| ad.doubleclick.net/clk;265186560;90846275;t;pc=[TPAS_ID]?///expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= |  142.250.74.166 | | 0 B |
URL ad.doubleclick.net/clk;265186560;90846275;t;pc=[TPAS_ID]?///expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= IP142.250.74.166:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clk;265186560;90846275;t;pc=[TPAS_ID]?///expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: ///expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20=
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 16:26:50 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUn3WelaK-KIg4BSsV_OVFS5ZB3D2bZBhx8y0Ij4iV1hY5lS7aPCIVYoI6XjT88; expires=Sat, 25-Apr-2026 16:26:50 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
FLC=COeSAhDD6KgrGIDauX4omdVHMMqIqrEGcADauAQcMho6GAoWKDCYF739wTqCGAILDJobBgjKiKqxBg; expires=Thu, 25-Apr-2024 16:27:00 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= | 162.241.120.242 | | 0 B |
URL expansiveaffiliate.com/Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= IP162.241.120.242:0 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Rabiens/Rabinxz/tcygnz/ZGt3YXJkanJAd2FyZHRsYy5jb20= HTTP/1.1
Host: expansiveaffiliate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 16:26:48 GMT
Server: Apache
refresh: 0;url=https://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 216.58.207.202 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP216.58.207.202:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:38:23 GMT
expires: Fri, 18 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 600508
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css |  104.18.11.207 | 200 OK | 25 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65324) Hash7cc40c199d128af6b01e74a28c5900b0 d305110fb79113a961394b433d851a3410342b8c 2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 10/31/2023 19:00:00
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f1166161e32f8f87d9c3eb14f910cfbe
cdn-cache: HIT
cf-cache-status: HIT
age: 272694
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879fb2761f73b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/585b051251.js | 104.18.40.68 | 200 OK | 12 kB |
URL GET HTTP/2kit.fontawesome.com/585b051251.js IP104.18.40.68:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash6adc052d3d3112db6caca17a4d4ac987 3b74040a0a90e72f4e47ecc7ff7c82470630298e 2ff82065f06f16880187f43da157c32b5238792acf74b01791aeda31121510e7
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:51 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8fjkALvrB_CbcHNrr4B
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 879fb2761ac256b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/bootstrap.min.css?1422585379 | 104.17.96.13 | 404 Not Found | 13 kB |
URL GET HTTP/3cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/bootstrap.min.css?1422585379 IP104.17.96.13:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
Hashb44c32a3525180671d3cd4686f8078f0 c8281a915e421df71b0abd0e8f4375094a8a9f6b 08638843538071f700a03e0fe659511642160096ec9774ccde35cacce452c7d8
GET /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/bootstrap.min.css?1422585379 HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html
Cookie: __cf_bm=AfWCIogXuEEKrVFLpVLw.8zA7EM65wXVNIkePju4pUc-1714062410-1.0.1.1-20n8SW0givb03LoyyFYYSjdXnMQ7CuOBJXrzCKhWQL.0w5hjtikJaxZ5jorjPDkQA9_eq0DxNqB6mKSZaoU_nQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: text/plain; charset=utf-8
cf-ray: 879fb27af9a6569a-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 1
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/bootstrap.min.css
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/s2/favicons?domain=wardtlc.com | 142.250.74.164 | 301 Moved Permanently | 331 B |
URL GET HTTP/2www.google.com/s2/favicons?domain=wardtlc.com IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8ca3ef0d488adcf96080f505fe752300 44928047ceb0dfd5f40cd0779dc018de2b93d6ec 0bc3b537b8ba112d0a5d65e79b750db06fbadc733277e646834208b2476d956c
GET /s2/favicons?domain=wardtlc.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://wardtlc.com&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 16:26:52 GMT
expires: Thu, 25 Apr 2024 16:56:52 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 331
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2 | 104.21.26.223 | 200 OK | 78 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2 IP104.21.26.223:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 78168, version 331.-31196 Hasha9fd1225fb2cd32320e2b931dca01089 44ec5c6a868b4ce62350d9f040ed8e18f7a1d128 c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EPGJRc_vue2XTn87WfnBKkaeRbE-bt8DmMRMp_pHpdCEApWUO0wM6Q==
age: 799014
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5X4r2m5O543IKZ7w26aJmAgM44u1hvAOdWxrPhrSCPgrj2mPmikbvA%2B7rlLvnfA1Wt36VXAVMUgB1TIjjSJCuqjWQ1pEqXz8ntKrQjqG1f%2FBacaA6HVcKBtBBc1zXYtzkXCReeDH2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fb27cae7fb517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 4.7 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26500) Hash76f34b71fc9fb641507ff6a822cc07f5 73ed2f8f21cd40fb496e61306acbb5849d4dbff4 6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a8dnusEM4Yg8m-VdQZEb2glHNV7iGFKoropP-AVOqNv7UK4htTxORA==
age: 3565602
