clever.danversridge.com/content/terms-and-conditions-of-use.html
172.67.199.69200 OK 18 kB URL HTTP/1.1 clever.danversridge.com/content/terms-and-conditions-of-use.html
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15036), with CRLF, LF line terminators
Hash 84fa747700ce64716f58b5475cd06db5
7e55ea7096d8da92ed0058b85b45f40fd88612fa
5df6fff9cf6806e1e0323904ba4ad897bbc29f1488d2d1f706d5c842fbfad0f9
Analyzer Verdict Alert fortinet Phishing
GET /content/terms-and-conditions-of-use.html HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Em3K9jY8ky5dA0xD9OkrSmwOJhWiIWx129%2BtUlljVIrYV3Wot%2BPeqmqHrEjcfxjgJuyFRVzvDSIzeGExTyJ91hBrC8Xpczdq3YfQq9Y7mbxICinC9ewYcFBCV8mgwdN0TdlVGqI94jdl5A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9b1c13b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12088
Expires: Mon, 30 Jan 2023 07:32:35 GMT
Date: Mon, 30 Jan 2023 04:11:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6643
Expires: Mon, 30 Jan 2023 06:01:50 GMT
Date: Mon, 30 Jan 2023 04:11:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 03:43:11 GMT
content-type: application/json
age: 1676
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4143
Expires: Mon, 30 Jan 2023 05:20:10 GMT
Date: Mon, 30 Jan 2023 04:11:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kiSAnwBFkWGRf2vWCiOqc3WekTFxWXGmjFJ07QabufLdGKC5W0sPIEKZX4NCuJMkgW1oh3NGUFu/1WUBgXKh6g==
x-amz-request-id: WY6468A73NFJ27YN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 03:21:38 GMT
age: 2969
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 04:11:07 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
clever.danversridge.com/Assets/js/mightyslider-2.0.2/css/mightyslider.css
172.67.199.69200 OK 11 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/mightyslider-2.0.2/css/mightyslider.css
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2455), with CRLF, LF line terminators
Hash 864bf2557b42c045c9f957cb02b47b85
f9b99a76845273921107a71b7573c2231f2d912f
3d97966339956afa02668694854eb13226cb930ccd3abd483d792a26702d6841
GET /Assets/js/mightyslider-2.0.2/css/mightyslider.css HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TrlwgEtosQa4SQomo%2FrriKi2tZsw4gOziXucVTRZLwUMp0BM4mhu%2B3kVSIlZb2l2bIgWEgS8%2FlFDwh5BqNUK52pdSeiADKvvg78cEzn81Dnzqi3DXaQN7DehpvsZNmGFhtFVdsJObkCOfg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9dfd42b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/App_Themes/default/web.15112018b.css
172.67.199.69200 OK 40 kB URL HTTP/1.1 clever.danversridge.com/App_Themes/default/web.15112018b.css
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58576), with no line terminators
Hash a8fdd448d1a04cc018a4cbef8483b387
848508cabb60f94c6f7cb13de29978a120b8b899
ffd80f24844acabd674d454cee9e4c8c7763970f5aa4f10b87eca6fea3d3ef2e
GET /App_Themes/default/web.15112018b.css HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MYyZ5%2FEwJonfikmlalHrxv3WY6ny3agYqsveVFx0dfA87mpVzyUSy0ipdnnPKSrwwvzu2V8dDgZOej8dvgerAdsGyFgp3JL1Vp4V4oXMNCOpC27rKiLZzvmlG1NlxQpkTa4A%2BSk0%2FiItlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9dfd3fb4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/jquery-1.11.1.min.js
