firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YrpW3fqGmT10MDKCyOJmXxPpfde-LvBY6Sqa9BT5d8GzwI0FpjWsbA==
Age: 39623
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4607
Expires: Thu, 06 Oct 2022 04:04:28 GMT
Date: Thu, 06 Oct 2022 02:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4300
Expires: Thu, 06 Oct 2022 03:59:21 GMT
Date: Thu, 06 Oct 2022 02:47:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nd/UXrPU6w+DgAwejoSZurMkBo/pN0QXLfBLMzPZPXNopcKLbaB/uHiyHfx+mC3b1CR4o3qyW0E=
x-amz-request-id: T8H7JYH2N6DCNDN2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 02:30:35 GMT
age: 1026
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
cbdandhempwarehouse.com/
104.21.82.2301 Moved Permanently 313 B IP 104.21.82.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 60275d47151cca47ac835969abc267ae
5634a1e37c3f18441a6cb8f039fe56c2c339c837
f2e6aca3f3e3e9f8e8eaf6aa22868cedef6e9be1053bd11a9029232a3622a545
GET / HTTP/1.1
Host: cbdandhempwarehouse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 02:47:41 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://cbdandhempwarehouse.net/
X-Powered-By: PleskLin
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2EqY%2FticrHQAVcDIa3%2F7dKPl1dcvMzT1WbYeav491YN%2Bgm%2FZEvCgEGPLBh9m9jXYW3OtdRmPvS7N1tavVOklZkiJ6Ht14Q4Qbudhr22aCqJUrPzPCQ3Mfydm%2Fj%2F7vnSuMMlMkQgW5BXbpw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755b12e0abbb0b31-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Thu, 06 Oct 2022 02:29:41 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 06 Oct 2022 02:56:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vrZ7sLJJEtHmWUiyMmHDLopqUXcki7KUpdZQ4X2f8P4ikQR70_YAyQ==
Age: 1080
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4095
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:41 GMT
Last-Modified: Thu, 06 Oct 2022 01:39:26 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2
151.101.85.229200 OK 2.5 kB URL HTTP/2 cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2
IP 151.101.85.229:0
File type ASCII text, with very long lines (6498), with no line terminators
Hash b337d87a81b4df63d2f1798a60bb4769
af3947f6fa2f8497f004546583bd6f223a3305a1
161b8d5632d06c7d1faca533a644dedb8b0338059482116a6d7d73ebc0c02fca
GET /npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"1962-NLNASu4jwzBScgHcLDtueKdlX1E"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:42 GMT
age: 4098
x-served-by: cache-fra19155-FRA, cache-bma1680-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2487
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uirXisqkPMkbKa0XTtouDA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NwnxvdHnMeg4jBT1nhgQyp+bgnA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
172.217.21.170200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
IP 172.217.21.170:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 12:47:41 GMT
expires: Tue, 03 Oct 2023 12:47:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 223201
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash b95084fc159539f2ed96aa763f880012
d58529e89273718a957f570ff83bfe55a4cee1dd
4d233ce35377d89109c03e19a4ade06907e2be3971f7a36fba72d62a2473b38b
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "249BB3DAB7B0A54AD7577BE9B4A8E69AA48858EA"
Expires: Thu, 06 Oct 2022 13:00:00 GMT
Last-Modified: Thu, 06 Oct 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2835
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755b12e97929b51d-OSL
www.googletagmanager.com/gtag/js?id=UA-161834684-2
142.250.74.168200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-161834684-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 6546db34003741bacaa7b832bbc2daba
602bf0d0b6262fca62f4325ee9f771ffb1263b23
132321e7f324d268c848bacf690218b6be077ba9f2ddb3363d4354e321c41f27
GET /gtag/js?id=UA-161834684-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 02:47:42 GMT
expires: Thu, 06 Oct 2022 02:47:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43420
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 0d9d073dea1f4d43a0bc01b6b553153d
9299a9b91e54d982769024cf57081ee1505e6f57
95f9eace5f6ad1bfa09b994d182a343f56531634ed21022987060650dff8792a
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 06 Oct 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 05 Oct 2022 21:15:08 GMT
Expires: Thu, 06 Oct 2022 21:15:08 GMT
ETag: "9299a9b91e54d982769024cf57081ee1505e6f57"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 0d9d073dea1f4d43a0bc01b6b553153d
9299a9b91e54d982769024cf57081ee1505e6f57
95f9eace5f6ad1bfa09b994d182a343f56531634ed21022987060650dff8792a
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 06 Oct 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 05 Oct 2022 21:15:08 GMT
Expires: Thu, 06 Oct 2022 21:15:08 GMT
ETag: "9299a9b91e54d982769024cf57081ee1505e6f57"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