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZB9QoI4X4Z1cqoeiW0TnUfbPSZ%2Fte7ahNFjricYHS3U%2F1%2B9uSJhVM7zub5BKxJJPMtJHGbWKHQwxOIzDihxhS4g9Wz%2FG8c9UCI0TycZYeKoF5H48xOsMevvr3A8yUZUvAPbsFTGyJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fb27b9d9ab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Yellowtail%26display=swap | 142.250.74.106 | 400 Bad Request | 1.1 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Yellowtail%26display=swap IP142.250.74.106:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash3db4043456cc3f2aabd20db538b55a69 c3c2c24bf8918f8c94edfd9e5d833f1bbfa7df6e 33846d983560d81c5cc45375cb9caf7f243f80b74b1710585bf4c6d7f53ad096
GET /css?family=Yellowtail%26display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 16:26:52 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.wardtlc.com/wp-content/uploads/2023/02/Ward-TLC-Logo-1.png | 141.193.213.11 | 200 OK | 8.7 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2023/02/Ward-TLC-Logo-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash61eb0ad6b070764be1a38571d210ecbb 797d48ecb6db7b7735729cfc7e5676cabc6da75f 8462f9aa7a817677acda21edce86c66837254c1a873e8cbd2f4143fc89e4af6f
GET /wp-content/uploads/2023/02/Ward-TLC-Logo-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 8684
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10254
content-disposition: inline; filename="Ward-TLC-Logo-1.webp"
etag: "64cd4adf-280e"
last-modified: Fri, 04 Aug 2023 19:00:47 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb281690d0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/07/phone-155x300.png | 141.193.213.11 | 200 OK | 11 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/07/phone-155x300.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hasheb8615bf2499c6b7e59e3922eda98dce 0abbce87d235dd578a0763cffb58af09f7fc1b26 8f798c246f8283e9f0a6061168e71cbac990b7cab55c13d8b0fe729e9a41fa02
GET /wp-content/uploads/2022/07/phone-155x300.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 10698
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=11864
content-disposition: inline; filename="phone-155x300.webp"
etag: "64cd4b03-2e58"
last-modified: Fri, 04 Aug 2023 19:01:23 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb281691b0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.3 | 141.193.213.11 | 200 OK | 1.0 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.3 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text Hashd71b75b2327258b1d01d50590c1f67ca b7820e4ffb6becc133c48f66d9f683545530b959 1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.3 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 17 Apr 2024 17:04:15 GMT
etag: W/"6620010f-53f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28179380b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/plugins/gtranslate/js/dwf.js?ver=386b87565c4ed5728fe082cc8872bef2 | 141.193.213.11 | 200 OK | 6.6 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/plugins/gtranslate/js/dwf.js?ver=386b87565c4ed5728fe082cc8872bef2 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (3129) Hash9a3b0be888e016410a2a184d6347e32f ad9c2c85d6a04df9e2b12c331ce22b255130bc56 544278ca9219edd87d53ddeeeb7748488af6cf0fee6d38c118526df9970a1a95
GET /wp-content/plugins/gtranslate/js/dwf.js?ver=386b87565c4ed5728fe082cc8872bef2 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 17 Apr 2024 17:03:47 GMT
etag: W/"662000f3-5103"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb281793a0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/plugins/image-map-pro-wordpress/css/image-map-pro.min.css?ver=5.5.1 | 141.193.213.11 | 200 OK | 84 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/plugins/image-map-pro-wordpress/css/image-map-pro.min.css?ver=5.5.1 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeASCII text, with very long lines (30429) Hashc43a70919b5b556faa252067a21f4317 0a2e45be7e87af1142bb1624a2ae12052b440453 c609ae2d6ceb380728fbef3c78cabbac0c7679914e739eb3834f2f2a9770f3e6
GET /wp-content/plugins/image-map-pro-wordpress/css/image-map-pro.min.css?ver=5.5.1 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 04 Aug 2023 19:03:50 GMT
etag: W/"64cd4b96-ccf9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28138f30b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/logo-strip-revised-4x.png | 141.193.213.11 | 200 OK | 2.6 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/logo-strip-revised-4x.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typePNG image data, 500 x 88, 8-bit colormap, non-interlaced Hash2f8b049b373ca443dee63b183280bc2c cb3a9a40f9f0278c21eaa19a4f7721cfe72d27b3 58e84170a5fbff8bb9a05d532a9b485d95618c8a81d44e7f117d4bac2f716a3f
GET /wp-content/uploads/2022/06/logo-strip-revised-4x.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/png
content-length: 2618
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4952, status=webp_bigger
etag: "64cd4b09-1358"
last-modified: Fri, 04 Aug 2023 19:01:29 GMT
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bd70b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/ward-background.jpg | 141.193.213.11 | 200 OK | 14 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/ward-background.jpg IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1648x1528, components 3 Hashadfdd1a01e4a2afa27bd7f117d4ebbbb 03a9bca297195410b8c251e5255d9df6c1edcf9e b5c5391cbafa7dd71bd5ebb647d9c234f221fd00b8df8916026118ddb88a565a
GET /wp-content/uploads/2022/06/ward-background.jpg HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/jpeg
content-length: 13505
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26148
etag: "64cd4b0a-6624"
