highpointscientific.com Review
highpointscientific.com Review
| Titletag | Descriptiontag | language |
|---|
| Telescopes | Eyepieces & Telescope Accessories | High Point Scientific | |
English |
| Ip adress | 104.26.8.79 | Nameserver | clark.ns.cloudflare.com
novalee.ns.cloudflare.com |
Status code | 200 |
robots.txt
N/A
HTTP/1.1 301 Moved Permanently
Date: Sun, 24 Aug 2025 01:33:38 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 24 Aug 2025 02:33:38 GMT
Location: https://highpointscientific.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=STsmYL6gU0NwAqBpaQRfBUSp8dUP2eYqmYLkQJ%2FtjJYGm8haiKbRjM2I%2BBdD4Ki2e7mq%2F%2BZbV9IyEV4%2BiqJoX56L75CI5B4AnASqRyl6UB1CLi8T69eLY48QglgBjtCR4CENu5LwP0ig"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server-Timing: cfOrigin;dur=0,cfEdge;dur=81
Server: cloudflare
CF-RAY: 973f1a493d2ee382-NRT
server-timing: cfL4;desc="?proto=TCP&rtt=1825&min_rtt=1825&rtt_var=912&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=340&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
HTTP/1.1 301 Moved Permanently
Date: Sun, 24 Aug 2025 01:33:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Location: https://www.highpointscientific.com/
CF-Ray: 973f1a49f92ad791-NRT
CF-Cache-Status: DYNAMIC
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: -1
Set-Cookie: PHPSESSID=ae2d73af6de0913fe9b7db8821a5071e; expires=Mon, 25 Aug 2025 01:33:38 GMT; Max-Age=86400; path=/; domain=www.highpointscientific.com; secure; HttpOnly; SameSite=Lax
Pragma: no-cache
content-security-policy: media-src *.kaltura.com *.adobe.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ static.zdassets.com 'self' 'unsafe-inline'; img-src *.elfsightcdn.com *.googlesyndication.com *.clarity.ms *.adtrafficquality.google *.kaltura.com assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.bird.eu *.getbread.com *.breadpayments.com *.rbcpayplan.com maps.gstatic.com https://helloextend-static-assets.s3.amazonaws.com https://extendcoreoffersdemo-offersthemelogobucketeb21afa-19jnurg0a0o17.s3.amazonaws.com https://s3.amazonaws.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ https://www.google.com/ magefan.com cm.magefan.com *.disqus.com https://img.youtube.com https://firebasestorage.googleapis.com https://meetanshi.com/media/logo.png maps.googleapis.com www.gstatic.com *.cloudfront.net *.google.com *.stamped.io *.amazonaws.com *.userway.org verify.authorize.net scontent.cdninstagram.com *.affirm.com *.routeapp.io *.searchspring.net *.zopim.com *.bing.com *.zonos.com www.xtento.com cdn.xtento.com *.yotpo.com https://imgs.signifyd.com https://*.online-metrix.net data: 'self' 'unsafe-inline'; connect-src *.wisepops.net *.elfsight.com *.wisepops.com *.clarity.ms *.adtrafficquality.google *.acsbapp.com *.bing.com *.breadgateway.net https://wisepops.net/id https://wisepops.net/my-wisepop https://acsbapp.com/apps/app/dist/js/locale/en-loader.json dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com *.googleapis.com https://*.helloextend.com https://*.ingest.sentry.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.cardinalcommerce.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://stats.g.doubleclick.net/ https://stats.g.doubleclick.net/ http://www.google-analytics.com/ https://www.google-analytics.com/ https://get.geojs.io *.avada.io *.refersion.com api.route.com https://api.lab.amplitude.com https://flag.lab.amplitude.com https://protect-quote-q.route.com protection-widget.route.com d3od5si8vgcekb.cloudfront.net protect-lightning-bolt-widget.route.com ddbmicszvqxcg.cloudfront.net https://unpkg.com wobs.route.com *.authorize.net ekr.zdassets.com *.zendesk.com wss://widget-mediator.zopim.com hn.inspectlet.com stamped.io *.braintreegateway.com *.livechatinc.com *.userway.org graph.instagram.com *.affirm.com *.route.com *.klaviyo.com *.searchspring.io *.zonos.com *.yotpo.com https://imgs.signifyd.com 'self' 'unsafe-inline'; script-src *.elfsight.com *.googlesyndication.com *.polyfill-fastly.io *.cloudflareinsights.com *.wisepops.net *.hotjar.com *.clarity.ms *.acsbapp.com *.adtrafficquality.google https://polyfill-fastly.io/v2/polyfill.min.js https://wisepops.net/loader.js https://acsbapp.com/apps/app/dist/js/app.js https://acsbapp.com/apps/app/dist/js/loader.js https://static.cloudflareinsights.com/beacon.min.js assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com f.vimeocdn.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com *.googleapis.com https://*.helloextend.com https://browser.sentry-cdn.