firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 09 Oct 2022 23:48:13 GMT
Expires: Mon, 10 Oct 2022 00:26:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jpkKZDj41RE5XKhlvA7WejXoct5nAzEciO-3xI1aZle4YnTVSZ59Jg==
Age: 3357
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16422
Expires: Mon, 10 Oct 2022 05:17:52 GMT
Date: Mon, 10 Oct 2022 00:44:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8120
Expires: Mon, 10 Oct 2022 02:59:30 GMT
Date: Mon, 10 Oct 2022 00:44:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lF1peP7G4HhmmUWJwDZbEFdgxHr8mG2PUVjXc7O88ySlhV117KVhmSVqWdHNbafhF7WgbQO1N0I=
x-amz-request-id: D5MQ5SPK5T67X5VQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 10 Oct 2022 00:32:16 GMT
age: 714
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
cbdandhempwarehouse.net/
104.21.30.86301 Moved Permanently 162 B IP 104.21.30.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: cbdandhempwarehouse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 10 Oct 2022 00:44:10 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://cbdandhempwarehouse.net/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BMqAZA9xT5TR72cdkGgO%2FLFlZRLGCNCMGSKihq8rY6%2BzSK7b42%2B%2F9abFUWrXaWPq1kl5WH7lHrJPKQq68giFvx7P3GNR7M0VveNw9m2JPphWiuVKgb1cHcdzvZTMRwHo6WrLSJHgvbC9TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 757b5375ebb00b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Mon, 10 Oct 2022 00:29:42 GMT
Cache-Control: max-age=3600
Expires: Mon, 10 Oct 2022 01:28:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qEAH34aP33P_OIChRMTSyVyjx_kGiLAKCYK4YtF8txqcf6QW9pAV0Q==
Age: 870
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0e2d9e91637474eeaf391312eed441bd
5d29603c731b75308f7d1f584b3ac4c263c96a9e
7da864345088083e1a6fec2d95e07186ef8dbcef8505570e547844c556dfe3be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5656
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:11 GMT
Last-Modified: Sun, 09 Oct 2022 23:09:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2
151.101.85.229200 OK 2.5 kB URL HTTP/2 cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2
IP 151.101.85.229:0
File type ASCII text, with very long lines (6498), with no line terminators
Hash b337d87a81b4df63d2f1798a60bb4769
af3947f6fa2f8497f004546583bd6f223a3305a1
161b8d5632d06c7d1faca533a644dedb8b0338059482116a6d7d73ebc0c02fca
GET /npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"1962-NLNASu4jwzBScgHcLDtueKdlX1E"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:11 GMT
age: 39885
x-served-by: cache-fra19155-FRA, cache-bma1647-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2487
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iSUdsyqn5fBkhfb0gvSs5w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Nbo+/Lg/VDzh/8Dr7ifKSrR9tS0=
i.getresponse.chat/embedded_chat.js
151.101.1.195200 OK 5.9 kB URL HTTP/2 i.getresponse.chat/embedded_chat.js
IP 151.101.1.195:0
File type ASCII text, with very long lines (21955), with no line terminators
Hash 7443cbf6eb780b0e2494d63169bb56bf
d2a73b5ac48f709ee9b8b5fa63f2aaee5e3141d4
0b263d312ee52651defd05a13d8cdaa7c3408932d0af071dc70632f414d3f693
Analyzer Verdict Alert quad9 Sinkholed
GET /embedded_chat.js HTTP/1.1
Host: i.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=7200
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "89e367aaf61251fe21f01b1a2992b3e4e9bc4d7f7de03b6221d491e578496fda-br"
last-modified: Thu, 29 Sep 2022 11:30:33 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:11 GMT
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665362652.935898,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5854
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43141c37657b2dc617dc65bfe97a865c
df200056afa06387a505aac1d8098c6675356ba9
e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 430f562f75a067b1776b7cd99576af66
d4c7b391a45ad483c7636dc4a3e9bfdca97e9e24
916d1971581f2cf13439c437a67265b4e742d85b747bd24adb6f020043846a8c
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 00:44:11 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "29A621272E34437197A35813E58539F4961CCB88"
Expires: Mon, 10 Oct 2022 11:00:00 GMT
Last-Modified: Sun, 09 Oct 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2156
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 757b537ece371c16-OSL
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
142.250.74.106200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0
IP 142.250.74.106:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 12:47:41 GMT
expires: Tue, 03 Oct 2023 12:47:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 561391
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-161834684-2
142.250.74.168200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-161834684-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 664b3e9a51ad1307a47960ef556697e3
f9f1f30943f37aaae5eb4e51fd7ffee2976a4660
deab1411d0e904a04c915bde2226b9964a2f0ee3ed37e0b2f63b27f077cf51c8
GET /gtag/js?id=UA-161834684-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 10 Oct 2022 00:44:12 GMT
expires: Mon, 10 Oct 2022 00:44:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43358
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer
142.250.74.168200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer
IP 142.250.74.168:0
File type ASCII text, with very long lines (2996)
Hash 91899d9d1fb4bb358772452b55d38332
e9ef37f87975bfe9a4fb871bc3eaad754cdd54cc
e17079603ec8e1c5d091fd76cf32276dd4eca722146836e3ed1a944e0c2789c9
GET /gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 10 Oct 2022 00:44:12 GMT
expires: Mon, 10 Oct 2022 00:44:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64961
