| tonyevers.com/ | 188.114.97.1 | 301 Moved Permanently | 0 B |
IP188.114.97.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: tonyevers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 15:17:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 29 Jan 2023 16:17:19 GMT
Location: https://tonyevers.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q6Vu6anZ6UW7LZ0OZ1CggaitjImDLKDikwEmV%2F6amnRGGlNq50AVJNq60jnpd6PRotktrrzL2YR5J%2B4%2FaMPkp3fQHOrV5CXsBuNj6NI1cQCur7rPTQr9KQ%2Bhoccr5mPE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7912ef1ab8d3b511-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4776
Expires: Sun, 29 Jan 2023 16:36:55 GMT
Date: Sun, 29 Jan 2023 15:17:19 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4485
Expires: Sun, 29 Jan 2023 16:32:04 GMT
Date: Sun, 29 Jan 2023 15:17:19 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 14:43:08 GMT
content-type: application/json
age: 2051
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash302c7548412192add063ad6c8b99cf3b e5d178931a27db036ce8daae302594d3ff7050b8 fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2855
Expires: Sun, 29 Jan 2023 16:04:54 GMT
Date: Sun, 29 Jan 2023 15:17:19 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JbrREEAYBxMZu0zN0yApErkecdQt8jqBZcjFGPp4WH9X5LhC9DOxuKtA+cH1PaGucrXc8zY8ypk=
x-amz-request-id: 6DWCWYW0FBSCRH1T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 14:50:21 GMT
age: 1618
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 15:17:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashba2ca6af7b23ce2e11aa4f9d86e66269 212aef55d64b6add292dcf6241b16e7c93d1bae2 f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash8c630e9bbc930d1c367efa81b67be3f7 ec536695531d40a813d99a06271c7c2d698d51d3 39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4f43bce4d132991fedec454aa5579541 ac50300f638e67e9c22c85bd62cad2fb2848f18a dd4868fbd0fadba88cf8bae1aa864ff31ffd149d5da5b55522975b5d9498cffb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3041
Cache-Control: max-age=164414
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:19 GMT
Etag: "63d6615c-1d7"
Expires: Tue, 31 Jan 2023 12:57:33 GMT
Last-Modified: Sun, 29 Jan 2023 12:06:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| www.googletagmanager.com/gtag/js?id=G-WTSL40G16K | 172.217.21.168 | 200 OK | 77 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-WTSL40G16K IP172.217.21.168:0
File typeASCII text, with very long lines (19467) Hashbf91968a5a40720fee808d077f028894 4707ca657b5f5bbfa4d3d267e25ff4cd51047fcc 60855dd7f8bbbf874e6d5b93e288134d8c602e55dc3586af23fb346750398849
GET /gtag/js?id=G-WTSL40G16K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:17:19 GMT
expires: Sun, 29 Jan 2023 15:17:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77227
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashbab8a4c1e6bb2e6c9cc00222eef1235d 1a5dd108e9f9aaf33bc048b0097a9f510d295cad fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash8c630e9bbc930d1c367efa81b67be3f7 ec536695531d40a813d99a06271c7c2d698d51d3 39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 14:41:41 GMT
age: 2139
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| use.typekit.net/oyd5lza.css | 23.36.76.122 | 200 OK | 840 B |
URL HTTP/2use.typekit.net/oyd5lza.css IP23.36.76.122:0 ASN#20940 Akamai International B.V.
File typeUnicode text, UTF-8 text, with very long lines (516) Hasheb3fce78039018f5af4033b09ba05f71 b76995152d02f32f28cee9b4c7d1d555e35571a4 3680c1247134df96083d61a95c427ed8613ef7f1e55ef5ab542eb3f353cc40e4
GET /oyd5lza.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 840
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| p.typekit.net/p.css?s=1&k=oyd5lza&ht=tk&f=39347.39845.39846.39849.39850.39851&a=2533684&app=typekit&e=css | 23.36.76.122 | 200 OK | 5 B |
URL HTTP/2p.typekit.net/p.css?s=1&k=oyd5lza&ht=tk&f=39347.39845.39846.39849.39850.39851&a=2533684&app=typekit&e=css IP23.36.76.122:0 ASN#20940 Akamai International B.V.