wt.soundestlink.com/REST/webTracking/v1/event?timestamp=1665024462287&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=GSwp3HfKMK3cQk-20221006024742&sessionID=glki5daudS7gTS-20221006024742&type=pageview
104.18.26.48200 OK 42 B URL HTTP/2 wt.soundestlink.com/REST/webTracking/v1/event?timestamp=1665024462287&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=GSwp3HfKMK3cQk-20221006024742&sessionID=glki5daudS7gTS-20221006024742&type=pageview
IP 104.18.26.48:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /REST/webTracking/v1/event?timestamp=1665024462287&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=GSwp3HfKMK3cQk-20221006024742&sessionID=glki5daudS7gTS-20221006024742&type=pageview HTTP/1.1
Host: wt.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: image/gif
content-length: 42
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 755b12e9bf8db4ee-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f9bd560fcc20bd84de9829e3c15fd171
06d7490df2d4708f2687d7e8c189fae361da7321
1138c3e1c1251838a7d22b64a5fff1a6f7a3faecb6c361fbb392dad72974441b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Last-Modified: Thu, 06 Oct 2022 01:01:37 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f9bd560fcc20bd84de9829e3c15fd171
06d7490df2d4708f2687d7e8c189fae361da7321
1138c3e1c1251838a7d22b64a5fff1a6f7a3faecb6c361fbb392dad72974441b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Last-Modified: Thu, 06 Oct 2022 01:01:37 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
i.getresponse.chat/embedded_chat.js
151.101.65.195200 OK 5.9 kB URL HTTP/2 i.getresponse.chat/embedded_chat.js
IP 151.101.65.195:0
File type ASCII text, with very long lines (21955), with no line terminators
Hash 7443cbf6eb780b0e2494d63169bb56bf
d2a73b5ac48f709ee9b8b5fa63f2aaee5e3141d4
0b263d312ee52651defd05a13d8cdaa7c3408932d0af071dc70632f414d3f693
Analyzer Verdict Alert quad9 Sinkholed
GET /embedded_chat.js HTTP/1.1
Host: i.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=7200
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "89e367aaf61251fe21f01b1a2992b3e4e9bc4d7f7de03b6221d491e578496fda-br"
last-modified: Thu, 29 Sep 2022 11:30:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:42 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665024463.659206,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5854
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
IP 142.250.74.3:0
Hash f5ddfac08293de43b34222d7136002c9
8fd7e0f9115f2d0c8800903c71e157e7225ab602
db800a004054461e4734a3792c506092b6b8561278779a050a54c4f6de9eb1eb
POST /s/gts1d4/0jSY8c0wwQY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 66fe6726cfd27efe46207f7ddb151ef4
079c2700d99bc247229382bc9436d08d93b5d111
bca33047d8c3d62efe9d8d536c59edf1505c61e18affd0d682f059ce81a4eed6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097
104.18.26.48200 OK 1.1 kB URL HTTP/2 forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097
IP 104.18.26.48:0
File type ASCII text, with very long lines (2210), with no line terminators
Hash 607611da96259eca078e3af2bafee49d
8754bccb98acf8d0e301a38fa882da76e76ac066
a262492024cfcf5baab401ec3c8ecb2abef2b034cebdc4a6c84de84390a8ad66
GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097 HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Thu, 06 Oct 2022 02:47:42 GMT
x-envoy-upstream-service-time: 7
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 755b12e9a9f30b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
us-central1-grchat-d3548.cloudfunctions.net/buildButton
216.239.36.54200 OK 45 kB URL HTTP/2 us-central1-grchat-d3548.cloudfunctions.net/buildButton
IP 216.239.36.54:0
File type JSON data\012- , ASCII text, with very long lines (59407), with no line terminators
Hash caad7c7a5ee054f7f38626730c9fbcce
6f241fc04afaf98eb12ce92536bcec7fb6e810a2
f84781ab0ba2d3fa98ce038f84e6968b43b4a8e315fe9485de72511a38c272a9
POST /buildButton HTTP/1.1
Host: us-central1-grchat-d3548.cloudfunctions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 212
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=utf-8
etag: W/"e80f-qcEvAyNN8oQ3rItEj9+LTx0bm54"
function-execution-id: 84xjxylhq4hw
x-cloud-trace-context: a27ad59476c48b2f19dc426e8afcdc17
content-encoding: gzip
date: Thu, 06 Oct 2022 02:47:42 GMT
server: Google Frontend
cache-control: private
content-length: 44717
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 1.6 kB IP 142.250.74.3:0
Hash 451e8b1a07bbf62b139bea1100dfda4c
3976a047c68ac2c76752240a8de562e8aaf2df2a
74aae88513c5f45d0e11f6ae42a6c9ef61961f894fefea15695f692efb890dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
151.101.1.195200 OK 598 B URL HTTP/2 guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
IP 151.101.1.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1837), with no line terminators
Hash c95c415f805a226a9f6c1fc1d2265c11
1f901710a1cfbd9508454dd6afc59c86eaf5c764
a88ed36cb80fe79aedfa94d292375794e28cb1fab834bcb47bbcada5a1261689
Analyzer Verdict Alert quad9 Sinkholed