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43141c37657b2dc617dc65bfe97a865c
df200056afa06387a505aac1d8098c6675356ba9
e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ba799b1f2c82d195a9111fc18d82037
aecb2c93a4607aaa954cd9f26798060144ddd1ae
fa2df166694695f69ce3c43cf1a67636f627dcdf96f8f98d7bedeb39d8cd9c2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/0jSY8c0wwQY
IP 142.250.74.3:0
Hash a29c2fd722195d17e8dcb981875a3e4f
63c28f6d695ca64c78d0301eda51b0b112ad1f40
4cf055619e33a8630797e1983df31e23d20c0c793afae3f9cb717719c882dec1
POST /s/gts1d4/0jSY8c0wwQY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wt.soundestlink.com/REST/webTracking/v1/event?timestamp=1665362651939&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=bR0w9RdQCNDlFV-20221010004411&sessionID=ZXFabnhDqA8gwF-20221010004411&type=pageview
104.18.26.48200 OK 42 B URL HTTP/2 wt.soundestlink.com/REST/webTracking/v1/event?timestamp=1665362651939&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=bR0w9RdQCNDlFV-20221010004411&sessionID=ZXFabnhDqA8gwF-20221010004411&type=pageview
IP 104.18.26.48:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /REST/webTracking/v1/event?timestamp=1665362651939&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=bR0w9RdQCNDlFV-20221010004411&sessionID=ZXFabnhDqA8gwF-20221010004411&type=pageview HTTP/1.1
Host: wt.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:12 GMT
content-type: image/gif
content-length: 42
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 757b537f2c631c0a-OSL
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 197afb293d662e9f096cc3f6f96a14fd
4f136d8995aadb1c1a1f3fb764e670e7ffafcffe
f462b4dfc36b241cd4fd9a8fa641b6fc57e793311f60be00976c7f52647fcd37
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 10 Oct 2022 00:44:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 09 Oct 2022 21:19:12 GMT
Expires: Mon, 10 Oct 2022 21:19:12 GMT
ETag: "4f136d8995aadb1c1a1f3fb764e670e7ffafcffe"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 197afb293d662e9f096cc3f6f96a14fd
4f136d8995aadb1c1a1f3fb764e670e7ffafcffe
f462b4dfc36b241cd4fd9a8fa641b6fc57e793311f60be00976c7f52647fcd37
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 10 Oct 2022 00:44:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 09 Oct 2022 21:19:12 GMT
Expires: Mon, 10 Oct 2022 21:19:12 GMT
ETag: "4f136d8995aadb1c1a1f3fb764e670e7ffafcffe"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 264b144a1185f0d9674c49764890676c
48a7eba7a0de587eb237616052feb49f7102d74a
c12a1df4dd2a98ccc468bedbfef3f6bda31eee83d3baec24237e265c1bbd5ca4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2092
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Last-Modified: Mon, 10 Oct 2022 00:09:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
omnisnippet1.com/inShop/forms.js?v=2022-10-10T00
104.18.40.169200 OK 30 kB URL HTTP/2 omnisnippet1.com/inShop/forms.js?v=2022-10-10T00
IP 104.18.40.169:0
File type ASCII text, with very long lines (32114)
Hash a02112e60fc8904f3df7e296e6f9d23d
2df76a6109e5f270c0de75f967977e56be382e58
c731f0217a44f3bb2a8f245c92f217176328ed5d0471099a11b92cf28aee1c86
GET /inShop/forms.js?v=2022-10-10T00 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:12 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 07:52:45 GMT
etag: W/"633e894d-20189"
expires: Mon, 10 Oct 2022 00:58:28 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2652
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 757b53806e53b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
us-central1-grchat-d3548.cloudfunctions.net/buildButton
216.239.36.54200 OK 45 kB URL HTTP/2 us-central1-grchat-d3548.cloudfunctions.net/buildButton
IP 216.239.36.54:0
File type JSON data\012- , ASCII text, with very long lines (59407), with no line terminators
Hash 5b76bd9c773f0b0d3986c7434be1bef4
c3a6959dd871fdf227664df12129329d3be67870
ee0be542e5b340653c1551d4283f95dde783e71fb3a28d4afbcdd111387f7974
POST /buildButton HTTP/1.1
Host: us-central1-grchat-d3548.cloudfunctions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 212
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=utf-8
etag: W/"e80f-q/GVRi3cdKnbvtI9plmkTC96eOk"
function-execution-id: 6lek2xqi7qzw
x-cloud-trace-context: 768209cb583177f8c588a2379b51fcca
content-encoding: gzip
date: Mon, 10 Oct 2022 00:44:12 GMT
server: Google Frontend
cache-control: private
content-length: 44656
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ba799b1f2c82d195a9111fc18d82037
aecb2c93a4607aaa954cd9f26798060144ddd1ae
fa2df166694695f69ce3c43cf1a67636f627dcdf96f8f98d7bedeb39d8cd9c2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
151.101.1.195200 OK 598 B URL HTTP/2 guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
IP 151.101.1.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1837), with no line terminators
Hash c95c415f805a226a9f6c1fc1d2265c11
1f901710a1cfbd9508454dd6afc59c86eaf5c764
a88ed36cb80fe79aedfa94d292375794e28cb1fab834bcb47bbcada5a1261689
Analyzer Verdict Alert quad9 Sinkholed
GET /?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "b5c903ecdb87cfa216a5ef4000a5ac6711579bd40a4f6537456f3f0e3e12e01e-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:12 GMT
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665362652.418224,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 598
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/FontManifest.json
151.101.1.195200 OK 2 B URL HTTP/2 guest.getresponse.chat/assets/FontManifest.json
IP 151.101.1.195:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/FontManifest.json HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: application/json