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=oyd5lza&ht=tk&f=39347.39845.39846.39849.39850.39851&a=2533684&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash667471274491cc90ba7af612007de7a1 89737d3d462cdfda6a8bbdb3f0e53edf3c40bfce bfe5311eebb318ef3faf6c5a6ddd0c8a93dd5efeae7bdb984fa7c6788c86a5a6
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=122155
Date: Sun, 29 Jan 2023 15:17:20 GMT
Etag: "63d5b74c-1d7"
Expires: Tue, 31 Jan 2023 01:13:15 GMT
Last-Modified: Sun, 29 Jan 2023 00:01:16 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rkfE5itwq9Q9V0QMMhqHd9jxb8zmrXwjV1HBkbb7u-owxFKrkpmgTQ==
Age: 4319
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 1.2 kB |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
File typegzip compressed data, from Unix\012- data Hash9b255e2f157448c9515119a228dafab5 d1b874a633e77adf2c8c44e04df93d91ad1b30b9 0bd8aab29ff411000e01672247e3b1c6b755cfdcaf651951c7891ac9e8b2427a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17453
Expires: Sun, 29 Jan 2023 20:08:13 GMT
Date: Sun, 29 Jan 2023 15:17:20 GMT
Connection: keep-alive
|
|
| fonts.googleapis.com/css2?family=Caveat&display=swap | 142.250.74.74 | 200 OK | 953 B |
URL HTTP/2fonts.googleapis.com/css2?family=Caveat&display=swap IP142.250.74.74:0
Hash6f6fa0cb40825ed5d5947343d14feffc 3f31c9273e0b4c42f57971daffe70c9f6fca7ca3 607e80fec550f89bd743fa8bf1d622592a3948675d3c575e0c4175d4213aa755
GET /css2?family=Caveat&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 15:17:19 GMT
date: Sun, 29 Jan 2023 15:17:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/578a9d/00000000000000007735ba14/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 | 23.36.76.122 | 200 OK | 91 kB |
URL HTTP/2use.typekit.net/af/578a9d/00000000000000007735ba14/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 IP23.36.76.122:0 ASN#20940 Akamai International B.V.
Hashefe9176c7f483a584e9aea009f793c2a 8af01a8844a03fd66ea9ab44c7eb2682dfcd5ed3 94922070d9924619ee7a3e8f4f56cdc93585a34582cc8423ed3df439f938e36c
GET /af/578a9d/00000000000000007735ba14/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32112
etag: "a156246abdb355dce7fd9cfd0463975cc11afacc"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/7a7c78/00000000000000007735bce2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 | 23.36.76.122 | 200 OK | 28 kB |
URL HTTP/2use.typekit.net/af/7a7c78/00000000000000007735bce2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 IP23.36.76.122:0 ASN#20940 Akamai International B.V.
Hash315d55431d782e73bcceddee89202c93 0e1e01abf3ca0e32afa4f252516061adbff8f0f8 3ca4d26dd5055a12cf8e5c919d7677e35980cf14dbaea14d7583ea29d8b6395b
GET /af/7a7c78/00000000000000007735bce2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 25260
etag: "04617ca01d6839fde432e1696c9ba0efb88a8a7d"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/b3496a/00000000000000007735bceb/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 | 23.36.76.122 | 200 OK | 25 kB |
URL HTTP/2use.typekit.net/af/b3496a/00000000000000007735bceb/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 IP23.36.76.122:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 25308, version 1.0\012- data Hash448255682223c57ed63776151f0a9849 7f3bceca71eb028b050564b8ed35d2fc3d45ecd4 5ae7acf9c30776ee7bec61f6df2652a32de20af302b53bff99109055647a2b7c
GET /af/b3496a/00000000000000007735bceb/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 25308
etag: "b344ea73755c53a7798db3313fb97c94962279a8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/caveat/v17/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIWpYQ.woff2 | 216.58.207.227 | 200 OK | 63 kB |
URL HTTP/2fonts.gstatic.com/s/caveat/v17/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIWpYQ.woff2 IP216.58.207.227:0
Hash7b14d4c0105f96c4829a404e45a7a60c f1b407c137c39943a10d543a28aedbecd58867b4 eff0c0c7711d31b8399a8edd9b4569fb569a1e63f5cd3925954f0a0a30122188
GET /s/caveat/v17/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIWpYQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 06:32:32 GMT
expires: Mon, 29 Jan 2024 06:32:32 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 24 Jun 2022 19:31:34 GMT
content-type: font/woff2
age: 31488
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| s3.amazonaws.com/ak-tonyevers/images/TonyForWI_PrimaryLogo-WhiteGreen-PageHeader-432px.png | 54.231.225.112 | 200 OK | 8.3 kB |
URL HTTP/1.1s3.amazonaws.com/ak-tonyevers/images/TonyForWI_PrimaryLogo-WhiteGreen-PageHeader-432px.png IP54.231.225.112:0
File typePNG image data, 432 x 200, 8-bit/color RGBA, non-interlaced\012- data Hash13235bf7ebfca33baaa65e0c451cd5f3 102dcb31d573f1a5036992d0d91d49894aea68bd 6d6fb47151129d93170394d52557d2a15470a9eba7b36786d946ab2423e13742
GET /ak-tonyevers/images/TonyForWI_PrimaryLogo-WhiteGreen-PageHeader-432px.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 41iQixwDUGqnAGr9aYoP5A5hkSP2gUSor6fPvPkyTAtwl41FeDpb9lzey9gWHCxq0qiPxf5yrFI=
x-amz-request-id: E5S5D7DH3EREPT10
Date: Sun, 29 Jan 2023 15:17:21 GMT
Last-Modified: Wed, 24 Nov 2021 00:22:13 GMT
ETag: "13235bf7ebfca33baaa65e0c451cd5f3"
x-amz-meta-uuid: 2967da7532f740e6ae67f3ee97f35b88