GET /?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "b5c903ecdb87cfa216a5ef4000a5ac6711579bd40a4f6537456f3f0e3e12e01e-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:43 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665024463.107579,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 598
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/FontManifest.json
151.101.1.195200 OK 2 B URL HTTP/2 guest.getresponse.chat/assets/FontManifest.json
IP 151.101.1.195:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/FontManifest.json HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: application/json
etag: "6731668a37f6a3ed10d77860e21c7ba693c377a061571ffa58564d1d699c1798"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:43 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1665024463.133392,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
151.101.1.195200 OK 968 B URL HTTP/2 guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
IP 151.101.1.195:0
Hash 04c4be414fc775ab8172a821b496c7ed
3d8855b0c1048a4010b91470243a5a42154592c6
2a458242cf467be06d299f380badb7f9826e40c055473691928702df111ca08c
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/yaml_translations/guest_en.yaml HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/yaml; charset=utf-8
etag: "88f8d553780e0f2d677618727035d9d9a0cfa14479356f18835ebe652cec729a-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:43 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1665024463.136193,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 968
X-Firefox-Spdy: h2
guest.getresponse.chat/initialization.js
151.101.1.195200 OK 571 B URL HTTP/2 guest.getresponse.chat/initialization.js
IP 151.101.1.195:0
Hash 1954309ff1fdea4693242a8674b85b59
5ae3c31a55596395e009fabcfe4c5f9e392251d8
ff2f8e7ab8427effd26efa3d9dc7fc5bb39cc19c41cdae129bd91ffa009888eb
Analyzer Verdict Alert quad9 Sinkholed
GET /initialization.js HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "6edb4debc86d53721262d354d31a4aec8e4231ce49b666fb9189f78ffa26dc8d-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 06 Oct 2022 02:47:43 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 170
x-timer: S1665024463.144669,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 571
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
172.64.133.15200 OK 11 kB URL HTTP/2 use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
IP 172.64.133.15:0
File type ASCII text, with very long lines (46750)
Hash d0abccebe761745d0d409c667905702f
a75fc2edc0c2f375c83cf266db89e4d31b0b4290
f0201b752679df84657aa6d81fb7d5b548fb9c0077b7449c3bc5455579e58706
GET /releases/v5.2.0/css/all.css?ver=5.2.0 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: text/css
x-amz-id-2: esA3gTfQa/sHyRcUUQY86ON0DyE1wbYSGU042/n7G9AA5HXJWNmGwbtTSt6811624UAzrLNd9sc=
x-amz-request-id: ES6B7A1PDMBPMR1T
last-modified: Wed, 30 Jun 2021 15:41:36 GMT
etag: W/"20a9ce516eaea76da29a23adc43e8998"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29791472
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BriLU00UlsdOfWWvKQmxZRh8gePGmebErirI0Llhp0RjeFQCvSUPOlmuyjyz1kfgMxcri0UmazPG2nw%2Ftr%2BWVkVg9lSMwQDlaARwU5WqDD8SPjBAgsDMnkuSoTh6Tchk2RO1kyXH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755b12e8c97075c0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
104.160.64.9200 OK 12 kB URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 1e76dfa3c7e66f4184e90b909b46a5a3
59c079eec3c6ab4d2c52cff865bcff7afe77f4bb
e116f374fc9b7f86adc8103bfced2cbb121dbcf8dd590fd8bb0599eee3fb8a32
GET /view_webform_v2.js?u=TSB&webforms_id=zhN5J HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/8.10.1/firebase-database.js
142.250.74.163200 OK 52 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-database.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 28bce7d9c817ae3d6f571d19abf50499
c3f9c92a84e38d81f14866be9b4ab6fb265c928f
b6484f42b89f863c1c9d028d47b0704d7a61d44854f734d7861d826364a6193b
GET /firebasejs/8.10.1/firebase-database.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 52327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 11:00:22 GMT
expires: Tue, 03 Oct 2023 11:00:22 GMT
cache-control: public, max-age=31536000
age: 229641
last-modified: Fri, 28 Jan 2022 20:19:13 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
142.250.74.163200 OK 57 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a6d32f510ddf08b185ef622c74199cbe
a87acea8483e9dbd1cd9bd745f26692d3df9ffb6
ec405abbd3327f578ef346ed97fd9cd00016f51eccd7e73057da65f1f5e149f1
GET /firebasejs/8.10.1/firebase-auth.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 56948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 19:55:14 GMT
expires: Sun, 01 Oct 2023 19:55:14 GMT
cache-control: public, max-age=31536000
age: 370349
last-modified: Fri, 28 Jan 2022 20:19:10 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-performance.js
