HTTP/1.1 301 Moved Permanently
Date: Sun, 24 Oct 2021 04:16:00 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Expires: Sat, 24 Oct 2020 04:16:01 GMT
Set-Cookie: PHPSESSID=da2f00dca37a62d5e453773a64a4d3ab; expires=Sun, 24-Oct-2021 05:16:01 GMT; Max-Age=3600; path=/; domain=tan-us.net; HttpOnly; SameSite=Lax
Location: https://tan-us.net/
X-UA-Compatible: IE=edge
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Feature-Policy: geolocation 'self'; autoplay 'none'; camera 'none'
Content-Security-Policy: frame-ancestors 'none'; block-all-mixed-content; default-src 'none'; child-src 'self'; connect-src 'self' *.cardinalcommerce.com *.amazonaws.com *.nmgplatform.com https://connect.facebook.net *.facebook.com *.braintree-api.com *.braintreegateway.com *.paypal.com *.bitbucket.org *.adroll.com *.consensu.org *.google-analytics.com *.google.com ; script-src 'unsafe-eval' 'unsafe-inline' 'self' *.googletagmanager.com *.doubleclick.net *.cardinalcommerce.com *.facebook.com *.consensu.org *.adroll.com *.braintreegateway.com *.gstatic.com *.google.com *.nedmaf.com *.paypal.com *.adobedtm.com *.trustpilot.com *.paypalobjects.com *.google-analytics.com *.widgets.magentocommerce.com *.vimeocdn.com *.ytimg.com *.nextroll.com *.googleadservices.com *.cloudfront.net *.youtube.com *.vimeo.com *.yotpo.com *.facebook.net *.jsdelivr.net *.youtube.com googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' *.cloudflare.com *.yotpo.com *.googleapis.com *.bootstrapcdn.com *.typekit.net 'report-sample'; object-src 'none'; manifest-src 'self'; base-uri 'self'; form-action 'self' *.touch.tech *.cardinalcommerce.com https://www.facebook.com https://connect.facebook.net *.ep-mimecast.facebook.com; media-src 'self'; prefetch-src 'self'; worker-src 'unsafe-eval' 'self'; img-src 'self' *.nmgplatform.com *.google.com *.doubleclick.net *.paypal.com *.paypalobjects.com *.google-analytics.com *.widgets.magentocommerce.com *.vimeocdn.com *.ytimg.com data: *.adroll.com https://nextroll.com *.googleadservices.com *.cloudfront.net *.cloudflare.com *.yotpo.com *.herokuapp.com *.facebook.com ; font-src 'self' data: *.amazonaws.com *.avast.com *.cloudfront.net *.typekit.net *.cloudflare.com *.bootstrapcdn.com *.gstatic.com; frame-src 'self' *.touch.tech *.cardinalcommerce.com bid.g.doubleclick.net *.paypalobjects.com *.youtube.com *.paypal.com *.braintreegateway.com *.yotpo.com *.trustpilot.com *.facebook.com *.google.com *.kaptcha.com ; report-uri https://3af62028f009bea6dbf3993ef428ef98.report-uri.com/r/d/csp/enforce
Cache-Control: max-age=60, private, must-revalidate
Content-Type: text/html; charset=UTF-8
Keep-Alive: timeout=4
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
HTTP/1.1 200 OK
Date: Sun, 24 Oct 2021 04:16:01 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Expires: Fri, 23 Oct 2020 14:43:40 GMT
Set-Cookie: PHPSESSID=e664823a74a4e83f9e4de1ceb28e3690; expires=Sun, 24-Oct-2021 05:16:02 GMT; Max-Age=3600; path=/; domain=tan-us.net; secure; HttpOnly; SameSite=Lax
Content-Length: 63020
X-UA-Compatible: IE=edge
Feature-Policy: geolocation 'self'; autoplay 'none'; camera 'none'
Content-Security-Policy: frame-ancestors 'none'; block-all-mixed-content; default-src 'none'; child-src 'self'; connect-src 'self' *.cardinalcommerce.com *.amazonaws.com *.nmgplatform.com https://connect.facebook.net *.facebook.com *.braintree-api.com *.braintreegateway.com *.paypal.com *.bitbucket.org *.adroll.com *.consensu.org *.google-analytics.com *.google.com ; script-src 'unsafe-eval' 'unsafe-inline' 'self' *.googletagmanager.com *.doubleclick.net *.cardinalcommerce.com *.facebook.com *.consensu.org *.adroll.com *.braintreegateway.com *.gstatic.com *.google.com *.nedmaf.com *.paypal.com *.adobedtm.com *.trustpilot.com *.paypalobjects.com *.google-analytics.com *.widgets.magentocommerce.com *.vimeocdn.com *.ytimg.com *.nextroll.com *.googleadservices.com *.cloudfront.net *.youtube.com *.vimeo.com *.yotpo.com *.facebook.net *.jsdelivr.net *.youtube.com googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' *.cloudflare.com *.yotpo.com *.googleapis.com *.bootstrapcdn.com *.typekit.net 'report-sample'; object-src 'none'; manifest-src 'self'; base-uri 'self'; form-action 'self' *.touch.tech *.cardinalcommerce.com https://www.facebook.com https://connect.facebook.net *.ep-mimecast.facebook.com; media-src 'self'; prefetch-src 'self'; worker-src 'unsafe-eval' 'self'; img-src 'self' *.nmgplatform.com *.google.com *.doubleclick.net *.paypal.com *.paypalobjects.com *.google-analytics.com *.widgets.magentocommerce.com *.vimeocdn.com *.ytimg.com data: *.adroll.com https://nextroll.com *.googleadservices.com *.cloudfront.net *.cloudflare.com *.yotpo.com *.herokuapp.com *.facebook.com ; font-src 'self' data: *.amazonaws.com *.avast.com *.cloudfront.net *.typekit.net *.cloudflare.com *.bootstrapcdn.com *.gstatic.com; frame-src 'self' *.touch.tech *.cardinalcommerce.com bid.g.doubleclick.net *.paypalobjects.com *.youtube.com *.paypal.com *.braintreegateway.com *.yotpo.com *.trustpilot.com *.facebook.com *.google.com *.kaptcha.com ; report-uri https://3af62028f009bea6dbf3993ef428ef98.report-uri.com/r/d/csp/enforce
Cache-Control: max-age=60, private, must-revalidate
Content-Type: text/html; charset=UTF-8
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=4
|