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8259
|
|
| kit.fontawesome.com/4fc16e1cd9.js?ver=6.1 | 104.18.23.52 | 200 OK | 10 kB |
URL HTTP/2kit.fontawesome.com/4fc16e1cd9.js?ver=6.1 IP104.18.23.52:0
Hash0df7775555d28b05972539d9ae81b3e3 ce383a7484112d818d0eee580deea431542e25bb f8dc67289406fcd2773bf420b294582a72ea4380eade6c9bdfc800b140a18237
GET /4fc16e1cd9.js?ver=6.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fz7QksR_8qJfAjC7ojCh
cf-cache-status: MISS
server: cloudflare
cf-ray: 7912ef1f9d7fb506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 44.229.130.57 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.229.130.57:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jFGnZ3dKYIv67d/nTLoMNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7PbnYrM8TeBtMeTOLUw4/6rSFIA=
|
|
| ocsp.globalsign.com/gsgccr3dvtlsca2020 | 151.101.194.133 | 200 OK | 5.7 kB |
URL HTTP/1.1ocsp.globalsign.com/gsgccr3dvtlsca2020 IP151.101.194.133:0
Hashf0366db2688dc0bd10a255176c2a910a fabda0783c6d70f786746bf3fcaebb81c9b1e01d e92d5f283947cc9be75f7fb2dfa9aa39aa09f4a242beefa6c56eb8c02d505de4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 12:38:04 GMT
ETag: "eeb615b06695b1b46fa7a8bd027c26df16756727"
Last-Modified: Sun, 29 Jan 2023 12:38:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 15:17:20 GMT
Age: 1864
X-Served-By: cache-qpg1235-QPG, cache-bma1639-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 37, 61
X-Timer: S1675005441.592293,VS0,VE0
|
|
| static2.creative-serving.com/pixel_loader.js | 151.139.128.10 | 200 OK | 320 B |
URL HTTP/2static2.creative-serving.com/pixel_loader.js IP151.139.128.10:0
Hashd9205cba740057c9d606a924f7e47e88 ca36a195c7a09be850e2a8f09a1d2ab220a9f002 d3f36bb02cc4ee20e6668c01595d2ed44647e723c5214eb1506c5b14cc0ce972
GET /pixel_loader.js HTTP/1.1
Host: static2.creative-serving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-encoding: gzip
content-length: 320
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 21:32:00 GMT
accept-ranges: bytes
cache-control: public, max-age=3600
etag: "68faa1738e44f8aabb6f53cba51f29d3"
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1675005440.cds247.sk1.hn,1675005440.cds210.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=4fc16e1cd9 | 104.18.23.52 | 200 OK | 2.6 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=4fc16e1cd9 IP104.18.23.52:0
File typeASCII text, with very long lines (27832) Hasheaaabd3f60063923cd5333eb1d7a20a1 0da69706105e28896a1f6eeaa91d5bec1b82f7f1 f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=4fc16e1cd9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Origin: https://tonyevers.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef221d3dfab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=4fc16e1cd9 | 104.18.23.52 | 200 OK | 4.2 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=4fc16e1cd9 IP104.18.23.52:0
File typeASCII text, with very long lines (26366) Hash7fd743485fa194e25e2a207bff6c258a 97c999d752b95ee1ed6271a29aa58109dc17281e dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=4fc16e1cd9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Origin: https://tonyevers.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef222d42fab4-OSL
X-Firefox-Spdy: h2
|
|
| insight.adsrvr.org/tags/sfi0lr2/dw1ziua/iframe | 52.223.40.198 | 303 See Other | 183 B |
URL HTTP/2insight.adsrvr.org/tags/sfi0lr2/dw1ziua/iframe IP52.223.40.198:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hashaa97a1c2328f30bf29ad54fdd5df8d84 98f7104fcc43bdcdd0daa6decb59b96f5caff189 e48e0a409980ca9f440bfb30fa6290a8701f5e4902c9292fbab995ab5fad34ad
GET /tags/sfi0lr2/dw1ziua/iframe HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: text/html; charset=UTF-8
content-length: 183
location: https://d1eoo1tco6rr5e.cloudfront.net/sfi0lr2/dw1ziua/iframe
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-WTSL40G16K>m=2oe1p0&_p=1943219095&gdid=dZGIzZG&cid=1916740610.1675005448&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675005447&sct=1&seg=0&dl=https%3A%2F%2Ftonyevers.com%2F&dt=Tony%20Evers%20-%20Doing%20the%20Right%20Thing%20for%20Wisconsin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-WTSL40G16K>m=2oe1p0&_p=1943219095&gdid=dZGIzZG&cid=1916740610.1675005448&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675005447&sct=1&seg=0&dl=https%3A%2F%2Ftonyevers.com%2F&dt=Tony%20Evers%20-%20Doing%20the%20Right%20Thing%20for%20Wisconsin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-WTSL40G16K>m=2oe1p0&_p=1943219095&gdid=dZGIzZG&cid=1916740610.1675005448&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675005447&sct=1&seg=0&dl=https%3A%2F%2Ftonyevers.com%2F&dt=Tony%20Evers%20-%20Doing%20the%20Right%20Thing%20for%20Wisconsin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://tonyevers.com
date: Sun, 29 Jan 2023 15:17:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| d1eoo1tco6rr5e.cloudfront.net/sfi0lr2/dw1ziua/iframe | 54.230.83.149 | 200 OK | 133 B |
URL HTTP/1.1d1eoo1tco6rr5e.cloudfront.net/sfi0lr2/dw1ziua/iframe IP54.230.83.149:0
