791b6
40f5a6e8efd275bcbc22a376d9b09c0d6407c578ae562b1568d2f5a1e48c001d
GET /site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Wed, 19-Oct-2022 14:44:08 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Sun, 18-Dec-2022 02:44:08 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_65297604=0; expires=Fri, 17-Feb-2023 02:44:08 GMT; Max-Age=10454400; path=/
dtCookie=v_4_srv_6_sn_611B01DDDA9F55625C025262ADF52C1E_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0_rcs-3Acss_0; Path=/; Domain=.getresponse.com
x-oneagent-js-injection: true
x-ruxit-js-agent: true
server-timing: dtSInfo;desc="1"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/ruxitagentjs_ICA27QVfgjqrux_10249220905100923.js
104.160.64.9200 OK 122 kB URL HTTP/2 app.getresponse.com/ruxitagentjs_ICA27QVfgjqrux_10249220905100923.js
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type ASCII text, with very long lines (2058)
Size 122 kB (121975 bytes)
Hash 5bd8ffd773b282def04e0d42317a8e99
1efe17ab97715bad2c2cdb1e52db7a7dcfd6f953
1b51b4e0ee603d9c89ad49008ebe9f1b7493deb4f6024df3d0978e738cd09bb8
GET /ruxitagentjs_ICA27QVfgjqrux_10249220905100923.js HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/javascript; charset=utf-8
content-length: 121975
content-encoding: gzip
expires: Thu, 19 Oct 2023 02:44:08 GMT
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 03 Mar 2010 07:01:40 GMT
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
104.160.64.9200 OK 1.4 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b08ace12a07a95ad4355eae9ed7152ee
92460c536f0548b514f3e8f6c317956c3ba42b7e
55adbd2da891dc3cad9c9b7a3796d51906bfd5b2f68c5634752080b7873a7b7f
GET /images/common/templates/webform/105/1/img/105_02.png HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: image/png
content-length: 1430
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: "6315edfe-596"
expires: Thu, 20 Oct 2022 02:44:08 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 24 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
Hash 4b0e65f0dcdc40bc74436264d5b1890b
3dc9324ed2db48218c4fba23ee1bdc78a0830629
d1a6dbf8a7fc6562b3bd881f2577efd57daa7ec913e8a2e34113a810bc5e785e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 19 Oct 2022 02:41:09 GMT
expires: Wed, 19 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 179
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
us-ms.gr-cdn.com/getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png
205.185.216.10200 OK 294 kB URL HTTP/2 us-ms.gr-cdn.com/getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png
IP 205.185.216.10:0
File type PNG image data, 1181 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size 294 kB (294362 bytes)
Hash 21686b9e89eb77aaca0d58592f843031
06b6a53e45e66a0d4f53d7a2fd3976646755a651
ac633d04f6c4028e4d4cf631b30a3ffdfdd6ae7421e32f1115c67c54dfe491d9
GET /getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-length: 294362
content-type: image/png
x-hw: 1666147448.dop002.sk1.t,1666147448.cds066.sk1.hn,1666147448.cds222.sk1.p
timing-allow-origin: *
server: nginx
x-amz-id-2: r7ZDELj22cWRIX9kxefag1XTbCDxUmuel4R/bpJNWnUrhS61B7LRD9pbLFYf1TmJK3/AJahdLfE=
x-amz-request-id: 0B1MAB5PAGX33R0Q
etag: "21686b9e89eb77aaca0d58592f843031"
x-amz-version-id: Y679sWJ9z5tB5jSJhS40hztJ449fnZ34
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
last-modified: Mon, 08 Feb 2021 22:28:24 GMT
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
104.160.64.9200 OK 22 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 864a2e7f89e97561894f44cbe3583f62
50c193cfedc4be294f26ef78a9e74c5e8af3f368
1ca6cb7934d8316f2db6baa8ecd9e3d7375b6ad22e32ea05e2a126a8c499adc2
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2
IP 216.58.207.195:0
Hash 66871c513e2e8684f5f3c6616dc16be8
4cd88d19fe61f8f6f744021f61de77742b849e06
f1a8f7c79d68ddca893f803804e6c69ca3b4c64ed9cd31c724dbf26d627f4ccf
GET /s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 20:05:27 GMT
expires: Tue, 17 Oct 2023 20:05:27 GMT
cache-control: public, max-age=31536000
age: 110322
last-modified: Tue, 19 Apr 2022 19:03:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
IP 216.58.207.195:0
Hash 4cd23de4037cd805a1279ae81b81706e
6e55343a6c9eae612e856b3ac476d3c9ab7915de
dfd817ed7236a0dfc6d59afa0b64ccdcae14e1177448859304cce596f24c18eb
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 18:23:03 GMT
expires: Thu, 12 Oct 2023 18:23:03 GMT
cache-control: public, max-age=31536000
age: 548466
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
IP 216.58.207.195:0