last-modified: Fri, 04 Aug 2023 19:01:30 GMT
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bdc0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32 | 141.193.213.11 | 200 OK | 65 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashc38e824205a2b0306261c1b31302bdda a240b2a875e5052ca45debbebd87723ebb7164c3 f044f24015dcdecb74ef693e5c19fc157bb86984d1fe2a2b96fcb3ec11ed99fd
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 28 Mar 2024 16:58:15 GMT
etag: W/"6605a1a7-3dbf0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28169300b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/wardtlc/style.css?ver=4.24.3 | 141.193.213.11 | 200 OK | 2.7 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/wardtlc/style.css?ver=4.24.3 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeASCII text, with CR line terminators Hash8879a6879a48bf8739bc7332d0257b35 38e45752aa7d40edf95244cf64889bf9caee3e89 c9526b0b2983a2855864e8d60661b8bdf0f96db5f5d77491707b0de6f47e642f
GET /wp-content/themes/wardtlc/style.css?ver=4.24.3 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 25 Sep 2023 20:22:17 GMT
etag: W/"6511ebf9-19f5"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28148fc0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/track-shipment-1.png | 141.193.213.11 | 200 OK | 380 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/track-shipment-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash3e9345946de67fb5b9afd10d65520b83 87103aed484a8226b6588ccfefa9250a0b8c0cb1 57914d0f865bce23d64627f547b8263cfe67ce2a5a951d1781d759ba6f7440b8
GET /wp-content/uploads/2022/06/track-shipment-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 380
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=503
content-disposition: inline; filename="track-shipment-1.webp"
etag: "64cd4b09-1f7"
last-modified: Fri, 04 Aug 2023 19:01:29 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bf20b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.24.3 | 141.193.213.11 | 200 OK | 62 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.24.3 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65467) Hasha2f1fe6cea5279cd938a89f797854cbe b682a00c3ee9e845c603c3086d99a879c07298f6 9ccbe8ceae9d2553c597d0a65f19928d14f42368ddd1118d69a968c2c9912161
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.24.3 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 17 Apr 2024 17:04:15 GMT
etag: W/"6620010f-42fa7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb281692c0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/transit-times-1.png | 141.193.213.11 | 200 OK | 422 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/transit-times-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash3d2cf917b05451737808ccc07313ec1c 467fedfca9a936a0ed1ef709fd22217548d6ce31 c3c439be2606da9fbe2595a670dacd5234c58222e860338c8c9cfd67923b3e27
GET /wp-content/uploads/2022/06/transit-times-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 422
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=512
content-disposition: inline; filename="transit-times-1.webp"
etag: "64cd4b09-200"
last-modified: Fri, 04 Aug 2023 19:01:29 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bfc0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25376, version 1.0 Hash15f18eaf612efa76a89d5faec38555f0 bb38ce5799e4a44b3044ef429e06a56dc35b16fe 56617a84d911d282895daa5d2f41c1fb42f36331cb80eb5add793ef1f339a37f
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:26:48 GMT
expires: Wed, 23 Apr 2025 07:26:48 GMT
cache-control: public, max-age=31536000
age: 205205
last-modified: Thu, 14 Dec 2023 02:01:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkxhjWV4ewA.woff2 | 216.58.207.227 | 200 OK | 26 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkxhjWV4ewA.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26096, version 1.0 Hashffc55cc9d903470c3485f8a741321c98 e31049517f458bf1cc9157c72dac78f7a953d98a 7b04e328d46026f719acf1799ae09912dcfad16a2b5fb7d572fc28c7439b0577
GET /s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkxhjWV4ewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 03:04:37 GMT
expires: Fri, 25 Apr 2025 03:04:37 GMT
cache-control: public, max-age=31536000
age: 48136
last-modified: Thu, 14 Dec 2023 02:03:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25304, version 1.0 Hashcaa45d19aad62cb0152bb914d5d3a078 8432ecb0ec7bc8c1c3e1479c42b3ede8385adadd ab4b7922af2c53032276928cca3576fbf45879b54b7d6901e878be0fb418c1e3
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:53:29 GMT
expires: Fri, 25 Apr 2025 02:53:29 GMT
cache-control: public, max-age=31536000
age: 48804
last-modified: Thu, 14 Dec 2023 02:00:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25444, version 1.0 Hash058e68d126ca347a4db54933db4738db d800d5da3ed502c2ac33face0f4f2e571ddbc1fd 34463eacf6e58258159239a58cbc00efaa9c9d939ece148575466969733251a6
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 00:37:48 GMT
expires: Wed, 23 Apr 2025 00:37:48 GMT
cache-control: public, max-age=31536000
age: 229745
last-modified: Thu, 14 Dec 2023 02:01:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24676, version 1.0 Hash40654e941d643aead74c5d6a56a38c6b acbfb5e55bfb60fcbdbbaea32aa18bb52e4577e2 82cde214cf2d2e85bbdfca3c6fe1921cd21130d4976a84ac72c66be74e72ee4e
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24676
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 00:01:09 GMT
expires: Wed, 23 Apr 2025 00:01:09 GMT
cache-control: public, max-age=31536000