etag: "6731668a37f6a3ed10d77860e21c7ba693c377a061571ffa58564d1d699c1798"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:12 GMT
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665362652.447975,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2
X-Firefox-Spdy: h2
guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
151.101.1.195200 OK 968 B URL HTTP/2 guest.getresponse.chat/assets/yaml_translations/guest_en.yaml
IP 151.101.1.195:0
Hash 04c4be414fc775ab8172a821b496c7ed
3d8855b0c1048a4010b91470243a5a42154592c6
2a458242cf467be06d299f380badb7f9826e40c055473691928702df111ca08c
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/yaml_translations/guest_en.yaml HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/yaml; charset=utf-8
etag: "88f8d553780e0f2d677618727035d9d9a0cfa14479356f18835ebe652cec729a-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:12 GMT
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665362652.449077,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 968
X-Firefox-Spdy: h2
guest.getresponse.chat/initialization.js
151.101.1.195200 OK 571 B URL HTTP/2 guest.getresponse.chat/initialization.js
IP 151.101.1.195:0
Hash 1954309ff1fdea4693242a8674b85b59
5ae3c31a55596395e009fabcfe4c5f9e392251d8
ff2f8e7ab8427effd26efa3d9dc7fc5bb39cc19c41cdae129bd91ffa009888eb
Analyzer Verdict Alert quad9 Sinkholed
GET /initialization.js HTTP/1.1
Host: guest.getresponse.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonShape%22%3A%22ChatStartButtonShape.button%22%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "6edb4debc86d53721262d354d31a4aec8e4231ce49b666fb9189f78ffa26dc8d-br"
last-modified: Thu, 29 Sep 2022 11:30:07 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Mon, 10 Oct 2022 00:44:12 GMT
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 3616
x-timer: S1665362652.454614,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 571
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/lVqjrIyzdEM
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/lVqjrIyzdEM
IP 142.250.74.3:0
Hash 876b4c1aa98dc941c8a42f62379be962
cfa090102b4fc6ba28ca4fe68e14e98c7583f548
95e62b4c3975c691c39bd131d44c3db5152ab0fb4d6149b3f85961f0b5bd77b8
POST /s/gts1d4/lVqjrIyzdEM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
104.160.64.9200 OK 12 kB URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zvAgt
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 6673cbf89da1f7e4c26a617b4b009de7
bf2470f462492fd6c896dcface590586a6cbf6ac
50aba6298a0af713813bc87f92981d8b256ebbc948ec00d20d2d9c50a8888e82
GET /view_webform_v2.js?u=TSB&webforms_id=zvAgt HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:12 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/8.10.1/firebase-app.js
142.250.74.163200 OK 7.0 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-app.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (22079)
Hash 937437225b56acc577b564e7a0b0278d
6934c4e50ac4a556f8d37d893521e74335e8676d
77d835d35239fed2528972a36a734991e34f5212b42d5b16e51e5c07ccb86e75
GET /firebasejs/8.10.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 7003
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 18:26:43 GMT
expires: Fri, 06 Oct 2023 18:26:43 GMT
cache-control: public, max-age=31536000
age: 281849
last-modified: Fri, 28 Jan 2022 20:19:14 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-database.js
142.250.74.163200 OK 52 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-database.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 28bce7d9c817ae3d6f571d19abf50499
c3f9c92a84e38d81f14866be9b4ab6fb265c928f
b6484f42b89f863c1c9d028d47b0704d7a61d44854f734d7861d826364a6193b
GET /firebasejs/8.10.1/firebase-database.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 52327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 11:00:22 GMT
expires: Tue, 03 Oct 2023 11:00:22 GMT
cache-control: public, max-age=31536000
age: 567830
last-modified: Fri, 28 Jan 2022 20:19:13 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
142.250.74.163200 OK 57 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-auth.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a6d32f510ddf08b185ef622c74199cbe
a87acea8483e9dbd1cd9bd745f26692d3df9ffb6
ec405abbd3327f578ef346ed97fd9cd00016f51eccd7e73057da65f1f5e149f1
GET /firebasejs/8.10.1/firebase-auth.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 56948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 19:55:45 GMT
expires: Sun, 08 Oct 2023 19:55:45 GMT
cache-control: public, max-age=31536000
age: 103707
last-modified: Fri, 28 Jan 2022 20:19:10 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.10.1/firebase-firestore.js
142.250.74.163200 OK 94 kB URL HTTP/2 www.gstatic.com/firebasejs/8.10.1/firebase-firestore.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f4746695657281dd56487de85ddf33d9
5c96091f4d29155cf59cd3ca35535c02657d9dfd
1b06eefe37279623f1c160705ed9b00de1ef89ac14b7786aa7f9d594b96d5746
GET /firebasejs/8.10.1/firebase-firestore.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 93537
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 21:17:27 GMT
expires: Sat, 07 Oct 2023 21:17:27 GMT
cache-control: public, max-age=31536000
age: 185205
last-modified: Fri, 28 Jan 2022 20:19:15 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 00:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=1541069969&cid=1073857318.1665362652&ul=en-us&sr=1280x1024&_s=1&sid=1665362652&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=1541069969&cid=1073857318.1665362652&ul=en-us&sr=1280x1024&_s=1&sid=1665362652&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PR6SN12QDF>m=2oea50&_p=1541069969&cid=1073857318.1665362652&ul=en-us&sr=1280x1024&_s=1&sid=1665362652&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cbdandhempwarehouse.net