File typeASCII text, with CRLF line terminators Hash209ea357217c069239dcb36c95018a7a be87f6d24a1626ab75fef93eeb29fe891ac9340c 12dcda396b83d261819974df14c98feec8135f74b56a3973ab56ef7879ba8ecc
GET /sfi0lr2/dw1ziua/iframe HTTP/1.1
Host: d1eoo1tco6rr5e.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 133
Connection: keep-alive
Last-Modified: Fri, 01 Oct 2021 23:56:29 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 29 Jan 2023 02:14:55 GMT
Cache-Control: max-age=86400
ETag: "209ea357217c069239dcb36c95018a7a"
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uUhPc6cTMA-g-XmCyhP9SRGoE9MhmSSXLXIuxWzOTSnSka8H_R8xBw==
Age: 46946
|
|
| use.typekit.net/af/9cb83b/00000000000000007735bced/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 | 23.36.76.122 | 200 OK | 25 kB |
URL HTTP/2use.typekit.net/af/9cb83b/00000000000000007735bced/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 IP23.36.76.122:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 24956, version 1.0\012- data Hashe9d9bf7165224860d7ac22aecd8c3f5d 97d191dc42e60344f80e0d2f2ef93c58fcfca6eb 12683ca47d586e3d5e4b2e9c53706efb66d814c117e39aa12a95c1a69c06f0ff
GET /af/9cb83b/00000000000000007735bced/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24956
etag: "2ae68f21bdf3be955fada3a51dd50bcb8ac95d30"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 29 Jan 2023 15:17:20 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/f9e6d8/00000000000000007735bce5/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 | 23.36.76.122 | 200 OK | 25 kB |
URL HTTP/2use.typekit.net/af/f9e6d8/00000000000000007735bce5/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 IP23.36.76.122:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 25044, version 1.0\012- data Hash5fcd206470e59092895de7e7a35247ef 5d530e01dc973cd9008cc05b929d1259b586a6bc 0929cf4ac63cd786a5c75bef74d28867166b9b59bafde615ec43f8874f66acca
GET /af/f9e6d8/00000000000000007735bce5/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 25044
etag: "0148cbb8dc8b1cb2de2b2a552aa46ff9106223e1"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 29 Jan 2023 15:17:21 GMT
X-Firefox-Spdy: h2
|
|
| go.tonyevers.com/context/2022-website-signup?callback=actionkit.forms.onContextLoaded&form_name=act&required=email&required=country&r=0.6253334643622612&url=https%3A%2F%2Ftonyevers.com%2F | 54.241.202.223 | 200 OK | 4.2 kB |
URL HTTP/2go.tonyevers.com/context/2022-website-signup?callback=actionkit.forms.onContextLoaded&form_name=act&required=email&required=country&r=0.6253334643622612&url=https%3A%2F%2Ftonyevers.com%2F IP54.241.202.223:0
File typeASCII text, with very long lines (10932), with no line terminators Hasha4d00e48fe4b9bf389082e701894d898 38c97d4c08027bf5d4634930a59a49ed39944df9 d520e1e24d44d41ca3b48c8e55019ba84c3405e0ea931d41d9e2b43059d1a746
GET /context/2022-website-signup?callback=actionkit.forms.onContextLoaded&form_name=act&required=email&required=country&r=0.6253334643622612&url=https%3A%2F%2Ftonyevers.com%2F HTTP/1.1
Host: go.tonyevers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Cookie: _ga_WTSL40G16K=GS1.1.1675005447.1.0.1675005447.0.0.0; _ga=GA1.1.1916740610.1675005448; _ga_KY742G4D5G=GS1.1.1675005448.1.0.1675005448.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: text/javascript
server: openresty
vary: Accept-Encoding, Cookie, Origin
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.tonyevers.com/resources/actionkit.js | 54.241.202.223 | 200 OK | 37 kB |
URL HTTP/2go.tonyevers.com/resources/actionkit.js IP54.241.202.223:0
Hash1883fa686d3e00e0afcaa4f6c369a222 6ee1e1e9d0a9798c7dccd42c01ad5d76c484b4da f36f7c2a115862b7c3bad371a942033c3b2fd4e566fe199ae3e342f34b8dcb3b
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /resources/actionkit.js HTTP/1.1
Host: go.tonyevers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: application/javascript
server: openresty
last-modified: Fri, 09 Sep 2022 19:19:05 GMT
vary: Accept-Encoding
etag: W/"631b91a9-1865d"
expires: Mon, 30 Jan 2023 15:17:20 GMT
cache-control: max-age=86400
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| acdn.adnxs.com/dmp/up/pixie.js | 151.101.1.108 | 200 OK | 3.3 kB |
URL HTTP/1.1acdn.adnxs.com/dmp/up/pixie.js IP151.101.1.108:0
File typeASCII text, with very long lines (9139), with no line terminators Hash75b9af81e30e45403e6856566e888545 d013e9a47331447f32c2bdf6f35b286e711788f0 dd26e2e55783f6174ceea7c7a3b10e5af1c7fca56fc2543956a38b848f32a151
GET /dmp/up/pixie.js HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3340
Server: nginx/1.18.0 (Ubuntu)
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 15:04:00 GMT
ETag: W/"60b79de0-23b3"
Expires: Mon, 31 Oct 2022 05:58:51 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 15:17:21 GMT
Age: 47175
X-Served-By: cache-lga21930-LGA, cache-bma1682-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 9545
X-Timer: S1675005441.329562,VS0,VE0
Vary: Accept-Encoding
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 28 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash541db4f3f0ba067bfb58cdac34cb86f4 20e6883f068568888ce37c6b9ef8f5d12be257c0 83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: GgUkPVxncGDvmKdioG+O8VhsAbqaYA562kwzzPve6e9MqoZdwwXS8i2As3UQUNhVCtYebOM6XG2ZVBZxINlAZQ==