age: 231944
last-modified: Thu, 14 Dec 2023 02:02:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 49430
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 601306
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/embed.js | 142.250.74.78 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/embed.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash8908762cb1a2c9b3c1f5ca78ee779bf9 c14c75ff1f0bc588ea3d95d2a0edd5658f5bc980 95779bc0979b5224a9e8a7ef995e0f3320cef36b62c20d6816b865cd68d3cd6a
GET /s/player/9135c2ab/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18293
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:36:39 GMT
expires: Wed, 23 Apr 2025 07:36:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 204614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.wardtlc.com/wp-content/themes/wardtlc/ds-script.js?ver=386b87565c4ed5728fe082cc8872bef2 | 141.193.213.11 | 200 OK | 101 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/wardtlc/ds-script.js?ver=386b87565c4ed5728fe082cc8872bef2 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with CR line terminators Size101 kB (101270 bytes) Hashe1681f215ccedc8040e1b4cfe8e890af 5d39ca2098452c0ad8844e340ea45d07bfb891d6 3d9e5e6710b95350d728a8df80a413f653ef27ff04c6af3101f0dcdb93451ff5
GET /wp-content/themes/wardtlc/ds-script.js?ver=386b87565c4ed5728fe082cc8872bef2 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 04 Aug 2023 19:02:06 GMT
etag: W/"64cd4b2e-5ce"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28159090b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/9135c2ab/www-player.css | 142.250.74.78 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/www-player.css IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashc0aca454c0a9b539d3af1213a20c6625 9893a760290f6d8a9fed3a9f3129e7285b702430 13a3fa279a6816ddd952f42fd82f5bc170ac2ff89410d14d43954b342ad40040
GET /s/player/9135c2ab/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:35:37 GMT
expires: Wed, 23 Apr 2025 07:35:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 204676
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js | 142.250.74.78 | 200 OK | 97 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (829) Hash0aed35a162e11be7d10ed66aa72e2e58 166c7428c266750580495281f8da7d304954393c fc1254ce66294f56ad43e8e7dfbdc65093e2732764c0b8baba5536291699a96a
GET /s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97263
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:35:37 GMT
expires: Wed, 23 Apr 2025 07:35:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 204676
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/base.js | 142.250.74.78 | 200 OK | 810 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/base.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size810 kB (809527 bytes) Hash91d5fcfcb441e6966feed5a3f5e95644 117f9a8fb5a86b70e007876a7fa9941f31c3834b c090253b46de68d84dacc263c152648fd296b4e8ffff418f5ff2dda06018c9e7
GET /s/player/9135c2ab/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809527
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:36:39 GMT
expires: Wed, 23 Apr 2025 07:36:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 204614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/quote-1.png | 141.193.213.11 | 200 OK | 573 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/quote-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typePNG image data, 50 x 55, 4-bit colormap, non-interlaced Hash2ecc84779876b53ba2525c5ae8c21c3c c09176a1bd4f973accc688f32000338088f01a28 2452830c338c66d85bbf664dd9ab5f0d07a38a90212e414df3c056d3725e489c
GET /wp-content/uploads/2022/06/quote-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/png
content-length: 573
last-modified: Fri, 04 Aug 2023 19:01:29 GMT
etag: "64cd4b09-23d"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831be30b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/et-fonts/IN901XKI.ttf | 141.193.213.11 | 200 OK | 44 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/et-fonts/IN901XKI.ttf IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeTrueType Font data, 15 tables, 1st "OS/2", 14 names, Macintosh Hashaec0ab39ebd558e38e9c23e44038b85b b94a954a8e844f676fda8596fd56d8dba1a18a59 29807b4d44535b862c780e55f6ec1cd7f0051b5229b22c24f4d8fa1cbfa7a301
GET /wp-content/uploads/et-fonts/IN901XKI.ttf HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:54 GMT
content-type: application/octet-stream
content-length: 43868
last-modified: Fri, 04 Aug 2023 19:00:33 GMT
etag: "64cd4ad1-ab5c"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb283dd6c0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 | 141.193.213.11 | 200 OK | 80 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 80300, version 331.-31392 Hash8e1ed89b6ccb8ce41faf5cb672677105 9b592048b9062b00f0b2dd782d70a95b7dc69b83 6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:54 GMT
content-type: font/woff2
content-length: 80300
last-modified: Wed, 17 Apr 2024 17:04:15 GMT
etag: "6620010f-139ac"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2842def0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff | 141.193.213.11 | 200 OK | 92 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeWeb Open Font Format, TrueType, length 92084, version 2.4 Hash4f7c51948ce1b802a13ebbccec151d0c 5b1d3cd0929108da4b6334c4a487db08c9520f1d fe67b77ac7e0ef4b482dafb86adfa403db1b89a2f337d2dc8bd1278cfe975196
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:54 GMT