172.67.199.69200 OK 16 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/jquery-1.11.1.min.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1127), with CR, LF line terminators
Hash 3a8a4acf78c4fef44baa1cc7e6cc7274
6283da57ae684c73e0916b3c05b0af9e04a488b3
98e615b77098c0aba12b7a822267051aeab06ace24797c7a415ae7f0ef4bd73e
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/jquery-1.11.1.min.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OqSmRaV5cn4M4I17mcqaKF4By36HCYXEE25FnFjNVIiY%2BcaTQZgkLGUv4tVKmqBg4CFVZ009rS1aMB88prXknE74oUrpkrmfoViuYV51Z30zhtyIpLjQCQNAIy5ZTQLZaU3vrgriICK5PA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9e0b15fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/bootstrap-3.1.1/css/bootstrap.min.css
172.67.199.69200 OK 73 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/bootstrap-3.1.1/css/bootstrap.min.css
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (49678)
Hash 78850fd57534ea6b5a3e4425d48118c4
6da9d70d1a5d0cb964ea397e78d670654f9b8756
9e212720b50a769a259c53dbf074877c74c3bd7822a24b5307ffe6bfd702783b
GET /Assets/js/bootstrap-3.1.1/css/bootstrap.min.css HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uZRf4K793B4Eq43tl8OhbkZWc4WOTk96vruhpJFvllSVdKeQmSrE2PzxVMdyT200qeb%2FQRVz3%2FbwMwBXkbCG6%2BX%2BL%2B%2FOBqrV9nMcM1ay5j2S8bC%2BnsCDB2Pok1X8nTekGrrQMyuHMwjEqg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9df99eb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/fancybox-2.1.5/jquery.fancybox.css
172.67.199.69200 OK 27 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/fancybox-2.1.5/jquery.fancybox.css
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59085), with no line terminators
Hash 5e4a73481a75ef09e3f80c0318d3534d
44e758f3827f3f1eaf03974e621f44a341cb52d1
12f4f0920faf8188dc5cc6ce525905b756897642b906b89eb10ece31ff17be1f
GET /Assets/js/fancybox-2.1.5/jquery.fancybox.css HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oA5HL%2BXHK99kKz0Y%2FITYWumO%2FluKrNpT13W5Se%2FIdSiFYC%2ByeqUVGehzmzSx3GfHY2DLxMboGrDI1sw3DiLCKyIdwc8bN0K46dXUiz8q6LLLI0BdJw1TX3EhOn0sHsC30sXPJhGps%2BThQA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9e0a45b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/WebResource.axd?d=7-ZZ9B7unxxm9wFjKgsQSlWGJhpxbkWQff8_IQfNRuST_aG4v6a7rr6IEBwSbUm3cV84c1VDLI-_gGphsWx8HEFXNEE1&t=635418424260000000
172.67.199.69200 OK 12 kB URL HTTP/1.1 clever.danversridge.com/WebResource.axd?d=7-ZZ9B7unxxm9wFjKgsQSlWGJhpxbkWQff8_IQfNRuST_aG4v6a7rr6IEBwSbUm3cV84c1VDLI-_gGphsWx8HEFXNEE1&t=635418424260000000
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1065), with CRLF, LF line terminators
Hash 5dfe4594c4a85c1c94c8f03299cdbfda
d7e68d323d1fae239cee317c9ea4097fda1ce4ad
d9449963274be42823d6538f72f3022381c7dc0edc476431e8ef2f0b21b06e56
GET /WebResource.axd?d=7-ZZ9B7unxxm9wFjKgsQSlWGJhpxbkWQff8_IQfNRuST_aG4v6a7rr6IEBwSbUm3cV84c1VDLI-_gGphsWx8HEFXNEE1&t=635418424260000000 HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GDni8fbYvxuAdqzY9%2Bs7HcaN%2F7qAxh3FAit3r2P9dKBSXCPIBjAodH6Ahwrf%2FXGN%2BJe022MMaMIWhApo6Afzfm8uEsiNsqUENPaSncRJEyRAxFJbYib%2F3C3EKMgdpRNePdomtQctANyQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9e0de80b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/ScriptResource.axd?d=agk1g92wzFP-_EYPOKNLbe3drIPQPJ5DF8wbbnI3310rRM9RKdGweijJIdAjvyy3P21OvlKED-otnd1Ng6_Y-I4xtqAmjPNEbnccvH-hJt4SuGVSkFoToX2VlnqklMlOPjVw-3avaWMOY_o3QbxxLuN_sND876f5DlRwZ2zQPj_cOQt70&t=7e632e9f