date: Mon, 10 Oct 2022 00:44:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42ce7c34fdc275b2f972223772146c64
fab0b21bb1662563533a391c80dca7ab7b6fa350
884975d638b0fdf58c0ae37c6d63eb768c48346db8b147ba9b2962509632b5f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "884975D638B0FDF58C0AE37C6D63EB768C48346DB8B147BA9B2962509632B5F1"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16294
Expires: Mon, 10 Oct 2022 05:15:47 GMT
Date: Mon, 10 Oct 2022 00:44:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42ce7c34fdc275b2f972223772146c64
fab0b21bb1662563533a391c80dca7ab7b6fa350
884975d638b0fdf58c0ae37c6d63eb768c48346db8b147ba9b2962509632b5f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "884975D638B0FDF58C0AE37C6D63EB768C48346DB8B147BA9B2962509632B5F1"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16294
Expires: Mon, 10 Oct 2022 05:15:47 GMT
Date: Mon, 10 Oct 2022 00:44:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42ce7c34fdc275b2f972223772146c64
fab0b21bb1662563533a391c80dca7ab7b6fa350
884975d638b0fdf58c0ae37c6d63eb768c48346db8b147ba9b2962509632b5f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "884975D638B0FDF58C0AE37C6D63EB768C48346DB8B147BA9B2962509632B5F1"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16294
Expires: Mon, 10 Oct 2022 05:15:47 GMT
Date: Mon, 10 Oct 2022 00:44:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42ce7c34fdc275b2f972223772146c64
fab0b21bb1662563533a391c80dca7ab7b6fa350
884975d638b0fdf58c0ae37c6d63eb768c48346db8b147ba9b2962509632b5f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "884975D638B0FDF58C0AE37C6D63EB768C48346DB8B147BA9B2962509632B5F1"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16294
Expires: Mon, 10 Oct 2022 05:15:47 GMT
Date: Mon, 10 Oct 2022 00:44:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6291708-1be3-4c11-ad6c-da814f5833cc.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6291708-1be3-4c11-ad6c-da814f5833cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6898224705162d2b10b9c11281675a2a
2613decb914b7e111bf6e535af552a928432fda6
1dd205a649bf5abfb302440be1254b1e92674bf640ca658228c3dd321bc1c6f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6291708-1be3-4c11-ad6c-da814f5833cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7781
x-amzn-requestid: 87630297-8a9e-4a18-a6e8-472422511361
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwauwHT_oAMFq2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e5e-7074108c741553167258f910;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CFjvVe3pe46GZNYHJ_VcK6zjLl7xmpuwUHUTmEdNfFLYzMhI_PtkAA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:02:50 GMT
etag: "2613decb914b7e111bf6e535af552a928432fda6"
content-type: image/jpeg
age: 9683
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LhwkinWopo6RX-yo5_35HWL9S2dGpdi7rAiwVWLxUicaHfHW3VF7DQ==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:22:12 GMT
age: 8521
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe176431a-9def-4047-8cc8-caf579074544.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe176431a-9def-4047-8cc8-caf579074544.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bc3111e39a3381756000a091c8dfcf9e
f34e94df89a1e9f94cb0613593acdbabc1ff3feb
5f33afcab0de597c653566337bd48661359e24fb975b24046b0eaba1b5fb201b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe176431a-9def-4047-8cc8-caf579074544.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9690
x-amzn-requestid: bcea0066-3f47-4b71-888d-a40bef098f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwbYlEzPIAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433f69-1fec113b662e8ad856cfd8a8;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mnyiSwPMq39NzVpsnSuZeQNzJwfWOQgZ8EPSEHeG5mZ1khDrm7cxTg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 21:59:05 GMT
age: 9908
etag: "f34e94df89a1e9f94cb0613593acdbabc1ff3feb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3772df6-6b5f-479a-ac99-e8d53e2b1901.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3772df6-6b5f-479a-ac99-e8d53e2b1901.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 417d2027d193f55382314ac15d26cae1
7358bea4f88a05993efb5ca5ff0cbbfa3a2f0518
6bd7158a2582f9b54220467128eda903eb02bf4f8c266396a67847e40919b744
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3772df6-6b5f-479a-ac99-e8d53e2b1901.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7676
x-amzn-requestid: b8e3d844-f0b1-4422-ad8d-186a81d690b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zwa5IGi8oAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433ea0-3e0f48642b4d419a14fdfb34;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:35:28 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1RQZRXlOGDOjc_-0mEVRDHmzpqGENBL7r-RoVScAMnV1381BStWMwA==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 21:58:12 GMT
age: 9961
etag: "7358bea4f88a05993efb5ca5ff0cbbfa3a2f0518"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65601377-6596-481c-9857-db59bb0ee5de.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65601377-6596-481c-9857-db59bb0ee5de.jpeg
IP 34.120.237.76:0
Hash a1857a323302d00ec65d9deafd7290ae
f6968c59a6e16ed114262a43cfe1fd5a52208174
42c351592d575d351b32fe6a7a7841335c7177a057b8212206340cf24d6df516
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65601377-6596-481c-9857-db59bb0ee5de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10506