content-type: font/woff
content-length: 92084
last-modified: Wed, 17 Apr 2024 17:04:15 GMT
etag: "6620010f-167b4"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb283dd6e0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/remote.js | 142.250.74.78 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/player_ias.vflset/en_US/remote.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash0bac45a1d2d8be55d84a39f9e72e4cb0 184cfef03441013a952fee86f45ee204b672af01 590828fc1bbcec0c0e91d808da41c8ca6dba60b77ce215d78348bc4229aed56b
GET /s/player/9135c2ab/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:36:46 GMT
expires: Wed, 23 Apr 2025 07:36:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 204608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/3www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (51575) Hash75aaf723d5862a8eb3eb263cef614157 c62cf17173a0c4155902b80f13f360936de119f9 f0c097534008ae8dbfd3fae61abc109220a293170c9817d192307a9af4ba4db6
GET /js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 11:06:15 GMT
expires: Sat, 19 Apr 2025 11:06:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 537639
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| i.ytimg.com/vi_webp/uuMkuj3sFCk/maxresdefault.webp | 142.250.74.118 | 200 OK | 96 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/uuMkuj3sFCk/maxresdefault.webp IP142.250.74.118:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8 ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hashfa7818a65e186b9402b091f09d812cf5 a356193269806b1454ada0a5e37195e755e95842 44165c7479de9564c5938d001dc2e8663619ab1eed98b65a0cf3c159aed2ec7c
GET /vi_webp/uuMkuj3sFCk/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 95572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 16:26:54 GMT
expires: Thu, 25 Apr 2024 18:26:54 GMT
cache-control: public, max-age=7200
etag: "1679418689"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/i0XLnbige7YyllOE2yD7T4RZNbWCAfz3AKG6XwvTtTyUXvvXnZl-5tVpUQPpMp8QwIRGhsOb3w=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.5 kB |
URL GET HTTP/2yt3.ggpht.com/i0XLnbige7YyllOE2yD7T4RZNbWCAfz3AKG6XwvTtTyUXvvXnZl-5tVpUQPpMp8QwIRGhsOb3w=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47 ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash188d331c6b2cbd77f4ebdc8d097896d5 a70047cebdd9fe2485b3787796537a9c1047c38d 0e916cbf9ef9b10f5dff998999d87c56970f577b893bbeabdc8a3dfdf42eb145
GET /i0XLnbige7YyllOE2yD7T4RZNbWCAfz3AKG6XwvTtTyUXvvXnZl-5tVpUQPpMp8QwIRGhsOb3w=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 26 Apr 2024 16:26:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 16:26:54 GMT
server: fife
content-length: 2532
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 Apr 2024 16:26:54 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 41 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash3fed103b5d8354ee550fc931a908d9be eee13b3d6a71a350caf47b6c5fbca9dea25b13d1 1d9c220ec7fded7f72b0eba0facdbc8e774bc65315b4812ff728c8d75a4e4dde
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 16:26:55 GMT
server: ESF
cache-control: private
content-length: 41393
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/generate_204?oJRw5A | 142.250.74.78 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?oJRw5A IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?oJRw5A HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 16:26:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.74 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.74:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 Apr 2024 16:26:55 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.74 | 200 OK | 110 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.74:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash620c6c95c9d828829a7467e5ebd07b6d 059450190ca82beb19ba8e321c6ce3e242d1e63c 06c3d68e02b8595b6036614cb856e3af16293029a8737c9c40f17e385375123e
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1131
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 16:26:55 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| js.zi-scripts.com/unified/v1/master/getSubscriptions | 172.64.150.44 | 204 No Content | 0 B |
URL OPTIONS HTTP/3js.zi-scripts.com/unified/v1/master/getSubscriptions IP172.64.150.44:443
CertificateIssuerGoogle Trust Services LLC Subjectzi-scripts.com FingerprintC0:86:5D:FE:C8:AD:96:F5:D9:46:55:72:6E:0F:17:8B:4A:AE:01:1D ValidityFri, 29 Mar 2024 13:10:20 GMT - Thu, 27 Jun 2024 13:10:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unified/v1/master/getSubscriptions HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,visited_url
Referer: https://www.wardtlc.com/
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 25 Apr 2024 16:26:55 GMT
apigw-requestid: WymcbiHZvHcEP8A=
x-powered-by: Express
vary: Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
access-control-max-age: 0
x-cache: Miss from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: XlWSDavIP3b7rTgTspseT60X-XYKLcbbzor6KUYcmf-oRB32o_-s8g==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fb28ece197129-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.78 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/uuMkuj3sFCk?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1714062417283
Content-Type: application/json
X-Goog-Visitor-Id: CgtTZzd4OGY5SEpaayjNiKqxBjIOCgJOTxIIEgQSAgsMIEc%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240422.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714062413807&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C753%2C472&vis=1&wgl=true&ca_type=image