content-length: 27815
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 15:17:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash7078b1d21bbac26012d93fc9501fbbb0 412189ffa7980709edc28b87a820aa1ae64fa3a7 6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:21 GMT
Last-Modified: Sun, 29 Jan 2023 13:28:06 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| secure.adnxs.com/seg?add=27500512&t=2 | 37.252.171.149 | 307 Redirection | 0 B |
URL HTTP/1.1secure.adnxs.com/seg?add=27500512&t=2 IP37.252.171.149:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=27500512&t=2 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27500512%26t%3D2
AN-X-Request-Uuid: 7ce638ba-2645-4ab9-82b6-e126b9298975
Set-Cookie: uuid2=5351429861803832269; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 29-Apr-2023 15:17:21 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=4fc16e1cd9 | 104.18.23.52 | 200 OK | 54 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=4fc16e1cd9 IP104.18.23.52:0
File typeASCII text, with very long lines (65397) Hashdc9270247a97f75913a5d8934c24de03 ed9b0fa01b552571f99d529ed355b2ba91cfc48d 847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=4fc16e1cd9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Origin: https://tonyevers.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef222d3ffab4-OSL
X-Firefox-Spdy: h2
|
|
| secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27500512%26t%3D2 | 37.252.171.149 | 200 OK | 43 B |
URL HTTP/1.1secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27500512%26t%3D2 IP37.252.171.149:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash592ebefc7104d681d57852665e9ad514 15cdf8df32aa251dd6dd590a60bf9cf74474e7c5 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fseg%3Fadd%3D27500512%26t%3D2 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 5b655926-8043-4e27-9e7c-f1a7eb35f03e
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2Hb:E)<4#!@wnf-Te9(>wL5L!!'4V$XexK; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 29-Apr-2023 15:17:21 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| ib.adnxs.com/pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449180&if=0 | 37.252.171.85 | 200 OK | 42 B |
URL HTTP/1.1ib.adnxs.com/pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449180&if=0 IP37.252.171.85:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449180&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| ib.adnxs.com/pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449182&if=0 | 37.252.171.85 | 200 OK | 42 B |
URL HTTP/1.1ib.adnxs.com/pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449182&if=0 IP37.252.171.85:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=72587701-3907-4c56-85a9-701de09bedd8&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449182&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| ib.adnxs.com/pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449181&if=0 | 37.252.171.85 | 200 OK | 42 B |
URL HTTP/1.1ib.adnxs.com/pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449181&if=0 IP37.252.171.85:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449181&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| ib.adnxs.com/pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449185&if=0 | 37.252.171.85 | 200 OK | 42 B |
URL HTTP/1.1ib.adnxs.com/pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449185&if=0 IP37.252.171.85:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=85f110a3-4e0d-48f0-8514-9b5a72794931&it=1675005449180&v=0.0.20&u=https%3A%2F%2Ftonyevers.com%2F&st=1675005449180&et=1675005449185&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:17:21 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2851
Expires: Sun, 29 Jan 2023 16:04:52 GMT
Date: Sun, 29 Jan 2023 15:17:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2851
Expires: Sun, 29 Jan 2023 16:04:52 GMT
Date: Sun, 29 Jan 2023 15:17:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2851
Expires: Sun, 29 Jan 2023 16:04:52 GMT
Date: Sun, 29 Jan 2023 15:17:21 GMT
Connection: keep-alive
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.9.woff2 | 104.18.23.52 | 200 OK | 7.7 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.9.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 7732, version 331.-31196\012- data Hashe626d400db3ab37ee6dbdde07b490ced 7c6baebac33353aab4ca0ca5a0caaa0c6a9e770b b7fb99816108e6e66c7d6d5c3bc0fc270cd4875ec80c68685442dd102ae7acd2
GET /releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.9.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 7732
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35d-1e34"
last-modified: Wed, 04 Aug 2021 18:58:37 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a2c12fab4-OSL
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4c77437e3a7361861aed8bfecbfe6bd6 fefd238c13c0fdfb7d964c90fcc8a8cbbf953034 282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVpetFv-oAMF_Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 14:55:48 GMT
age: 1293