x-amzn-requestid: 0c9ea0f0-4b59-474d-bb39-b6c5004847a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwbYnF2LIAMF8Dw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433f6a-588db0ab09fccb4353fff1df;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:38:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bR3HAzQjin8Yb6Uy-1RT0fr-NXW5lKsnC3OdN9lupCzRjL0XCwzutg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 21:50:33 GMT
age: 10420
etag: "e284b84f6e883ec1541b624e1751532e25e35ffd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb08ba1b9-62ad-4e65-96b6-b22981ce3635.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb08ba1b9-62ad-4e65-96b6-b22981ce3635.jpeg
IP 34.120.237.76:0
Hash 0c0428fcb68500685797d6bf582078c8
53d684e93e9c51890d970e9265b360e3934513b7
1cc4819bcf5d7dc953df1a7ad52df05eb324ec90ed90021bbb32ff21e611f1cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb08ba1b9-62ad-4e65-96b6-b22981ce3635.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7288
x-amzn-requestid: 38f93e67-dfd2-4324-bc0f-24e36a1c9b7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwatLHd3IAMFWdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e54-4ac21e2b2f55935d2df721ee;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:34:12 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RUFNhUlBYC05WxBkwLVQt0wpsFAxSrYL95RSJKmidxn3D72DdSGSeA==
via: 1.1 fc9b6e8f934a073c1a1983c7599b93ba.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 21:50:33 GMT
etag: "59e4de3cb5a18090fa3fef06f4dabf9f7f9928a9"
content-type: image/jpeg
age: 10420
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 10 Oct 2022 00:41:09 GMT
expires: Mon, 10 Oct 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 184
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
104.160.64.9200 OK 9.4 kB URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28294)
Hash 82f0f44b5877f189e0b9ba933b87cece
69744f36578d3a1f9ff6e268c0a2f3e8a025334a
c247386ce593397dfabaa580ebe94ffdb42e74af603bc54b5e1e948ce96b5ff9
GET /site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:13 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Mon, 10-Oct-2022 12:44:13 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Fri, 09-Dec-2022 00:44:13 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_65297604=0; expires=Wed, 08-Feb-2023 00:44:13 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
205.185.216.42200 OK 10 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (32376)
Hash 87b8e74031f8b5c76421913ecd8fd345
18d3903892f55f4a6792038cc120b73239d36e99
bc917783adc3825637c10be746fcd23d37bfe05341b970cd2e2b3a94cf1c3077
GET //javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:13 GMT
content-encoding: gzip
content-length: 10132
content-type: application/javascript
last-modified: Wed, 05 Oct 2022 13:49:14 GMT
accept-ranges: bytes
server: nginx
etag: W/"633d8b5a-7edb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665362653.dop230.sk1.t,1665362653.cds220.sk1.hn,1665362653.cds066.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
205.185.216.42200 OK 744 B URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (1524), with no line terminators
Hash ed35a142e8e052ea890638490c8861cc
f6f1e6b993739eb26fd270386a00326b4e030cde
96fcbc55c5b5205163897e33d97a501c5768b91586c44151bed3f01564f8a3bc
GET //javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:13 GMT
content-encoding: gzip
content-length: 744
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-5f4"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665362653.dop230.sk1.t,1665362653.cds220.sk1.hn,1665362653.cds221.sk1.c
X-Firefox-Spdy: h2
app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
104.160.64.9200 OK 296 kB URL HTTP/2 app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Size 296 kB (296328 bytes)
Hash 2cece4ce5b7e12a72036cf841b4c5f0a
32917c2375c63851ad67ec16e7a866edc77ff564
0c63019135c693303145ec9f92212f491aa2c61a78c856569d1ecc1ae31f26bb
GET /stylesheets/core/pages/webFormV2/public/gr_wf_v2.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:13 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 13:32:43 GMT
etag: W/"633ed8fb-1fd8"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js
205.185.216.42200 OK 88 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js
IP 205.185.216.42:0
File type Unicode text, UTF-8 text, with very long lines (65232)
Hash b9ffcf2506d95091ec2d2dd1101cbdd1
c3f08b1e4f91ad0ffdc8985a339dd1241617cccb
e7cbdf3eb602c2fe47e405f41cf7f50fed01020318b6e6893869fd4a0645a903
GET //javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:13 GMT
content-encoding: gzip
content-length: 87876
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: W/"1dc09d84-47f3c"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665362653.dop230.sk1.t,1665362653.cds220.sk1.hn,1665362653.cds264.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
205.185.216.42200 OK 415 B URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (747), with no line terminators
Hash c17ad4d605c3f36cff89841eead09370
32ca6025c29ca386e4f6f3c6648cae4f00828c74
35cf414826d2595a2176ba6ced1fcf0c0b828bfcb727170d44353bea53de9225
GET //javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:13 GMT
content-encoding: gzip
content-length: 415
content-type: application/javascript
last-modified: Fri, 26 Aug 2022 14:47:03 GMT
accept-ranges: bytes
server: nginx
etag: "6308dce7-2eb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1665362653.dop230.sk1.t,1665362653.cds220.sk1.hn,1665362653.cds235.sk1.c
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
104.160.64.9200 OK 1.4 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/1/img/105_02.png
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b08ace12a07a95ad4355eae9ed7152ee