142.250.74.163200 OK 12 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-performance.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (38288)
Hash 5e00eb63f8d5d9e4bc19d42a52c110a8
bd2203b3fffe50b24d5ab2ee789a267341518ceb
1f3d548445f4c87b16ddd6054831d1c38c8e7569dd976b5f2e112d84a6501805
GET /firebasejs/8.10.1/firebase-performance.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 11644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 20:31:27 GMT
expires: Mon, 02 Oct 2023 20:31:27 GMT
cache-control: public, max-age=31536000
age: 281776
last-modified: Fri, 28 Jan 2022 20:19:10 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-app.js
142.250.74.163200 OK 7.0 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-app.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (22079)
Hash 937437225b56acc577b564e7a0b0278d
6934c4e50ac4a556f8d37d893521e74335e8676d
77d835d35239fed2528972a36a734991e34f5212b42d5b16e51e5c07ccb86e75
GET /firebasejs/8.10.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 7003
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 18:26:38 GMT
expires: Fri, 29 Sep 2023 18:26:38 GMT
cache-control: public, max-age=31536000
age: 548465
last-modified: Fri, 28 Jan 2022 20:19:14 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/lVqjrIyzdEM
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/lVqjrIyzdEM
IP 142.250.74.3:0
Hash 6baca75521594f3b78dafd5cf090a2b6
e3ad2d3add225c7d83a51c31967b830eb8ac6fd4
013d613d6ee4fe6db6fa8fdf7ba149334a37f7dae769d45b0e98916fbf48a894
POST /s/gts1d4/lVqjrIyzdEM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 3.2 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6a6ad2439376146989102f6dc2f5a3d2
f3d5b6a1672414ffe6c1e728d671c507b9787957
ee7acd99f141ce8024c6ec8ac0ba1d2ed5e61bf1e7d92bda7a81d83debf2208f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 02:47:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 02:47:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 1.5 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4f107a899cf75afd69720abce777945
7a28167ca46358c46c94ee187d80de0ea1df9b37
6c181148bf4e375a327513adba46ad46c791b9c356294d6236f894585ba2dfd7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 02:47:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 02:47:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 18579
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af17f003b33d854fd024dcd3980fea27
1282572af57f7d04cae3f736a9b9fcb378efdf70
5e0112558b9196f1025a354f4b69fb02321d9a345c2d302e523001a56b51cc31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12156
x-amzn-requestid: 0640ef42-f082-43cb-9fbb-ba509f7ec1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZXYcIFhmIAMFeVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63393ab3-2fbc1cf648993ee1346ec9b2;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 07:16:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LZZWZlT3DnlbEyrOaNR-emsGas3uCB6VaQYdTQ76-W0XL7_Yq3BAJw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 09:27:45 GMT
age: 62398
etag: "1282572af57f7d04cae3f736a9b9fcb378efdf70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
IP 34.120.237.76:0
Hash 79afc7648350bb8675ae9994247b21e1
65bce8f2bb117ea63cae1774c695a6730aae97b8
9cdda836a061659f1cfca27a4d10c316caed38113b2f4fcc5b82c72d30f07b1c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8651
x-amzn-requestid: 8bbdbc11-92fe-4cdf-8469-1c1ffac9e65b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPLIGG0IAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df8ad-132ee26478d791850dd14462;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: KBuHj1vlNgk4oflp8uIxuxuPoWh7B7O0SWrMrNP-lAhnp2m53ttPMw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:01:22 GMT
age: 17181
etag: "d839f3aa41455d818da9a794b0688b1144b3a03a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg
IP 34.120.237.76:0
Hash 7b9acb1a9cfadf221721d28194463cd7
784f690cd126c47c35ea4f2ab6dfb34c58518ca5
a8c066234a20797873571e7cf90913a9533aae4c64c5cf3554bf1ebf7b914a17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6933
x-amzn-requestid: aa50b0cd-e931-49a9-bce3-00366738aea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtNGKPoAMF6UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df987-77a4f8306103dcdf3de7d1fd;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:19 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: J6TTFpH3OGVu4hTFbLlatmlwGGOiEshSdr4xUCdCKog4kUAA5TyBSQ==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:10:54 GMT
age: 16609
etag: "b19dd1d42995ea4242505b152e77835442341581"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
age: 17644
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 69491
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=682753707&cid=479383206.1665024463&ul=en-us&sr=1280x1024&_s=1&sid=1665024462&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=682753707&cid=479383206.1665024463&ul=en-us&sr=1280x1024&_s=1&sid=1665024462&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=682753707&cid=479383206.1665024463&ul=en-us&sr=1280x1024&_s=1&sid=1665024462&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cbdandhempwarehouse.net