Content-Length: 11438
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/uuMkuj3sFCk?rel=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 25 Apr 2024 16:26:57 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| js.zi-scripts.com/unified/v1/master/getSubscriptions | 172.64.150.44 | 204 No Content | 8.2 kB |
URL OPTIONS HTTP/3js.zi-scripts.com/unified/v1/master/getSubscriptions IP172.64.150.44:443
CertificateIssuerGoogle Trust Services LLC Subjectzi-scripts.com FingerprintC0:86:5D:FE:C8:AD:96:F5:D9:46:55:72:6E:0F:17:8B:4A:AE:01:1D ValidityFri, 29 Mar 2024 13:10:20 GMT - Thu, 27 Jun 2024 13:10:19 GMT
File typegzip compressed data, from Unix Hash82f1dcf9fcda50b83d969e0e305ace25 d87ddd606ceab09b5325bc905a213bbe49a10801 b56494214430eea5c8794a14bcacf842283e37b683c66b4dc741a0b7dbf7e881
GET /unified/v1/master/getSubscriptions HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.wardtlc.com/
Content-Type: application/json
Authorization: Bearer b39d88c1ba1687203131
visited_url: https://www.wardtlc.com/
Origin: https://www.wardtlc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:55 GMT
content-type: application/json; charset=utf-8
apigw-requestid: Wymcgg0HPHcESgQ=
x-powered-by: Express
etag: W/"8e-hTQE0eC/JSZlxMV8bF0RHaOiFKg"
access-control-allow-origin: *
access-control-expose-headers: *
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5UvFmAFJK38aKxqi2V4NzruS9XbGJkO6kGGA0SQVsgK7rt0UBxLp9A==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fb28fff1a7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| js.zi-scripts.com/zi-tag.js | 172.64.150.44 | 200 OK | 2.8 kB |
URL GET HTTP/2js.zi-scripts.com/zi-tag.js IP172.64.150.44:443
CertificateIssuerGoogle Trust Services LLC Subjectzi-scripts.com FingerprintC0:86:5D:FE:C8:AD:96:F5:D9:46:55:72:6E:0F:17:8B:4A:AE:01:1D ValidityFri, 29 Mar 2024 13:10:20 GMT - Thu, 27 Jun 2024 13:10:19 GMT
File typegzip compressed data, from Unix Hash1b3a0fdd5ea6e5cae29901f11791252d 14c3cf39dfeecdb89844b3578239f41921152c39 7b7426ecc1214726c820a5d47d69f05ca55b483d02f0b0f9066a644729ae5d61
GET /zi-tag.js HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:55 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 10:26:25 GMT
x-amz-version-id: dVMibCEMTCuxskBoUeMfPfbdoSsUE0a9
etag: W/"20a410e0e98a302abb9e907a2c7e0d10"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: j0y-1zI_jAIQDQE6EypTQQ5m_2VmjEFHbnv_KE8MRLiu4pWrThs7tA==
age: 50911
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879fb28e5afb0b55-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/jquery-1.js | 104.17.96.13 | 404 Not Found | 0 B |
URL GET HTTP/3cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/jquery-1.js IP104.17.96.13:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other |
GET /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/jquery-1.js HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html
Cookie: __cf_bm=AfWCIogXuEEKrVFLpVLw.8zA7EM65wXVNIkePju4pUc-1714062410-1.0.1.1-20n8SW0givb03LoyyFYYSjdXnMQ7CuOBJXrzCKhWQL.0w5hjtikJaxZ5jorjPDkQA9_eq0DxNqB6mKSZaoU_nQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:26:51 GMT
content-type: text/plain; charset=utf-8
cf-ray: 879fb274dbcb569a-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/jquery-1.js
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 141.193.213.11 | 200 OK | 88 kB |
URL GET HTTP/3www.wardtlc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 15 Nov 2023 23:46:50 GMT
etag: W/"6555586a-15601"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28159010b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=4.24.3 | 141.193.213.11 | 200 OK | 217 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=4.24.3 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size217 kB (216883 bytes) Hashc511b14c5b09f085f762b663c9b63d2e 96c027d1a204e45d80946a2db07ce4dafb187026 f988466c42d1f2b5bb177b6221783d53b8ee21e9e3399c502ab3689f56fbc19e
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=4.24.3 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 17 Apr 2024 17:04:15 GMT
etag: W/"6620010f-34f33"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28179400b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/customer-tools-1.png | 141.193.213.11 | 200 OK | 348 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/customer-tools-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash3063656e0ca29bde9e57f3a8f580dfe6 57958a7d3551ff6d7846fd9ec238bc564f9bba7e 7d6ed6836742b583085d2e096bf22c61b03b3c8973b2703af98762fb60b9aeb1
GET /wp-content/uploads/2022/06/customer-tools-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 348
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=418
content-disposition: inline; filename="customer-tools-1.webp"
etag: "64cd4b07-1a2"
last-modified: Fri, 04 Aug 2023 19:01:27 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2832c010b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32 | 141.193.213.11 | 200 OK | 62 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeASCII text, with very long lines (8267), with CRLF line terminators Hashc601d4374bc647b7915ed7371b8de4eb 8b72349cff6ca5508a030925eeabb3c8ce11dd95 a2b510b2021edf1ddc27f7cec931c74484eb5d63444256eff14b449bd8c2d8de
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 28 Mar 2024 16:58:15 GMT