172.67.199.69200 OK 17 kB URL HTTP/1.1 clever.danversridge.com/ScriptResource.axd?d=agk1g92wzFP-_EYPOKNLbe3drIPQPJ5DF8wbbnI3310rRM9RKdGweijJIdAjvyy3P21OvlKED-otnd1Ng6_Y-I4xtqAmjPNEbnccvH-hJt4SuGVSkFoToX2VlnqklMlOPjVw-3avaWMOY_o3QbxxLuN_sND876f5DlRwZ2zQPj_cOQt70&t=7e632e9f
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (522), with CRLF, LF line terminators
Hash 83e64848c0b48fb3dd0d4b860e04cf60
2385b85739083e0ee34c9adb007a9caa714e4334
4cf221cb272f85571c4a15cb07d9aefec1fdeb84fd793de84193852cc428f67e
GET /ScriptResource.axd?d=agk1g92wzFP-_EYPOKNLbe3drIPQPJ5DF8wbbnI3310rRM9RKdGweijJIdAjvyy3P21OvlKED-otnd1Ng6_Y-I4xtqAmjPNEbnccvH-hJt4SuGVSkFoToX2VlnqklMlOPjVw-3avaWMOY_o3QbxxLuN_sND876f5DlRwZ2zQPj_cOQt70&t=7e632e9f HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oV45mfZTikGmwqzJQKkSeEGjsPMRs7YjtsU4kEKewRXCLXcCGCVb%2Fo2KIVlMnYsr4%2BmaJaj%2FUtPhYLlvpWwLrbCYtImN0950RITY1%2BbYH3yL1T%2FgMwOPueDgz1VpWjoWdTUQJfgODmmScw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9e6d67b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/ScriptResource.axd?d=CDV2qjXBZVhU5nU-vRzAv_CVdaSxiC03VCmvw3tzGPPgongY9soFvO69WEmaUyPYsBaIkjtiT6VrtnufaXU3mS1NBHRDGFCB0IF-h56tY21jsA8KBJ6ic39vFkiBNm_kqZ-IFgeTW86t03LggWNnRJWZvNc1&t=7e632e9f
172.67.199.69200 OK 19 kB URL HTTP/1.1 clever.danversridge.com/ScriptResource.axd?d=CDV2qjXBZVhU5nU-vRzAv_CVdaSxiC03VCmvw3tzGPPgongY9soFvO69WEmaUyPYsBaIkjtiT6VrtnufaXU3mS1NBHRDGFCB0IF-h56tY21jsA8KBJ6ic39vFkiBNm_kqZ-IFgeTW86t03LggWNnRJWZvNc1&t=7e632e9f
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2950)
Hash dbf71352917ba68ceb5fcda26eb70b63
5cb57dffed81a3520606d5b1fe3b95b78478b2ff
33229de0f9d76c5aaa1f2b02931c0480598c4ecade2e0286a87927cfbea03c51
GET /ScriptResource.axd?d=CDV2qjXBZVhU5nU-vRzAv_CVdaSxiC03VCmvw3tzGPPgongY9soFvO69WEmaUyPYsBaIkjtiT6VrtnufaXU3mS1NBHRDGFCB0IF-h56tY21jsA8KBJ6ic39vFkiBNm_kqZ-IFgeTW86t03LggWNnRJWZvNc1&t=7e632e9f HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LEKpXhbkRKy5gzlnurDgq8bF8lfDl8yQlInWobL%2BW1HpVIjQP1M3yeWS%2BAMt3xvEjvgW%2B0gqkxxpPEQyfhrgXhC9qgbns3Plv4IZOb%2FBGcuhqLLaql9vibG7Qmlb9EBiRY5d%2FIeDnjzi1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9e6d6eb50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Mon, 30 Jan 2023 04:11:07 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
player.pstatic.gr/phaistos-player/phaistosplayer.js
104.26.5.226200 OK 53 kB URL HTTP/1.1 player.pstatic.gr/phaistos-player/phaistosplayer.js
IP 104.26.5.226:0
File type Unicode text, UTF-8 text, with very long lines (37162)
Hash e7e6da64ae39a17c8d27fea948f3f8ab
447ff0473df597acefcc95e20731b8922e600161
18420ee5a946061269a6b3866167c7925f893f060c9b5e4ed611616423db4b52
GET /phaistos-player/phaistosplayer.js HTTP/1.1
Host: player.pstatic.gr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 12 Dec 2022 13:53:08 GMT
vary: Accept-Encoding
etag: W/"63973244-284e0"
content-encoding: gzip
Cache-Control: max-age=1800