date: Thu, 06 Oct 2022 02:47:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
us-ms.gr-cdn.com/getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png
205.185.216.42200 OK 294 kB URL HTTP/2 us-ms.gr-cdn.com/getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png
IP 205.185.216.42:0
File type PNG image data, 1181 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size 294 kB (294362 bytes)
Hash 21686b9e89eb77aaca0d58592f843031
06b6a53e45e66a0d4f53d7a2fd3976646755a651
ac633d04f6c4028e4d4cf631b30a3ffdfdd6ae7421e32f1115c67c54dfe491d9
GET /getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:44 GMT
cache-control: max-age=30578416
content-length: 294362
content-type: image/png
last-modified: Mon, 08 Feb 2021 22:28:24 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: SbHTuFjvbn7K/YzVLiUUiFh9fjVm0kvOVes1jmlPwl20uHs5HgehQ+ZMEma/8ZsLlNPsrpQmKMg=
x-amz-request-id: G8WMHM7QYCGG08WM
etag: "21686b9e89eb77aaca0d58592f843031"
x-amz-version-id: Y679sWJ9z5tB5jSJhS40hztJ449fnZ34
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1665024464.dop222.sk1.t,1665024464.cds264.sk1.hn,1665024464.cds222.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
205.185.216.42200 OK 6.7 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
IP 205.185.216.42:0
File type Unicode text, UTF-8 text, with very long lines (28294), with no line terminators
Hash 64d94c8358b6661de4a2e642f3d7b76a
4783af52d81da2921d6dbe1b4e523dcdd4ffc4af
11fb7bf38897c1fb12995f1f94a390775c66a00c9c3858271e49ed4a5e58bbb5
GET //javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:44 GMT
content-encoding: gzip
content-length: 6652
content-type: text/css
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-6e8a"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
server-timing: dtSInfo;desc="1"
x-hw: 1665024464.dop222.sk1.t,1665024464.cds264.sk1.hn,1665024464.cds228.sk1.c
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
104.160.64.9200 OK 3.5 kB URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9813)
Hash 47b3c707dac5fffddd1666fd2a3545d4
f633bdb35e6aa2c8b30dcaf484b04278f6f2b768
a15768214dde1854c98612359cbc6f6d6dfd0f69c0c886bc17c1cdac17ca4126
GET /site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Thu, 06-Oct-2022 14:47:44 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Mon, 05-Dec-2022 02:47:44 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_65297604=0; expires=Sat, 04-Feb-2023 02:47:44 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
205.185.216.42200 OK 10 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (32376)
Hash 87b8e74031f8b5c76421913ecd8fd345
18d3903892f55f4a6792038cc120b73239d36e99
bc917783adc3825637c10be746fcd23d37bfe05341b970cd2e2b3a94cf1c3077
GET //javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:44 GMT
content-encoding: gzip
content-length: 10132
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: W/"1dc09d84-7edb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665024464.dop222.sk1.t,1665024464.cds264.sk1.hn,1665024464.cds066.sk1.c
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
104.160.64.9200 OK 91 kB URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (51026)
Hash 2ba3dee04582e9a74468dfe0ca2dc986
abc6928214653f8372e731f990a28e8468df169d
3b6800f0d860e4c92c86db7941e2fb3ab6a4a5a1bdf5367120d2a2741c4fbfc0
GET /site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Thu, 06-Oct-2022 14:47:44 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Mon, 05-Dec-2022 02:47:44 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_60018804=0; expires=Sat, 04-Feb-2023 02:47:44 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
205.185.216.42200 OK 18 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
IP 205.185.216.42:0
Hash 7171abeb3f6513973b02a69f97976969
be029844ccc7610940dba1be29bc391710a33ac3
7317957b2d9ee94741c88c6204a5e0589ea6cae4df2c46ed5e3ca78d547ae95d
GET //javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:44 GMT
content-encoding: gzip
content-length: 415
content-type: application/javascript
last-modified: Fri, 26 Aug 2022 14:47:03 GMT
accept-ranges: bytes
server: nginx
etag: "6308dce7-2eb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665024464.dop222.sk1.t,1665024464.cds264.sk1.hn,1665024464.cds235.sk1.c
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 02:41:09 GMT
expires: Thu, 06 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 395
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
104.160.64.9200 OK 1.4 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b08ace12a07a95ad4355eae9ed7152ee
92460c536f0548b514f3e8f6c317956c3ba42b7e
55adbd2da891dc3cad9c9b7a3796d51906bfd5b2f68c5634752080b7873a7b7f