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com polyfill-fastly.io https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://www.googletagmanager.com/ https://www.googletagmanager.com/ *.disqus.com *.avada.io *.refersion.com cdn.routeapp.io https//fonts.googleapis.com https://api.lab.amplitude.com https://flag.lab.amplitude.com https://protect-quote-q.route.com protection-widget.route.com protect-lightning-bolt-widget.route.com d3od5si8vgcekb.cloudfront.net ddbmicszvqxcg.cloudfront.net https://unpkg.com wobs.route.com maps.googleapis.com maps.gstatic.com www.google.com https://translate.google.com translate.googleapis.com www.gstatic.com includes.ccdc02.com static.zdassets.com cdn.inspectlet.com *.stamped.io *.livechatinc.com *.userway.org www.klarnapayments.com *.affirm.com *.routeapp.io *.searchspring.net *.googleoptimize.com *.zopim.com *.bing.com *.zonos.com www.xtento.com cdn.xtento.com *.yotpo.com https://cdn-scripts.signifyd.com https://imgs.signifyd.com https://h64.online-metrix.net 'self' 'unsafe-inline' 'unsafe-eval'; font-src *.klaviyo.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://fonts.gstatic.com *.fontawesome.com https://fonts.bunny.net maxcdn.bootstrapcdn.com https://d1cwup7r903a1d.cloudfront.net data: *.stamped.io *.zopim.com *.yotpo.com *.googleapis.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net www.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com * https://www.googletagmanager.com/ *.refersion.com *.livechatinc.com *.kaptcha.com www.paypalobjects.com *.affirm.com www.xtento.com *.yotpo.com https://*.online-metrix.net https://imgs.signifyd.com 'self' 'unsafe-inline'; style-src *.adobe.com fonts.googleapis.com https://fonts.googleapis.com assets.braintreegateway.com https://static.klaviyo.com *.fontawesome.com https://fonts.bunny.net maxcdn.bootstrapcdn.com https//fonts.googleapis.com https://d1cwup7r903a1d.cloudfront.net *.googleapis.com *.stamped.io www.klarnapayments.com *.searchspring.net *.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-cache: MISS
x-cache-nxaccel: BYPASS
x-cache-via: varnish
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
x-host: highpointscientific.com
x-ua-compatible: IE=edge
x-varnish: 61246
x-varnish-age: 0
x-xss-protection: 1; mode=block
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vmHVtEqzk1KIbRtJpHUQq%2BeFjLU2FiLEAfO0Kn61bthU3hJnRcM%2B4jK3JVjBtUOSbjhEQDZ3hYss7BLPlUBC2jdWYxnk%2BjzT8mY2xnKgnEQJhU6jmENTxtGCUYMDVvUV5Dpx%2BkIP8TWL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
server-timing: cfOrigin;dur=0,cfEdge;dur=766
server-timing: cfL4;desc="?proto=TCP&rtt=1491&min_rtt=1467&rtt_var=598&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2876&recv_bytes=1001&delivery_rate=1743527&cwnd=252&unsent_bytes=0&cid=087acc83003c719f&ts=775&x=0"
HTTP/1.1 200 OK
Date: Sun, 24 Aug 2025 01:33:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: br
CF-Ray: 973f1a4f7dbbaf7b-NRT
CF-Cache-Status: DYNAMIC
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: -1
Vary: accept-encoding
Pragma: no-cache
content-security-policy: media-src *.kaltura.com *.adobe.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ static.zdassets.com 'self' 'unsafe-inline'; img-src *.elfsightcdn.com *.googlesyndication.com *.clarity.ms *.adtrafficquality.google *.kaltura.com assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.bird.eu *.getbread.com *.breadpayments.com *.rbcpayplan.com maps.gstatic.com https://helloextend-static-assets.s3.amazonaws.com https://extendcoreoffersdemo-offersthemelogobucketeb21afa-19jnurg0a0o17.s3.amazonaws.com https://s3.amazonaws.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ https://www.google.com/ magefan.com cm.magefan.com *.disqus.com https://img.youtube.com https://firebasestorage.googleapis.com https://meetanshi.com/media/logo.png maps.googleapis.com www.gstatic.com *.cloudfront.net *.google.com *.stamped.io *.amazonaws.com *.userway.org verify.authorize.net scontent.cdninstagram.com *.affirm.com *.routeapp.io *.searchspring.net *.zopim.com *.bing.com *.zonos.com www.xtento.com cdn.xtento.com *.yotpo.com https://imgs.signifyd.com https://*.online-metrix.net data: 'self' 'unsafe-inline'; connect-src *.wisepops.net *.elfsight.com *.wisepops.com *.clarity.ms *.adtrafficquality.google *.acsbapp.com *.bing.com *.breadgateway.net https://wisepops.net/id https://wisepops.net/my-wisepop https://acsbapp.com/apps/app/dist/js/locale/en-loader.json dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com *.googleapis.com https://*.helloextend.com https://*.ingest.sentry.