etag: W/"6605a1a7-f0a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28148fa0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/plugins/gtranslate/flags/16/en-us.png | 141.193.213.11 | 200 OK | 310 B |
URL GET HTTP/3www.wardtlc.com/wp-content/plugins/gtranslate/flags/16/en-us.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash9c501f690d64bf9f2b9da9880707d4bc 4ec0109f8ae61810bd0682ceb9df1e0741c85ccb cbfea1459f7935adc680c00ada2cc90181e28d5bd250e28118973f5ec9c3fedb
GET /wp-content/plugins/gtranslate/flags/16/en-us.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 310
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=488
content-disposition: inline; filename="en-us.webp"
etag: "662000f2-1e8"
last-modified: Wed, 17 Apr 2024 17:03:46 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb282ab020b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/uploads/2022/07/ward-register-account.png | 141.193.213.11 | 200 OK | 274 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/07/ward-register-account.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hashbf20ba44bb9c02d6869db49dfabd5f34 93369162ef9f2903bc893996e567668c2bb329fc 6d0091d7f5e9becbcd8a255664b53cc776c7aa2da0828c02dc2ddddf10bf0eb4
GET /wp-content/uploads/2022/07/ward-register-account.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 274
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=375
content-disposition: inline; filename="ward-register-account.webp"
etag: "64cd4b05-177"
last-modified: Fri, 04 Aug 2023 19:01:25 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bdf0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/ | 141.193.213.11 | 200 OK | 223 kB |
IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
Size223 kB (222760 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
x-powered-by: WP Engine
last-modified: Wed, 27 Dec 2023 17:30:42 GMT
x-cacheable: YES:15552000.000
cache-control: max-age=15552000, must-revalidate
x-cache: HIT: 3762
x-cache-group: normal
content-encoding: br
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ; path=/; expires=Thu, 25-Apr-24 16:56:52 GMT; domain=.www.wardtlc.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 879fb27ccd7556c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 60 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (59729) Hash61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:51 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 01/04/2023 07:40:19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1075
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: ed61b57325ba6e4fb46a0c343ac58351
cdn-cache: HIT
cf-cache-status: HIT
age: 555936
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879fb2761f76b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-M256FK4 | 142.250.74.168 | 200 OK | 213 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-M256FK4 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (9195) Size213 kB (212651 bytes) Hashc9c35b923686b15d22aedb7a08139cb1 23443a2a5f1a7698a9739f4f5b24091ceadcac91 9240a304ca1d14044a68a93bed6cf5c6ee89965e3950ce295cd3e4f92ba04c26
GET /gtm.js?id=GTM-M256FK4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 16:26:53 GMT
expires: Thu, 25 Apr 2024 16:26:53 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73130
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.wardtlc.com/wp-content/uploads/2022/06/schedule-pickup-1.png | 141.193.213.11 | 200 OK | 346 B |
URL GET HTTP/3www.wardtlc.com/wp-content/uploads/2022/06/schedule-pickup-1.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash74e711823ca2dc3283a733294d74daf8 04dd55140a20c7bd5d3dc851324d8d8ac62784da 705b31319d32486a03ff4eb66b108532d1c289dad45e66a968e89557667062f9
GET /wp-content/uploads/2022/06/schedule-pickup-1.png HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: image/webp
content-length: 346
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=455
content-disposition: inline; filename="schedule-pickup-1.webp"
etag: "64cd4b09-1c7"
last-modified: Fri, 04 Aug 2023 19:01:29 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879fb2831bec0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://wardtlc.com&size=16 | 142.250.74.132 | 200 OK | 326 B |
URL GET HTTP/2t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://wardtlc.com&size=16 IP142.250.74.132:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash6ecc7667916fa18e633a486aea5f43b4 ba70ef8e65d66b4c3e20b1549d4b7e0314cf9c50 9e108b0045fb738960b6fb5df9681e7023d8dec91071e22188c33000596f33bf
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://wardtlc.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.wardtlc.com/wp-content/uploads/2022/05/cropped-ward-2-32x32.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 326
date: Thu, 25 Apr 2024 16:26:52 GMT
expires: Thu, 02 May 2024 16:26:52 GMT
cache-control: public, max-age=604800
last-modified: Wed, 08 May 2024 03:33:02 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 51 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:51 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 1977012
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879fb2761ac27131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/uuMkuj3sFCk?rel=0 | 142.250.74.78 | 200 OK | 92 kB |
URL GET HTTP/2www.youtube.com/embed/uuMkuj3sFCk?rel=0 IP142.250.74.78:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeHTML document, ASCII text, with very long lines (58090) Hash6261e8d9cc7683509d7f92f49e8eb473 ba57dcfaca6fe8608df9f2f2fae2e9ad9a30a38d 429b7f75e2ce7da1793c92c4523854f95964115b1914955b78eb1e095e13181a