92460c536f0548b514f3e8f6c317956c3ba42b7e
55adbd2da891dc3cad9c9b7a3796d51906bfd5b2f68c5634752080b7873a7b7f
GET /images/common/templates/webform/105/1/img/105_02.png HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:14 GMT
content-type: image/png
content-length: 1430
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: "6315edfe-596"
expires: Tue, 11 Oct 2022 00:44:14 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2
172.217.21.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 10632, version 1.0\012- data
Hash 235a9e95823e49744e35aaea0bb293aa
81945b78e158167e88dc40746a8418a4fcd1e7b8
62dd1591b85ac94338ebf05423aaf78e49e4a9c26ce929d2286c648c67f22686
GET /s/arvo/v20/tDbD2oWUg0MKqScQ7Z7o_vo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 22:35:21 GMT
expires: Wed, 04 Oct 2023 22:35:21 GMT
cache-control: public, max-age=31536000
age: 439733
last-modified: Tue, 19 Apr 2022 18:52:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
104.160.64.9200 OK 25 kB URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=TSB&webforms_id=zhN5J
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 65e55b8e6aa65c2932465de9fafcc389
d2a20d487c5ef7b7bc6657b0b44b8bbaa445347b
91bf41355f33611b4d3a25d4e4219f5cea0f9c76127fc75cda9012d17d0167ae
GET /view_webform_v2.js?u=TSB&webforms_id=zhN5J HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:12 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
172.217.21.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 21028, version 1.0\012- data
Hash e253ab00a4ae4563e11649db12bf94ed
59eded41d8fca07c5e530ebf604a43d8f26419bc
1b370fdd128795c5a76b8b3e306120d13d5a70fc6f31c5db83870a7a37f7c27e
GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:07:41 GMT
expires: Tue, 03 Oct 2023 21:07:41 GMT
cache-control: public, max-age=31536000
age: 531393
last-modified: Mon, 09 May 2022 18:31:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
172.217.21.163200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
IP 172.217.21.163:0
Hash 1ee7931e2a6a4878b42d4e2d90917386
4157ec1be2b0d3b8cc8f3353d425169c8e0af687
c020d2b7362796aa6a341b62eb8bf6fa1db3878bde1c8efa5d3e8e787b69c5fc
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:08:14 GMT
expires: Tue, 03 Oct 2023 21:08:14 GMT
cache-control: public, max-age=31536000
age: 531360
last-modified: Mon, 18 Jul 2022 19:13:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
172.217.21.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
IP 172.217.21.163:0
Hash 012f6f90811dfe6355e66ca5c0330762
203cb8f600bc383deedea4ab3866d7aadc877f8e
20b54e597019cfbb16b733916a48d4d568cd43c783e632fd8487394031fd3b3b
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 15:47:19 GMT
expires: Sat, 07 Oct 2023 15:47:19 GMT
cache-control: public, max-age=31536000
age: 205015
last-modified: Mon, 11 Jul 2022 21:20:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
172.217.21.163200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
IP 172.217.21.163:0
Hash eec8fc2b0717cbc17dc00569835aeeee
b22e621a8bd343e701ae1e322e891f23633d2bef
37f7c22b7cb27e19a833d857786aa6f123cc13cc5b394a2769798fe2a31f0b7f
GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 17:09:00 GMT
expires: Fri, 06 Oct 2023 17:09:00 GMT
cache-control: public, max-age=31536000
age: 286514
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
172.217.21.163200 OK 42 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
IP 172.217.21.163:0
Hash d27781a5e452f7ad5e51e545ba559021
1aa7959138808fcbe8a37723f883c4af7ebfe2f9
046e0eda38054409ff969a681fe3150d4a38df4a3a4c20588653bcb18cb7aed5
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 04:57:02 GMT
expires: Sun, 08 Oct 2023 04:57:02 GMT
cache-control: public, max-age=31536000
age: 157632
last-modified: Fri, 24 Jun 2022 18:42:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
172.217.21.163200 OK 50 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
IP 172.217.21.163:0
Hash b7ce4702f72461edbdcfa5b9e353deb6
6999fd2e5cd9cc05009addcdc095980b875ab41a
e92d07d736e5327d1ddf6aaccc3e91900d6ce1903242400e5791658df1fe1654
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25716
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:18:28 GMT
expires: Tue, 03 Oct 2023 21:18:28 GMT
cache-control: public, max-age=31536000
age: 530746
last-modified: Mon, 18 Jul 2022 19:17:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
172.217.21.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
IP 172.217.21.163:0
Hash b376c384a8ca744a9c15db295b6c9a52
a638f61ab8c0fdd7d8f533d3955d1cfa04fa1d00
476c8b1b51b8e248b11796270a379509c09399d5dfab6d5038d049e513e57e71
GET /s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 02:23:26 GMT
expires: Wed, 04 Oct 2023 02:23:26 GMT
cache-control: public, max-age=31536000
age: 512448
last-modified: Mon, 09 May 2022 19:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
172.217.21.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 15800, version 1.0\012- data
Hash 60ba598c8efc22ede11d3c1bad7a9eb1
837b29e6ec3d6cf8d48e038becfce35b3fd315e9
360e563a643439c7884d89d38e66d4a31a5ab5af27b7fdcd430e18a25809b9e2
GET /s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 22:26:54 GMT
expires: Wed, 04 Oct 2023 22:26:54 GMT
cache-control: public, max-age=31536000
age: 440240
last-modified: Tue, 19 Apr 2022 19:39:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
172.217.21.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
IP 172.217.21.163:0
Hash 1ba5ce71809e212b082bf43c462da5ae
335fc30491b8aba30d74b83810d5450c13f7c5a9
300a67380a859b02307cb7b3f16163a8c5e9609db5543091e471f7675883fa31
GET /s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 00:37:14 GMT