GET /images/common/templates/webform/105/1/img/105_02.png HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: image/png
content-length: 1430
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: "6315edfe-596"
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_3_sn_81F260E53774D70F062AA0ADF1718D94_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
expires: Fri, 07 Oct 2022 02:47:44 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2
216.58.207.195200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10516, version 1.0\012- data
Hash 8c8fd402536417f424d66359c3cd4e44
a670231e64ac79494e60e217dccb8a2a350e4a91
bca4c62c39df560bef1d8cd8b2cd68a4a35180e8e0e91519b724b89224dd69c2
GET /s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 01:16:48 GMT
expires: Thu, 05 Oct 2023 01:16:48 GMT
cache-control: public, max-age=31536000
age: 91856
last-modified: Tue, 19 Apr 2022 19:14:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2
IP 216.58.207.195:0
Hash 688a9f83e4daf39bd715649bfbe48d50
5eed7bac9cfd60376554e0ef04ec58614025dc69
e8c9fba36c7de54e5f6715f7de8c2933d7d62f58308833f1e2798f778063033e
GET /s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:39:52 GMT
expires: Thu, 05 Oct 2023 06:39:52 GMT
cache-control: public, max-age=31536000
age: 72472
last-modified: Tue, 19 Apr 2022 18:57:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
IP 216.58.207.195:0
Hash 851c61831a5773e5ceeecc021a8e71d3
6ac8d11acc62e5b1890d3a0345512be6cb26002a
2da2b6c3e6edf3ea47cef58f9577f7ecf48e5819ce6e9fd5122d0a9701bea535
GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:07:41 GMT
expires: Tue, 03 Oct 2023 21:07:41 GMT
cache-control: public, max-age=31536000
age: 193203
last-modified: Mon, 09 May 2022 18:31:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16436, version 1.0\012- data
Hash 8b9ed68add1f0f4f93a60936b5caabfc
5144caa4cfffb1b0459cc344ee8d0c97c49fe748
263f1815a716181a09a7b19087cbbd4a916ef7c7e90d9b78282d3c3b1bf6901d
GET /s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:25:10 GMT
expires: Wed, 04 Oct 2023 17:25:10 GMT
cache-control: public, max-age=31536000
age: 120154
last-modified: Tue, 26 Apr 2022 15:01:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP 216.58.207.195:0
Hash fa0588d82830d1a8232f7f32a4a65029
98889d8ade10f046c26e4bc7a85505c54c70a406
5872815249081b93c0837a09a31f5409ccc29ddcbe0c9e0bcb7e2c4dda1ea07c
GET /s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 16:54:12 GMT
expires: Fri, 29 Sep 2023 16:54:12 GMT
cache-control: public, max-age=31536000
age: 554012
last-modified: Tue, 26 Apr 2022 15:50:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
IP 216.58.207.195:0
Hash d4795e8bf1891025c0994c41e8851dd4
ca58056e400ca0a144466714e065871cdc55dc91
797bfb6a12dbe7be91947cc9d630ec9a6bc2a76023f34bd0f6ac0b0cc467af12
GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 17:08:30 GMT
expires: Fri, 29 Sep 2023 17:08:30 GMT
cache-control: public, max-age=31536000
age: 553154
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
IP 216.58.207.195:0
Hash 63937097645a78c2680f4dab7ca59b92
324449370523fe43aab7ff0bd19c86662e73a411
f474c7c07af44792c031c4de6eb0e31636debae63aeb7f185055ecd2c32b9ecc
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 15:47:19 GMT
expires: Sat, 30 Sep 2023 15:47:19 GMT
cache-control: public, max-age=31536000
age: 471625
last-modified: Mon, 11 Jul 2022 21:20:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
216.58.207.195200 OK 51 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
IP 216.58.207.195:0
Hash ccc3ea3828b746a7c5a431a6621bcf42
088cafda0aa46acd0f7ba2de04bd507030e4697d
309d710fde73e1c73c9700f857e959f33845445ab7df870e4a483314ef4044e1
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 04:56:56 GMT
expires: Sun, 01 Oct 2023 04:56:56 GMT
cache-control: public, max-age=31536000
age: 424248
last-modified: Fri, 24 Jun 2022 18:42:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
IP 216.58.207.195:0
Hash 889ed04537a93e2683913f697404c466
011f13cd219ac549f2bc345a12ab7e29fe23f220
1c8f21a5b65f0a27cf443c8cbf908298ab7cdc5df587161007ebae1d7e331169
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:08:14 GMT
expires: Tue, 03 Oct 2023 21:08:14 GMT
cache-control: public, max-age=31536000
age: 193170
last-modified: Mon, 18 Jul 2022 19:13:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
216.58.207.195200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
IP 216.58.207.195:0
Hash 6e593fcf93521f729d5d8e5c2bc8f34e
d486512c25554ecf18d642d7afb01150f7ec338e
2467d1e24b19204dc5e62e9090b16b601188504d9f756884b33d82b20ce58209
GET /s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 02:23:26 GMT
expires: Wed, 04 Oct 2023 02:23:26 GMT
cache-control: public, max-age=31536000
age: 174258
last-modified: Mon, 09 May 2022 19:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
216.58.207.195200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
IP 216.58.207.195:0
Hash aa3e0c37dd4c1026a5bca89d5cafd6c4
5e88cfe614d2c0e87bbf8aa28ee62fa802975e92