GET /embed/uuMkuj3sFCk?rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 16:26:53 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=BfXT956EDQ0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Sg7x8f9HJZk; Domain=.youtube.com; Expires=Tue, 22-Oct-2024 16:26:53 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIEc%3D; Domain=.youtube.com; Expires=Tue, 22-Oct-2024 16:26:53 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 60 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (60130) Hasha12ec7ebe75a4d59a5dd6b79e2ba2e16 28f5dcc595ee6d4163481ef64170180502c8629b fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 51_TMy3A9iQ_xVfsZR8ldndzrqRyDucxwVr4tIxob-LuDhFy_KEe0g==
age: 1675076
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cNZMKs%2Fo20kirrQk%2FQD2N2FDjYioLF8BNnNybcMFCYUlBK%2BcXWXNnFjIoUPprMkUhJpULFTejSIvTyQFRbWJBSelp6XbKzjn%2FKGAA1c%2F0b4eekIB8xulBB6EbPjxtGTbg4PqKjBSoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fb27b9d97b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/favicon.ico | 104.17.96.13 | 404 Not Found | 14 B |
URL GET HTTP/3cloudflare-ipfs.com/favicon.ico IP104.17.96.13:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html#dkwardjr@wardtlc.com CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
File typeASCII text, with no line terminators Hashd0fbda9855d118740f1105334305c126 bc3023b36063a7681db24681472b54fa11f0d4ec a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other |
GET /favicon.ico HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html
Cookie: __cf_bm=AfWCIogXuEEKrVFLpVLw.8zA7EM65wXVNIkePju4pUc-1714062410-1.0.1.1-20n8SW0givb03LoyyFYYSjdXnMQ7CuOBJXrzCKhWQL.0w5hjtikJaxZ5jorjPDkQA9_eq0DxNqB6mKSZaoU_nQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:26:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 14
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fb27c4afa569a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.wardtlc.com/wp-content/et-cache/1459/et-divi-dynamic-tb-7303-tb-6049-1459.css?ver=1713955391 | 141.193.213.11 | 200 OK | 6.5 kB |
URL GET HTTP/3www.wardtlc.com/wp-content/et-cache/1459/et-divi-dynamic-tb-7303-tb-6049-1459.css?ver=1713955391 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeASCII text, with very long lines (6590), with no line terminators Hashcf365ae5f82711ac67687835ae188e63 67c0743bcc0a07156c01288a39b32bb7e6305fbd 3ffbd05b2e1c75a84fc492f1bebf2fce3f205813b983fdf0811aff71d7f0fdf5
GET /wp-content/et-cache/1459/et-divi-dynamic-tb-7303-tb-6049-1459.css?ver=1713955391 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 24 Apr 2024 10:43:11 GMT
etag: W/"6628e23f-1932"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28148fb0b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html | 104.17.96.13 | 200 OK | 12 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
File typeJavaScript source, ASCII text, with very long lines (746), with CRLF line terminators Hasha62e7d88a91fdf8c8029dc709d48776c bbec2d27c5d3f58573a5aab8888c2b3f0fa22cf2 7f7c478a7bbfbe1f903c7a7e05624ca8ef180e6d39d4393f875b4eeba961b434
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other |
GET /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:26:50 GMT
content-type: text/html
cf-ray: 879fb27349a856c7-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"QmaSDoVPWaNX8XDE4ETypsSqAPZNEiztaJ7meUM2vu2o3g"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd/shalipopi.html
x-ipfs-roots: QmbBskoom2NQebVkoBPfQ8VeGR73RYDjVszPYjTm1ibHBd,QmaSDoVPWaNX8XDE4ETypsSqAPZNEiztaJ7meUM2vu2o3g
set-cookie: __cf_bm=AfWCIogXuEEKrVFLpVLw.8zA7EM65wXVNIkePju4pUc-1714062410-1.0.1.1-20n8SW0givb03LoyyFYYSjdXnMQ7CuOBJXrzCKhWQL.0w5hjtikJaxZ5jorjPDkQA9_eq0DxNqB6mKSZaoU_nQ; path=/; expires=Thu, 25-Apr-24 16:56:50 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.wardtlc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 141.193.213.11 | 200 OK | 14 kB |
URL GET HTTP/3www.wardtlc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerLet's Encrypt Subjectwww.wardtlc.com Fingerprint81:56:B3:07:DA:D4:68:FB:1A:9E:97:D2:C9:25:F5:FB:B6:2E:9A:A6 ValiditySat, 23 Mar 2024 04:11:46 GMT - Fri, 21 Jun 2024 04:11:45 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.wardtlc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Cookie: __cf_bm=nLdVdMJPPjua7VI_5z4Kf_VWuuqHZs9Z6kVewpjIG4A-1714062412-1.0.1.1-kBqDf7oDGKXFWKa7DEwQEtrwrKOnKqpJ.11pydWDe40ydasXa85ASgtOqdlK17z2xN8xTQmHP56PhS2Z9_hkMQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 16:26:53 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 18 Aug 2023 19:07:46 GMT
etag: W/"64dfc182-3509"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
cf-cache-status: HIT
server: cloudflare
cf-ray: 879fb28159050b61-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-M65FNMLDRC&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 303 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-M65FNMLDRC&l=dataLayer&cx=c IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size303 kB (302853 bytes) Hash63861e15e0db8f8085356db89863525c 063e473f429087acbbf9cd5e081130f7a8b4e0ef 80f935cda2d3ec3e0284881705ee475836ed78aeab7991b5e9f35548968d4895
GET /gtag/js?id=G-M65FNMLDRC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wardtlc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 16:26:53 GMT
expires: Thu, 25 Apr 2024 16:26:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100750
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
0.0.0.0