expires: Sat, 07 Oct 2023 00:37:14 GMT
cache-control: public, max-age=31536000
age: 259620
last-modified: Thu, 21 Apr 2022 17:07:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
172.217.21.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 17308, version 1.0\012- data
Hash c88096080fbcd8387f68de3176a3051d
78d8770f16f5ad2a7afa0ddbc521223b833b2829
2ba2295c4d7944dee93e1cea6fd4b8070ee30db31ade2a52ba3935e22e47cc2f
GET /s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 05:17:51 GMT
expires: Sat, 07 Oct 2023 05:17:51 GMT
cache-control: public, max-age=31536000
age: 242783
last-modified: Thu, 21 Apr 2022 16:20:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
172.217.21.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 10664, version 1.0\012- data
Hash c0f750134d21dde14468a8ad06147f18
bbe6bde58e4a1fd3568d4ed6e7d3c987269a97e9
142657ecb18312a7fdef25bfc8e74991e41effb958ea3678f4a601359ce2b8ec
GET /s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 00:47:03 GMT
expires: Sat, 07 Oct 2023 00:47:03 GMT
cache-control: public, max-age=31536000
age: 259031
last-modified: Thu, 21 Apr 2022 17:21:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
172.217.21.163200 OK 43 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP 172.217.21.163:0
Hash c5b035747f30990c4b024b27a4006618
b45aa5cc30319fc2897103a1a393437c19107da1
ef6687b8a4ae8eeb5d0909d9e57a9fdf43d0e12e1dfee0164cb039bbae07fb65
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 41852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:10:15 GMT
expires: Tue, 03 Oct 2023 21:10:15 GMT
cache-control: public, max-age=31536000
age: 531239
last-modified: Mon, 18 Jul 2022 19:45:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
172.217.21.163200 OK 55 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
IP 172.217.21.163:0
Hash 35d9ecc80ba3f78a62b8c1d9e78a45cf
a4b24f52397540a3f6ef7a72a8206008e4cc1a09
1df8928a226e10ead4002f83452d7d28f845d9f1956db6e0598effecb37620b4
GET /s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 19:01:19 GMT
expires: Tue, 03 Oct 2023 19:01:19 GMT
cache-control: public, max-age=31536000
age: 538975
last-modified: Mon, 15 Aug 2022 18:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
172.217.21.163200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2
IP 172.217.21.163:0
Hash ad153f27e7b2ef28eba3672789c9bda4
114eab79adc82d3d8789a7c6e6ce999185edfe92
91f4a4b6d717693966032cb180d69801b80711c7f0aa3f51c840bc5edbdc4189
GET /s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 22:08:44 GMT
expires: Thu, 05 Oct 2023 22:08:44 GMT
cache-control: public, max-age=31536000
age: 354930
last-modified: Wed, 27 Apr 2022 16:59:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
172.217.21.163200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2
IP 172.217.21.163:0
Hash 7030679da75bf59887773e460157f8f5
fa4b64f00bde169e7ad643a858baeb3a5ebc86d3
5ea1b144e3761328343a379e02bd26f4f1306eebf21d645ea11b269fd31c647c
GET /s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 01:10:16 GMT
expires: Wed, 04 Oct 2023 01:10:16 GMT
cache-control: public, max-age=31536000
age: 516838
last-modified: Mon, 09 May 2022 18:42:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
172.217.21.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 35848, version 1.0\012- data
Hash 12bb96876fc38b93380a6cc76267bd0b
8a71285da71a177d92bb605fb89825f199a81b5b
7da5e32922590d2ca6057bd7f2882269bdbcce1f53d3b622cfa1b7fcb95cca5b
GET /s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:09:43 GMT
expires: Tue, 03 Oct 2023 21:09:43 GMT
cache-control: public, max-age=31536000
age: 531271
last-modified: Mon, 18 Jul 2022 19:34:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
172.217.21.163200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 9684, version 1.0\012- data
Hash e081c14e5155024f33290cbae0803e99
f06b0a029836182c5b20cba1354c68d5ce4095a2
3fc8675e44a4f7815cde49d0b05a46fbe21ffb2c68d8a64931bed7cf494724cf
GET /s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:40:27 GMT
expires: Thu, 05 Oct 2023 21:40:27 GMT
cache-control: public, max-age=31536000
age: 356627
last-modified: Wed, 27 Apr 2022 17:10:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2
IP 172.217.21.163:0
Hash 62408c3addf9a01188274a962e1c4f42
718336620a25250bf921e2887e134fd60362d12f
af8f0c533f713e51d12e627e44da7f5f16916f8a42293c6062c6d271e83b0b08
GET /s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhe_escmA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 01:16:48 GMT
expires: Thu, 05 Oct 2023 01:16:48 GMT
cache-control: public, max-age=31536000
age: 430046
last-modified: Tue, 19 Apr 2022 19:14:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
104.160.64.9200 OK 21 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash ed85a04a31c14ac3ed1d04d7fda9f66d
1010c470654c062cd23ca5f0469d8c2f2c10cc69
f932a8c00e7a5cdf4f82e04dc047232b179b9644337f249a43594c79927e6fa7
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:14 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_3_sn_9063CB988D5A8B2CE88C6561AF7B3785_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/105/5/style.css
104.160.64.9200 OK 12 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/105/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 3e25cc0fb941a1d6d61f406e04c29fdf
b3fb4528573f64f974a7887cb5ec746dab5b7380
e19f137729b8054cc8be4a6b215a8b7ab460b6cb8ccb54d2c13c60a0881f572f
GET /images/common/templates/webform/105/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:14 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-1459"
expires: Tue, 11 Oct 2022 00:44:14 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2