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.cardinalcommerce.com https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://stats.g.doubleclick.net/ https://stats.g.doubleclick.net/ http://www.google-analytics.com/ https://www.google-analytics.com/ https://get.geojs.io *.avada.io *.refersion.com api.route.com https://api.lab.amplitude.com https://flag.lab.amplitude.com https://protect-quote-q.route.com protection-widget.route.com d3od5si8vgcekb.cloudfront.net protect-lightning-bolt-widget.route.com ddbmicszvqxcg.cloudfront.net https://unpkg.com wobs.route.com *.authorize.net ekr.zdassets.com *.zendesk.com wss://widget-mediator.zopim.com hn.inspectlet.com stamped.io *.braintreegateway.com *.livechatinc.com *.userway.org graph.instagram.com *.affirm.com *.route.com *.klaviyo.com *.searchspring.io *.zonos.com *.yotpo.com https://imgs.signifyd.com 'self' 'unsafe-inline'; script-src *.elfsight.com *.googlesyndication.com *.polyfill-fastly.io *.cloudflareinsights.com *.wisepops.net *.hotjar.com *.clarity.ms *.acsbapp.com *.adtrafficquality.google https://polyfill-fastly.io/v2/polyfill.min.js https://wisepops.net/loader.js https://acsbapp.com/apps/app/dist/js/app.js https://acsbapp.com/apps/app/dist/js/loader.js https://static.cloudflareinsights.com/beacon.min.js assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com f.vimeocdn.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com *.googleapis.com https://*.helloextend.com https://browser.sentry-cdn.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com polyfill-fastly.io https://static.klaviyo.com https://static-forms.klaviyo.com https://fast.a.klaviyo.com https://static-tracking.klaviyo.com/ https://a.klaviyo.com/ https://telemetrics.klaviyo.com/ http://www.googletagmanager.com/ https://www.googletagmanager.com/ *.disqus.com *.avada.io *.refersion.com cdn.routeapp.io https//fonts.googleapis.com https://api.lab.amplitude.com https://flag.lab.amplitude.com https://protect-quote-q.route.com protection-widget.route.com protect-lightning-bolt-widget.route.com d3od5si8vgcekb.cloudfront.net ddbmicszvqxcg.cloudfront.net https://unpkg.com wobs.route.com maps.googleapis.com maps.gstatic.com www.google.com https://translate.google.com translate.googleapis.com www.gstatic.com includes.ccdc02.com static.zdassets.com cdn.inspectlet.com *.stamped.io *.livechatinc.com *.userway.org www.klarnapayments.com *.affirm.com *.routeapp.io *.searchspring.net *.googleoptimize.com *.zopim.com *.bing.com *.zonos.com www.xtento.com cdn.xtento.com *.yotpo.com https://cdn-scripts.signifyd.com https://imgs.signifyd.com https://h64.online-metrix.net 'self' 'unsafe-inline' 'unsafe-eval'; font-src *.klaviyo.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://fonts.gstatic.com *.fontawesome.com https://fonts.bunny.net maxcdn.bootstrapcdn.com https://d1cwup7r903a1d.cloudfront.net data: *.stamped.io *.zopim.com *.yotpo.com *.googleapis.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net www.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.getbread.com *.breadpayments.com *.rbcpayplan.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com * https://www.googletagmanager.com/ *.refersion.com *.livechatinc.com *.kaptcha.com www.paypalobjects.com *.affirm.com www.xtento.com *.yotpo.com https://*.online-metrix.net https://imgs.signifyd.com 'self' 'unsafe-inline'; style-src *.adobe.com fonts.googleapis.com https://fonts.googleapis.com assets.braintreegateway.com https://static.klaviyo.com *.fontawesome.com https://fonts.bunny.net maxcdn.bootstrapcdn.com https//fonts.googleapis.com https://d1cwup7r903a1d.cloudfront.net *.googleapis.com *.stamped.io www.klarnapayments.com *.searchspring.net *.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-cache: HIT
x-cache-nxaccel: BYPASS
x-cache-via: varnish
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
x-host: www.highpointscientific.com
x-ua-compatible: IE=edge
x-varnish: 61249 32820
x-varnish-age: 56008
x-xss-protection: 1; mode=block
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OJBliJSWU6s96rbXn9uQlxdUM%2FrrgtfM2OAHn7toQKEWPY5QibsOGf7Q7Fg6ivonPD%2FCEnSbVmGrL5mLrfu0WtqZfbicLyFvyHuY2IDHREGHC4uRFFu51FWG5C2wzuGbuvJseG918t8A%2F2l7Iw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
server-timing: cfOrigin;dur=0,cfEdge;dur=772
server-timing: cfL4;desc="?proto=TCP&rtt=1677&min_rtt=1668&rtt_var=644&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2876&recv_bytes=1006&delivery_rate=1661503&cwnd=252&unsent_bytes=0&cid=c1401a048949eadb&ts=782&x=0"