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 | 104.18.23.52 | 200 OK | 25 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data Hash4abe94f1746789f39110d3ebac7ebd96 bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a1c0ffab4-OSL
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3be81f83687ddb6c93d3ff3c09a9dba2 50a48e737310d3f31840db4301b25927fbcc12c5 e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 66665
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash43c4a8e963936a8064dbd2bd3c67b905 8508727c97127c98b886833af28b3470306216c2 070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 30472
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg | 34.120.237.76 | 200 OK | 3.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash97118e74a8f60620950e42a11c11d71b d144bbb82392a6103810ac9baa5346ddbefb5c16 2ce0c9696cf9842243186e86bae28c22896a9f51837f4961b6c7e3cfdfb24bd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3774
x-amzn-requestid: deae2f1e-baec-408c-92a7-4859d4afed47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EgFAgoAMFXRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b6-32a2ff1a369e7b5f41ecbabd;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8p5qCwCbamsgIuEvlRNhIiB-19GNiLuHqDeGIaHhWFo1Wiex8W02JQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:10 GMT
age: 62471
etag: "d144bbb82392a6103810ac9baa5346ddbefb5c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 62435
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash10a6491e2c1dfde68c7cd7297e70700f d0f195319825a6d3e5e50ad15b2fcab27cb65896 4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 40566
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2 | 104.18.23.52 | 200 OK | 23 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 23316, version 331.-31196\012- data Hashe0e8f01313f5061924cb318b031d706e 8ddfde7f46123a327ec627acf520741b1f016eb9 78f2234a60cbe6920db07df9663c0b035d9a602d8f7b82e174fc9e0f5bf89ad0
GET /releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 23316
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35c-5b14"
last-modified: Wed, 04 Aug 2021 18:58:36 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a0bfafab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.5.0.woff2 | 104.18.23.52 | 200 OK | 9.0 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.5.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 8952, version 331.-31196\012- data Hash7632ee248e466f2d9680c635144f0f8a 3007768f9f1e9362a4052c6b0c5ad864d7ffb8dd 04a75053dd1d68905e1a57e2f7dd4fe13f88810f8aa9c5c8625d065d956e2de0
GET /releases/v5.15.4/webfonts/pro-fa-regular-400-5.5.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 8952
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-22f8"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a1c11fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-brands-400-5.8.2.woff2 | 104.18.23.52 | 200 OK | 2.4 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-brands-400-5.8.2.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 2412, version 331.-31196\012- data Hash714ee8de820748bab5090d91cd5b7690 07f4d4dfe5e3c9045f41996eb1ac8ecbbcc779bf 322c181b1aab5807cd0a7ed9e249ddbd97fa385ca3d338aa59ef1f610ca24601
GET /releases/v5.15.4/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 2412
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae353-96c"
last-modified: Wed, 04 Aug 2021 18:58:27 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a1c04fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-brands-400-5.0.0.woff2 | 104.18.23.52 | 200 OK | 38 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-brands-400-5.0.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 37796, version 331.-31196\012- data Hash6cdf281bc8af0068561fe6aa361a6a0b 4b11f830ee1b852b8aa46ea7e4cfe709a327bf58 49fd3e0c64f247cf56cb828bc37b88cf139df6e5c7bb4c3a4507f740e9a52c17
GET /releases/v5.15.4/webfonts/pro-fa-brands-400-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 37796
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae351-93a4"
last-modified: Wed, 04 Aug 2021 18:58:25 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a1c06fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.10.2.woff2 | 104.18.23.52 | 200 OK | 16 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.10.2.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 16248, version 331.-31196\012- data Hash054b33973fedb68ef21f74b9d142acb4 a35f1a776ba0fd2089c0868f62b51a240782e75d e272d442a9319692de4cc42fa2de41167f7f3731f247aa94399e07230f2ae46f
GET /releases/v5.15.4/webfonts/pro-fa-regular-400-5.10.2.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 16248
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35d-3f78"
last-modified: Wed, 04 Aug 2021 18:58:37 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a1c0cfab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.10.2.woff2 | 104.18.23.52 | 200 OK | 17 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.10.2.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data Hash8a43eb7db323b6a82d87a458c34cbe82 968367a39a575ffe38f1cfda07eea12eff885831 2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 17168