4871de8dafe3c91e2de1978ed05f0f411b83b89ca6572487965ca258b26426c6
GET /s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 22:26:54 GMT
expires: Wed, 04 Oct 2023 22:26:54 GMT
cache-control: public, max-age=31536000
age: 102050
last-modified: Tue, 19 Apr 2022 19:39:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
216.58.207.195200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9728, version 1.0\012- data
Hash ecbaa4c9c4ab43f177166fcc2a0d161d
3a80ace0fd0d8967f4b15be5ff60be33d94e3f6c
0758816c25896d8ff013f6c53c2bfb27610e910c25ca452b49caa09be293fe86
GET /s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:35:59 GMT
expires: Sat, 30 Sep 2023 00:35:59 GMT
cache-control: public, max-age=31536000
age: 526305
last-modified: Thu, 21 Apr 2022 17:07:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
104.160.64.9200 OK 47 kB URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 9cd7f47aa10e4d125c46cf8ef3b7e433
31615c21139591ee450a95d0269ac2c32dd49c09
1ad6a6dd3e540ed4035f769144b374b591c94b0f6b41a290c6db06ecbf192ce0
GET /view_webform_v2.js?u=TSB&webforms_id=zvAgt HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
216.58.207.195200 OK 42 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 41852, version 1.0\012- data
Hash eda9570095419a02305375af62ca8a7d
2602a1420637014af148ef49bd072937d7000768
1c43b0ad19f388f2381cbbb9ed34cee414d5f74d35897d496f5806c45a02ae0a
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 41852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:10:15 GMT
expires: Tue, 03 Oct 2023 21:10:15 GMT
cache-control: public, max-age=31536000
age: 193049
last-modified: Mon, 18 Jul 2022 19:45:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
IP 216.58.207.195:0
Hash 4564d6da207067b1aa289ac0b86ef49e
0d3529bef6f7080000f64d58ab512568dc57d452
d2939527579d0dcc68936542acd0ca48b3de6aa34ac56d6a6868e070959cfc2d
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25716
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:18:28 GMT
expires: Tue, 03 Oct 2023 21:18:28 GMT
cache-control: public, max-age=31536000
age: 192556
last-modified: Mon, 18 Jul 2022 19:17:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
IP 216.58.207.195:0
Hash aec7c96bbdfd3c49a8f8dd5abc5fc7c2
84b9bca7b181f9e94c56948397a4a6c97701460a
73c0cd7226ee2afc9e3735d2bd0b5debc7779c1b4dfdf3a016d1a80243706b0d
GET /s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 05:15:07 GMT
expires: Sat, 30 Sep 2023 05:15:07 GMT
cache-control: public, max-age=31536000
age: 509557
last-modified: Thu, 21 Apr 2022 16:20:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
216.58.207.195200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
IP 216.58.207.195:0
Hash ec07bf34b7cd6d3937c6b6c2f44b355f
0d9bfdfdc9e24fe6b9eafd268bca71311bbde3a0
291cb9d96d49c356e07c45d72b005d0213f14e2ae0e59d0bb48bc282f2918c41
GET /s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:44:42 GMT
expires: Sat, 30 Sep 2023 00:44:42 GMT
cache-control: public, max-age=31536000
age: 525783
last-modified: Thu, 21 Apr 2022 17:21:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
216.58.207.195200 OK 58 kB URL HTTP/2 fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
IP 216.58.207.195:0
Hash 2330585c669c0417bc6208bb1f3b91ee
322b6a766064e3e80fdb95ebf4a63ac27a0794f4
2207cb3ca919a7b9dcb632725fec19c9ede092716b8267c57d306c4e53f89f55
GET /s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 22:08:44 GMT
expires: Thu, 05 Oct 2023 22:08:44 GMT
cache-control: public, max-age=31536000
age: 16741
last-modified: Wed, 27 Apr 2022 16:59:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
IP 216.58.207.195:0
Hash dedc9532d46d0fffe5df26d1191746f2
9d921e6eeff38c8539d18c0e268777a01d093fcf
5a0e989f88dfe3ee84fd7f1cd2310c1d29d79eb37fb8f47c7fb6f7c0c66924ce
GET /s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 01:10:16 GMT
expires: Wed, 04 Oct 2023 01:10:16 GMT
cache-control: public, max-age=31536000
age: 178649
last-modified: Mon, 09 May 2022 18:42:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-firestore.js
142.250.74.163200 OK 36 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-firestore.js
IP 142.250.74.163:0
Hash 12bb96876fc38b93380a6cc76267bd0b
8a71285da71a177d92bb605fb89825f199a81b5b
7da5e32922590d2ca6057bd7f2882269bdbcce1f53d3b622cfa1b7fcb95cca5b
GET /firebasejs/8.10.1/firebase-firestore.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 93537
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 21:17:12 GMT
expires: Sat, 30 Sep 2023 21:17:12 GMT
cache-control: public, max-age=31536000
age: 451831
last-modified: Fri, 28 Jan 2022 20:19:15 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10632, version 1.0\012- data
Hash 235a9e95823e49744e35aaea0bb293aa
81945b78e158167e88dc40746a8418a4fcd1e7b8
62dd1591b85ac94338ebf05423aaf78e49e4a9c26ce929d2286c648c67f22686
GET /s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 22:35:21 GMT
expires: Wed, 04 Oct 2023 22:35:21 GMT