Hash 376a75df2bc27ebec4c17ab494b9f913
3ff9c3959de2d4d85c798218583245e39b519027
70ffa3616320357a8d67ac3590acf94ed2e0bd5a40fe32e166e2c47f3123f201
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 06:29:51 GMT
expires: Fri, 13 Oct 2023 06:29:51 GMT
cache-control: public, max-age=31536000
age: 504858
last-modified: Mon, 11 Jul 2022 20:56:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
216.58.207.195200 OK 43 kB URL HTTP/2 fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
IP 216.58.207.195:0
Hash 2a0ea9cf17be706a3a78721b9aad730d
9881d90386fb51cc2eeabda43571f12b51b43d12
3ad52e00c120947b90bc37694b8ea11410793c2232465ccdbaf582618383e03d
GET /s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 06:50:32 GMT
expires: Fri, 13 Oct 2023 06:50:32 GMT
cache-control: public, max-age=31536000
age: 503617
last-modified: Tue, 19 Apr 2022 19:00:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6Mk.woff2
216.58.207.195200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6Mk.woff2
IP 216.58.207.195:0
Hash 1a748f4f8cd5474c274874d9cca38a1b
b28f48ca523e61adbed26ff938c1ef9b8354c2ca
ab9a64411457610c4e2be3e44bca5b654022b9ed91b4fdc9e9c31a855149d004
GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6Mk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 06:42:40 GMT
expires: Thu, 12 Oct 2023 06:42:40 GMT
cache-control: public, max-age=31536000
age: 590489
last-modified: Mon, 09 May 2022 18:34:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
Hash b141ec2fe24014cb91ecb362277c94cf
7ccf6e9143a55bd39d4a08aeb3772f14f7cff42a
2b8900737f31bb1ecb091b59c25d88b4267124a2530c086c982592a963e5a71e
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 17:10:21 GMT
expires: Wed, 18 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 34428
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19712, version 1.0\012- data
Hash a855eba47cc044358626219a19b78d72
01e8ab7dd57bc7edaef52a00a776758cf5ab25ff
9492399746a3054c37f3e8e6a3d3f4799490697a3971a89a6449537612630b0d
GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 05:46:23 GMT
expires: Fri, 13 Oct 2023 05:46:23 GMT
cache-control: public, max-age=31536000
age: 507466
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
IP 216.58.207.195:0
Hash 7aa985768d9d0b00352034eac9981b3e
ae32b06a0593058c893fc5bba9c8b2dc5afcee0a
07c2c4988eea17acbc98411127b7fb047d4d768797b1a53eaec74ef62d8498ea
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:08:14 GMT
expires: Tue, 17 Oct 2023 21:08:14 GMT
cache-control: public, max-age=31536000
age: 106555
last-modified: Mon, 18 Jul 2022 19:13:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
IP 216.58.207.195:0
Hash 415fd3d3a6507508d1ab9386bdc1b885
ff4888adad21a79295132f83c293ea5d3348a4a5
93ff94131e886c192df1b782c2027d63c2227b35b91a00d936fe9f82ff812872
GET /s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Oct 2022 00:38:24 GMT
expires: Sat, 14 Oct 2023 00:38:24 GMT
cache-control: public, max-age=31536000
age: 439545
last-modified: Thu, 21 Apr 2022 17:07:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
IP 216.58.207.195:0
Hash 9bf892dbfbeffb709466472d94d8ce15
f9101f00e678021d61a8e76198a5876c5d4ad110
c8b8720ff96cd4132947283832261b4960c4fab0d6adbd20cc39727672245bea
GET /s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 22:27:02 GMT
expires: Wed, 18 Oct 2023 22:27:02 GMT
cache-control: public, max-age=31536000
age: 15427
last-modified: Tue, 19 Apr 2022 19:39:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
IP 216.58.207.195:0
Hash 33090a9a322d3a086afb130c166589e1
27a1f970c5aa94c58d95804b88f940e18fafdeaa
f6818f5a76872df28929a10d8be6b6f0cf8c022112bd22b309a04262e41b0a38
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25716
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:18:28 GMT
expires: Tue, 17 Oct 2023 21:18:28 GMT
cache-control: public, max-age=31536000
age: 105941
last-modified: Mon, 18 Jul 2022 19:17:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
216.58.207.195200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 29440, version 1.0\012- data
Hash 4b99ce7b01453671b66feda5899ce4bb
fbfdd01952861ad8ae8ed992339fb7b5eb0472aa
ff273685b39a91b5e4111b70325051e45d3ef9e8e6b808b0fd35de19043a9f76
GET /s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 02:37:42 GMT
expires: Wed, 18 Oct 2023 02:37:42 GMT
cache-control: public, max-age=31536000
age: 86787
last-modified: Mon, 09 May 2022 19:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
IP 216.58.207.195:0
Hash 110f1dc552adbb31cd6a90ad907fcdbd