172.217.21.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 17292, version 1.0\012- data
Hash 462347673d77210a1cec93eb5d270efc
2748df1f88b6510fd4010fc3e1d5a8eaeadc2c67
cc67b3104c8098976c6a9e4275c54864e0628505086b5f01c8f231b9bdd4b0b2
GET /s/chewy/v18/uK_94ruUb-k-wn52KjI9OPec.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:39:52 GMT
expires: Thu, 05 Oct 2023 06:39:52 GMT
cache-control: public, max-age=31536000
age: 410662
last-modified: Tue, 19 Apr 2022 18:57:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
104.160.64.9200 OK 21 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 80e3ec1bb2fecf2b79d239f3d0bf1c59
21a2c90736f454823d1d8342753c3febb7daa7fd
9279dfccf7882c4b694f0d0e7e5c83f148947627551b74833df95b64dc05b539
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:14 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/111/5/style.css
104.160.64.9200 OK 50 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/111/5/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash acfc4629e9590dbb8f2e918b72a34a0c
ce8db7e55e7193ccce10e8dba16d21269f99b14a
81533d357cb4d8686ff5e92a2b7087b2825ddac9eea75de8aae2bbca14bd8ea5
GET /images/common/templates/webform/111/5/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:14 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-13d1"
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_3_sn_B57ACC12544A603A8AC284FD02C4D210_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
expires: Tue, 11 Oct 2022 00:44:14 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amaranth/v18/KtkpALODe433f0j1zMF-OMWl42H9FYud.woff2
172.217.21.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/amaranth/v18/KtkpALODe433f0j1zMF-OMWl42H9FYud.woff2
IP 172.217.21.163:0
Hash 543f17077e54312709e1b25581c36745
6dce9f00458b46188c26d9d60707f4533ea7a1db
3f01e4e9a86f0fbd020acb5667d3758966192fd4b8a98470a479b5e875350cb6
GET /s/amaranth/v18/KtkpALODe433f0j1zMF-OMWl42H9FYud.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15676
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 04:34:28 GMT
expires: Thu, 05 Oct 2023 04:34:28 GMT
cache-control: public, max-age=31536000
age: 418191
last-modified: Tue, 19 Apr 2022 19:19:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
verify.authorize.net/anetseal/seal.js
172.64.145.133200 OK 0 B URL HTTP/2 verify.authorize.net/anetseal/seal.js
IP 172.64.145.133:0
GET /anetseal/seal.js HTTP/1.1
Host: verify.authorize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:11 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4007
etag: W/"0504eb1bf95d61:0"
last-modified: Mon, 28 Sep 2020 17:49:20 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1138
expires: Sat, 15 Oct 2022 00:44:11 GMT
cache-control: public, max-age=432000
set-cookie: __cfruid=7224013267186d2a3651dfc25c37386e7e863ee0-1665362651; path=/; domain=.authorize.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 757b537e6c4ab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
cbdandhempwarehouse.net/
104.21.30.86200 OK 0 B IP 104.21.30.86:0
GET / HTTP/1.1
Host: cbdandhempwarehouse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Sun, 09 Oct 2022 16:14:14 GMT
x-cache-status: HIT
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iv6ZydjMG4gNufV6hnSysvG2EvFO8U4RvMQOqsJasbcEZ2QeHondEx7Runu6IcO2Z7jjHRKbZLW5xzdr7%2FYRQjVMHXd106MI0bFJRX9DqPbNkY9%2BFshhcQhWFLvvNrGnSwrjS%2BCbT6QsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 757b53786806b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
omnisrc.com/inshop/launcher-v2.js
104.18.4.28200 OK 0 B URL HTTP/2 omnisrc.com/inshop/launcher-v2.js
IP 104.18.4.28:0
GET /inshop/launcher-v2.js HTTP/1.1
Host: omnisrc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:11 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 07:52:45 GMT
etag: W/"633e894d-de42"
expires: Mon, 10 Oct 2022 00:10:06 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 2
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2684
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 757b537e69ecb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.2.0/css/all.css?ver=5.2.0
IP 172.64.132.15:0
GET /releases/v5.2.0/css/all.css?ver=5.2.0 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:11 GMT
content-type: text/css
x-amz-id-2: DBaFYnCcNjq+VS+aLl2efAZF3XPVZ1umjlI02PXIyFFo6D3rFUEoC8LglI+rxyiKGuqwi1peOw8=
x-amz-request-id: FXYP48467HYYSXE9
last-modified: Wed, 30 Jun 2021 15:41:36 GMT
etag: W/"20a9ce516eaea76da29a23adc43e8998"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 30129657
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HfSHroBqkIN8KYPO%2BC7PcxAwOKyNtdfo7AtfGLD3Ki2f59xrJUPB%2BRkbIW0G6KycoQNEevM2i87ve7DxRwnEKca8%2FjnOv%2FM84mxmRHKR3iav3of7jfURTyJFKFHgOVWxysxCbxyi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 757b537e7d7273e3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097
104.18.26.48200 OK 0 B URL HTTP/2 forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097
IP 104.18.26.48:0
GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097 HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 00:44:12 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Mon, 10 Oct 2022 00:44:12 GMT
x-envoy-upstream-service-time: 10
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 757b537f2c5f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 00:44:13 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Mon, 10-Oct-2022 12:44:13 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Fri, 09-Dec-2022 00:44:13 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_60018804=0; expires=Wed, 08-Feb-2023 00:44:13 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2