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae358-4310"
last-modified: Wed, 04 Aug 2021 18:58:32 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a9c94fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.5.0.woff2 | 104.18.23.52 | 200 OK | 9.8 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.5.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 9804, version 331.-31196\012- data Hashebf96fc384a820c37a0816cd5710d3e7 b1cc876a842c0c4493a9c7857f1c9414729dc82d 173c515ed1eaa3209052acddec75a65c6b349db9689d1538b92ba8c93fcedeff
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.5.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:21 GMT
content-type: font/woff2
content-length: 9804
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35a-264c"
last-modified: Wed, 04 Aug 2021 18:58:34 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a9c87fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.9.woff2 | 104.18.23.52 | 200 OK | 8.3 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.9.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 8296, version 331.-31196\012- data Hash4c4ab22383ac6d94c5a25aa5520609ec 0b59551b2c0f9d75166e58e3967957cf9319ce80 2ae2d4f585bc9f278ae7f9f45bca43f1af08fa3500f738dcfddabbc4dc8f06a1
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.9.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:22 GMT
content-type: font/woff2
content-length: 8296
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae358-2068"
last-modified: Wed, 04 Aug 2021 18:58:32 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2a9c89fab4-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 | 104.18.23.52 | 200 OK | 20 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data Hashc7682b8035fc1d1672d6455631813794 9e2955e5e55b3073e229c218724406425862d4a1 1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:22 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7912ef2adcc8fab4-OSL
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=409119572760809&ev=PageView&dl=https%3A%2F%2Ftonyevers.com%2F&rl=&if=false&ts=1675005449597&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675005449597.873757089&it=1675005449223&coo=false&rqm=GET | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=409119572760809&ev=PageView&dl=https%3A%2F%2Ftonyevers.com%2F&rl=&if=false&ts=1675005449597&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675005449597.873757089&it=1675005449223&coo=false&rqm=GET IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=409119572760809&ev=PageView&dl=https%3A%2F%2Ftonyevers.com%2F&rl=&if=false&ts=1675005449597&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675005449597.873757089&it=1675005449223&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 29 Jan 2023 15:17:22 GMT
X-Firefox-Spdy: h2
|
|
| static2.creative-serving.com/id5-api-2.js | 151.139.128.10 | 200 OK | 10 kB |
URL HTTP/2static2.creative-serving.com/id5-api-2.js IP151.139.128.10:0
File typeASCII text, with very long lines (33418) Hashb5b38382ea0fdff664d0a65345850538 f50ea1a15517f7919352eb1e36f697c224306ee1 4197cd8a063bd84f04af1aa131e48a1b0384621df1e373085d92594ed4f061ef
GET /id5-api-2.js HTTP/1.1
Host: static2.creative-serving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:22 GMT
content-encoding: gzip
content-length: 9982
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 19:23:14 GMT
accept-ranges: bytes
server: UploadServer
cache-control: public, max-age=3600
age: 2794
etag: "43e554f8c9787fa63a85955c07ba1918"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1675005442.cds247.sk1.hn,1675005442.cds229.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash3e863faa386be5424a5d4a452860ccbd ceee8a9b940473ca6678375d68b2989c074d5175 678aa5fb1efcb394a85ca175ef644b9585d8cb5dc1c55a2331a8af0f3a601571
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "678AA5FB1EFCB394A85CA175EF644B9585D8CB5DC1C55A2331A8AF0F3A601571"
Last-Modified: Sat, 28 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18806
Expires: Sun, 29 Jan 2023 20:30:48 GMT
Date: Sun, 29 Jan 2023 15:17:22 GMT
Connection: keep-alive
|
|
| id5-sync.com/g/v2/101.json | 162.19.138.82 | 200 | 216 B |
URL HTTP/1.1id5-sync.com/g/v2/101.json IP162.19.138.82:0
File typeJSON data\012- , ASCII text, with no line terminators Hashb151ae3a103c0402fb2edd7de79e3d20 209f25b715611542fd70cc408e3b8deaa42c7408 e712b6df3d25151e6e4a6bfbecc23c84c7bae07c2d7c39c9b45e8d3c73dc28d9
POST /g/v2/101.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 171
Origin: https://tonyevers.com
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://tonyevers.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 29 Jan 2023 15:17:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 471 B |
IP172.64.155.188:0
Hash44ddbbf09e9286b5441471c676aeaafa 5c24fa56ad58627276f4e993158f2673353a419d 52816da955758de661a0347e07d41acbe5f8d4c3b5807d4dfa87115861f17f4d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:17:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 14:43:43 GMT
Expires: Sat, 04 Feb 2023 14:43:42 GMT
Etag: "5c24fa56ad58627276f4e993158f2673353a419d"