4323276de45d7d2ee7a556675536c4122f36e24e
16e0cf3a8fb57fd15917ea590803e3b92c1aa9b28bed8bedc90479323379965f
GET /s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Oct 2022 00:47:59 GMT
expires: Sat, 14 Oct 2023 00:47:59 GMT
cache-control: public, max-age=31536000
age: 438970
last-modified: Thu, 21 Apr 2022 17:21:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
216.58.207.195200 OK 37 kB URL HTTP/2 fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
IP 216.58.207.195:0
Hash b38f1dd2f23396f423839a8811275820
1960329c8bcdb57cb042067cfb97547318ac2625
292a2f1f54503e73bfbe7ea640b041a3fefc14618c188da896fb8904b2f78e5a
GET /s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Oct 2022 05:24:22 GMT
expires: Sat, 14 Oct 2023 05:24:22 GMT
cache-control: public, max-age=31536000
age: 422387
last-modified: Thu, 21 Apr 2022 16:20:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
IP 216.58.207.195:0
Hash 3862f7166d51631aa56e0f619f34dbf6
67485866f11ab8987b14710bba9f7495f087d4d6
1586019231f96ceab31a8751ce4e45507393f6f3713ed7808b51ad8b5084dab0
GET /s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 22:09:40 GMT
expires: Thu, 12 Oct 2023 22:09:40 GMT
cache-control: public, max-age=31536000
age: 534869
last-modified: Wed, 27 Apr 2022 16:59:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
IP 216.58.207.195:0
Hash 4ee63f68c8fb3e52076b6c99802a754e
bf9316a658e75579d3cf6eef69da7c80ea56ab4c
b5e2656882fd98bffe18c8f7f8d7517c4e18643f8b77cf3a77e331866b98cede
GET /s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 01:12:09 GMT
expires: Wed, 18 Oct 2023 01:12:09 GMT
cache-control: public, max-age=31536000
age: 91920
last-modified: Mon, 09 May 2022 18:42:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP 216.58.207.195:0
Hash 34a65a3439f4954ec2bab693084e0885
1a67285c49b1e5a948147be5730330343b0851c2
38b4ad88980b776c73326a7feb3c266d4bbf1ed122299054b94a56668fa41617
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 41852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:10:15 GMT
expires: Tue, 17 Oct 2023 21:10:15 GMT
cache-control: public, max-age=31536000
age: 106434
last-modified: Mon, 18 Jul 2022 19:45:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
216.58.207.195200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
IP 216.58.207.195:0
Hash b502636155343be1ef5253d89b7d0187
b258431e8c1021926df394de89524471aa796ef9
dc99104b0b7c385053ff4959dbe14673f810ca619b2fa289fc2cd82445cd1517
GET /s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 19:01:19 GMT
expires: Tue, 17 Oct 2023 19:01:19 GMT
cache-control: public, max-age=31536000
age: 114170
last-modified: Mon, 15 Aug 2022 18:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
216.58.207.195200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9684, version 1.0\012- data
Hash e081c14e5155024f33290cbae0803e99
f06b0a029836182c5b20cba1354c68d5ce4095a2
3fc8675e44a4f7815cde49d0b05a46fbe21ffb2c68d8a64931bed7cf494724cf
GET /s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 21:40:42 GMT
expires: Thu, 12 Oct 2023 21:40:42 GMT
cache-control: public, max-age=31536000
age: 536607
last-modified: Wed, 27 Apr 2022 17:10:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
104.160.64.9200 OK 20 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 6710ef55b43bf50469717378fcaa2e06
65abe3a66726f9ac2bacc3983f2d031bc60488ba
c1ebaacf4081d7f6ddb8fa6bab0b64216a5990419746efb3f0360a371e860e70
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/monoton/v15/5h1aiZUrOngCibe4TkHLQg.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/monoton/v15/5h1aiZUrOngCibe4TkHLQg.woff2
IP 216.58.207.195:0
Hash b640c3e76246c157727b307aa4cd4c8b
dded88a3b584adbe1c0ee6da99f1e7d7c927c19d
6d397111acb75c46d056486f66ad6db768a5225674ad512f0e6269dfbfc68d45
GET /s/monoton/v15/5h1aiZUrOngCibe4TkHLQg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 22:13:11 GMT
expires: Wed, 18 Oct 2023 22:13:11 GMT
cache-control: public, max-age=31536000
age: 16258
last-modified: Tue, 26 Apr 2022 15:00:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
216.58.207.195200 OK 37 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
IP 216.58.207.195:0
Hash 8d39cae1180cf42b4d9f62dd85e803a0
1551ca61add16dbe568c916b134db9cf8a313273
2082d025de4f7eac86f049a90c5f487db654a50b0e2cf154e2e2db5655b7490c
GET /s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:09:43 GMT
expires: Tue, 17 Oct 2023 21:09:43 GMT
cache-control: public, max-age=31536000
age: 106466
last-modified: Mon, 18 Jul 2022 19:34:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