cache-control: public, max-age=31536000
age: 101544
last-modified: Tue, 19 Apr 2022 18:52:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
216.58.207.195200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9684, version 1.0\012- data
Hash e081c14e5155024f33290cbae0803e99
f06b0a029836182c5b20cba1354c68d5ce4095a2
3fc8675e44a4f7815cde49d0b05a46fbe21ffb2c68d8a64931bed7cf494724cf
GET /s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:40:27 GMT
expires: Thu, 05 Oct 2023 21:40:27 GMT
cache-control: public, max-age=31536000
age: 18438
last-modified: Wed, 27 Apr 2022 17:10:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
104.160.64.9200 OK 21 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash ed85a04a31c14ac3ed1d04d7fda9f66d
1010c470654c062cd23ca5f0469d8c2f2c10cc69
f932a8c00e7a5cdf4f82e04dc047232b179b9644337f249a43594c79927e6fa7
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
server-timing: dtSInfo;desc="0", dtRpid;desc="1326883858"
set-cookie: dtCookie=v_4_srv_2_sn_CA06AAB745147AFAA5359C4495333A39_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
104.160.64.9200 OK 16 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 2b6eee4d15db1b361f93cc0ac432b2d3
f2812d5da1834dbaacc636201dfc3307221eb1db
09156465485fc239d3bf7615c92e51fa6bddd61f3c8061c93a141583d8d4217c
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/5/style.css
104.160.64.9200 OK 53 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash c2fff031c0771b561488f71773208b81
37362f71e567de425b83632e7b2aec92805d49ea
d6623fb99d6d71c059f0a434b350377cea5642540713d8eb204b2d23059051d9
GET /images/common/templates/webform/105/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-1459"
expires: Fri, 07 Oct 2022 02:47:44 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
verify.authorize.net/anetseal/seal.js
172.64.145.133200 OK 0 B URL HTTP/2 verify.authorize.net/anetseal/seal.js
IP 172.64.145.133:0
GET /anetseal/seal.js HTTP/1.1
Host: verify.authorize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4007
etag: W/"80e6e6b1bf95d61:0"
last-modified: Mon, 28 Sep 2020 17:49:21 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 7034
expires: Tue, 11 Oct 2022 02:47:42 GMT
cache-control: public, max-age=432000
set-cookie: __cfruid=f12632fba56192f275515a967e1e2c184627764c-1665024462; path=/; domain=.authorize.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 755b12e8db3a0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/111/5/style.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/images/common/templates/webform/111/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /images/common/templates/webform/111/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:44 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-13d1"
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_4_sn_5DCEF7E3FE71ECB0E5120247C36C38AC_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
expires: Fri, 07 Oct 2022 02:47:44 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
omnisnippet1.com/inShop/forms.js?v=2022-10-06T02
104.18.40.169200 OK 0 B URL HTTP/2 omnisnippet1.com/inShop/forms.js?v=2022-10-06T02
IP 104.18.40.169:0
GET /inShop/forms.js?v=2022-10-06T02 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 14:16:25 GMT
etag: W/"6335a8b9-206e2"
expires: Thu, 06 Oct 2022 03:08:05 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2376
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 755b12eadefcb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
cbdandhempwarehouse.net/
172.67.172.135200 OK 0 B IP 172.67.172.135:0
GET / HTTP/1.1
Host: cbdandhempwarehouse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Wed, 05 Oct 2022 20:53:47 GMT
x-cache-status: HIT
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yrc0Uojmu0my1EiXVEg6gpkGBdvtoHWS3UBr5LHvcz3AUpB4KxTiDUEkF7en1l0MGxs9A1Iu%2FHcYM26bE540lrpo3Br6d%2Fn5FrkRO5VQv%2FGlJVWDrFoBMsipJHCaPSmTchl5GFNCDibnDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755b12e38b3bb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
omnisrc.com/inshop/launcher-v2.js
104.18.4.28200 OK 0 B URL HTTP/2 omnisrc.com/inshop/launcher-v2.js
IP 104.18.4.28:0
GET /inshop/launcher-v2.js HTTP/1.1
Host: omnisrc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 02:47:42 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 14:16:25 GMT
etag: W/"6335a8b9-de42"
expires: Thu, 06 Oct 2022 03:23:41 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1373
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 755b12e8df97b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /stylesheets/core/pages/webFormV2/public/gr_wf_v2.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 02:47:43 GMT
content-type: text/css
last-modified: Wed, 05 Oct 2022 13:49:02 GMT
etag: W/"633d8b4e-1fd8"
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_5_sn_CF4362E22A603ED8D14C0B4A8AB63340_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2