Cache-Control: max-age=515778,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7912ef33e9a5b500-OSL
|
|
| ads.creative-serving.com/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse | 52.58.84.254 | 302 Moved Temporarily | 0 B |
URL HTTP/1.1ads.creative-serving.com/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse IP52.58.84.254:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse HTTP/1.1
Host: ads.creative-serving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 29 Jan 2023 15:17:23 GMT
Location: https://ads.creative-serving.com/ul_cb/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse
Set-Cookie: tuuid=10c9f620-04cb-4a9a-bad4-02694577fe38; path=/; expires=Fri, 23-Feb-2024 15:17:23 GMT; domain=.creative-serving.com; samesite=none; secure
c=1675005443; path=/; expires=Fri, 23-Feb-2024 15:17:23 GMT; domain=.creative-serving.com; samesite=none; secure
tuuid_lu=1675005443; path=/; expires=Fri, 23-Feb-2024 15:17:23 GMT; domain=.creative-serving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
|
|
| ads.creative-serving.com/ul_cb/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse | 52.58.84.254 | 200 OK | 174 B |
URL HTTP/1.1ads.creative-serving.com/ul_cb/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse IP52.58.84.254:0
File typeASCII text, with no line terminators Hashde61a13c609e5b085403cd1be8a7998a c11022aaa294afc1d18b09a84eb2fd4838fbd5f7 5e94a1c1e40bf83f692878ae935b3c1dd20a7ebe47d438633d413db7c9e39b7d
GET /ul_cb/pixel?id=3162076&id5id=0&type=jsonp&cb=syncResponse HTTP/1.1
Host: ads.creative-serving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript
Date: Sun, 29 Jan 2023 15:17:23 GMT
Content-Length: 174
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashed8a8c45dceab588456b222e04775919 0242859712655caa3c3e9b936878c7c7874b7b5a 669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cm.g.doubleclick.net/pixel?google_nid=platform161_direct_new&google_cm&google_sc | 142.250.74.34 | 302 Found | 310 B |
URL HTTP/2cm.g.doubleclick.net/pixel?google_nid=platform161_direct_new&google_cm&google_sc IP142.250.74.34:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Hasha59b08e7a2d542ef6698ca85300749b8 856d484503987e6f8f410dacf8d0a3e2299214ca 6144b86b6660496f223dce8103e7a2e18868e4865f6d4388f829d8205b9decc8
GET /pixel?google_nid=platform161_direct_new&google_cm&google_sc HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tonyevers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=platform161_direct_new&google_cm=&google_sc=&google_tc=
date: Sun, 29 Jan 2023 15:17:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 310
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 15:32:23 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cm.g.doubleclick.net/pixel?google_nid=platform161_direct_new&google_cm=&google_sc=&google_tc= | 142.250.74.34 | 302 Found | 248 B |
URL HTTP/2cm.g.doubleclick.net/pixel?google_nid=platform161_direct_new&google_cm=&google_sc=&google_tc= IP142.250.74.34:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Hash37365f19f36a98bede034d5b755b89f4 b798529dee47723c3acee6e6b74ffdb188f78809 7afe91a052d52945eb320d509eb718e8efcf5f99756a8c9e02ea4126a65cb027
GET /pixel?google_nid=platform161_direct_new&google_cm=&google_sc=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://ads.creative-serving.com/gcm?google_error=3
date: Sun, 29 Jan 2023 15:17:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashe9eba61fbe87bc53d60d0fdd1ba6adb4 8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07 9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:17:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ads.creative-serving.com/gcm?google_error=3 | 52.58.84.254 | 200 OK | 43 B |
URL HTTP/1.1ads.creative-serving.com/gcm?google_error=3 IP52.58.84.254:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /gcm?google_error=3 HTTP/1.1
Host: ads.creative-serving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tonyevers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 29 Jan 2023 15:17:23 GMT
Content-Length: 43
Connection: keep-alive
|
|
| tonyevers.com/ | 188.114.97.1 | 200 OK | 0 B |
IP188.114.97.1:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: tonyevers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:19 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://tonyevers.com/>; rel=shortlink
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Sun, 29 Jan 2023 13:46:53 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbN3nPG4RURfU8APy1s0UAuI%2BDAjsocaQ3B%2FcaFN5w1EgAEg6Z%2B0xAACkY1pRD4BVqEyOEyL3tErLqUEMbMAqYofc4yaw1AzFDGHbtr1ifRaMF2TTZLdOuhvqtt%2Flw1z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7912ef1ccd770b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| insight.adsrvr.org/track/evnt/?adv=sfi0lr2&ct=0:dw1ziua&fmt=3 | 52.223.40.198 | 200 OK | 0 B |
URL HTTP/2insight.adsrvr.org/track/evnt/?adv=sfi0lr2&ct=0:dw1ziua&fmt=3 IP52.223.40.198:0
GET /track/evnt/?adv=sfi0lr2&ct=0:dw1ziua&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d1eoo1tco6rr5e.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:17:20 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
|
|