216.58.207.195200 OK 52 kB URL HTTP/2 fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
IP 216.58.207.195:0
Hash 966dae2b6563156d80117de6010cbda6
7f06ddacfcfbe2a1ff27f67f5c5588498016a68c
52b6043db5f2102aa5275eb6be1254dabb7edef57707ad50a0e80fb38d710ef6
GET /s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 17:58:09 GMT
expires: Wed, 18 Oct 2023 17:58:09 GMT
cache-control: public, max-age=31536000
age: 31560
last-modified: Tue, 26 Apr 2022 15:01:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hanalei/v23/E21n_dD8iufIjBRHbz8sVg.woff2
216.58.207.195200 OK 49 kB URL HTTP/2 fonts.gstatic.com/s/hanalei/v23/E21n_dD8iufIjBRHbz8sVg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 49392, version 1.0\012- data
Hash 6959dbaffd9b47c4300f971d201170ea
e1e1c1cf09932e506cdb6e25e98f1ddc86a29f60
64e6e7b2931ebd691eddc68b6d4bf9ed3584fc25efe1a70eacfde080060355a8
GET /s/hanalei/v23/E21n_dD8iufIjBRHbz8sVg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 49392
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 02:25:57 GMT
expires: Tue, 17 Oct 2023 02:25:57 GMT
cache-control: public, max-age=31536000
age: 173892
last-modified: Thu, 21 Apr 2022 17:01:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cbdandhempwarehouse.net/
104.21.30.86200 OK 0 B IP 104.21.30.86:0
GET / HTTP/1.1
Host: cbdandhempwarehouse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Tue, 18 Oct 2022 15:49:31 GMT
x-cache-status: STALE
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rMTSvAii5hTQy3Jms3lhrr%2F9YoBOYNyOALME1juGFF%2BiD8MzKNDiK30IZ3P%2FaMNLcriXLAimhghvBqK%2BkmvTYkg0D34BKXf%2FpGrZQ2qxNpIWjRW7oRrNuXAnI6cSuKsvDC%2BFw3f2PY6RHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75c62b7aae74fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /view_webform_v2.js?u=TSB&webforms_id=zvAgt HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:06 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /stylesheets/core/pages/webFormV2/public/gr_wf_v2.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 13:14:11 GMT
etag: W/"634ea6a3-1fd8"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/111/5/style.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/images/common/templates/webform/111/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /images/common/templates/webform/111/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-13d1"
expires: Thu, 20 Oct 2022 02:44:08 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
omnisnippet1.com/inShop/forms.js?v=2022-10-19T02
104.18.40.169200 OK 0 B URL HTTP/2 omnisnippet1.com/inShop/forms.js?v=2022-10-19T02
IP 104.18.40.169:0
GET /inShop/forms.js?v=2022-10-19T02 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:06 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 10:58:52 GMT
etag: W/"63469dec-20189"
expires: Wed, 19 Oct 2022 03:03:10 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 2
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2456
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 75c62b824943b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /view_webform_v2.js?u=TSB&webforms_id=zhN5J HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:06 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_4_sn_FE3B2CD5B5F91EB0BE5EED023B808416_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0_rcs-3Acss_0; Path=/; Domain=.getresponse.com
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
IP 172.64.132.15:0
GET /releases/v5.2.0/css/all.css?ver=5.2.0 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 19 Oct 2022 02:44:05 GMT
content-type: text/css
x-amz-id-2: esA3gTfQa/sHyRcUUQY86ON0DyE1wbYSGU042/n7G9AA5HXJWNmGwbtTSt6811624UAzrLNd9sc=
x-amz-request-id: ES6B7A1PDMBPMR1T
last-modified: Wed, 30 Jun 2021 15:41:36 GMT
etag: W/"20a9ce516eaea76da29a23adc43e8998"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 30914455
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rxNfpZeM6Gh02PvCv41EqaJTav7hh1zEeeARvUyksaKIuY%2BRoPU8WApm6UjjNxXDYyyrqhJdzNQmrsZanD7oxb%2FE82sqlYKYS%2FPi%2BAzN1SAppb44QPR%2BMPoxAr%2FY%2Fe0vHl4uaUrX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c62b807fb275e1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/5/style.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /images/common/templates/webform/105/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 02:44:08 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-1459"
expires: Thu, 20 Oct 2022 02:44:08 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2