CF-Cache-Status: HIT
Age: 1688
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dUEcqXosaaYA%2FzOqH9rINhiV6mXdduYprPOY1mdoO2%2BJzNywncvYWBK3TT%2FnFQZ6KG0RBcDCsnXjRX4TZ5lY9KP60bJv1k7elkaQmU97uTeU5%2Bb71eGvEhGZdNFeTLgnPXmH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9ecb93b4f1-OSL
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/jquery.cycle2-2.1.6.min.js
172.67.199.69200 OK 25 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/jquery.cycle2-2.1.6.min.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19701)
Hash d2e3d4be42547b8e14406981ddbbe6ac
feb7e13bc97125e200afb02557952951aee34d3a
2af2c7ff63270da8c39670a31b6339b0c51ff52b5b6d95160fbcfa54d79d8109
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/jquery.cycle2-2.1.6.min.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lFa5pvDuo6iMIps8mb4WHoz%2BScaN3RDBNDExtVKDXUkjYyXRSIbxRODEy8di1esP%2Fphmi6ad%2FwgCnYmfzjHRcKcfCaS9iSsFI6E94nMsbN3kZp7hR%2BX32tQfwU0ejpkPzHpMe9w1hI0UPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9eba73b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/mightyslider-2.0.2/js/tweenlite.js
172.67.199.69200 OK 22 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/mightyslider-2.0.2/js/tweenlite.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2827)
Hash 027700829c411c5f3564135a2b22011e
a0c1c87f725064c40c9579162e6a0d953b174773
9b4f7f2b8c6a62f25f6c9d14402f3877ea62b33b70ad8853239080d199fe3d80
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/mightyslider-2.0.2/js/tweenlite.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bz5w0ej8WR2Enh5OEVRw2yk3a1csIW%2BiUtPNTSfjxGki9eaBQkn5FvJYGiDs%2F8UFt%2FxbgcYo6gtaDPYTRIKHd82KCUROPi5lwcNZ9VetKPG4ha%2BGU6XIu1MdeRqhn0LqiK3q7MpUCZYIvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9ecd86b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/swfobject.js
172.67.199.69200 OK 38 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/swfobject.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (995)
Hash 7aa3383502a7dbfdbdcc43b95d5bad6e
6831c44fa67b64e392e55252e886f3879f023be0
876519a5071f5cdd3837b10be6f61f7642985eb4ed87610f86f2df993bd28b85
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/swfobject.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2szu6DcDV8VbVMole3K6MBYYNuBDaeS580jfW9MvzTwKC7keAouZGWswHRlNagLLivS30o575Z7BT%2FSsTosv2g%2FhWSh%2BPHTTNVpzmIkI3JAmojGzWg%2FHO3Z%2BM2BpY4KrOlrecjziTW%2F5xA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9eb9edb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/mightyslider-2.0.2/js/mightyslider.min.js
172.67.199.69200 OK 28 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/mightyslider-2.0.2/js/mightyslider.min.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6497), with CRLF, LF line terminators
Hash e5cc42ffc6e1c8457805037d774324ab
99e5d0119ed95c73b40a117873b80b39e526ee8b
ba0c158767cd543a7817515dbcb74e5a44b0225a734ab18abefc6329a4871dd2
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/mightyslider-2.0.2/js/mightyslider.min.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6iR%2F%2BCLwpXxPaS3kY3vSJUcqrEQQu3gliGK9OiIh%2BB%2FZ7cw8%2FqeU7DpZp%2Fm4D%2F6dao3rb%2Bq%2BWOq9u3JrPUYwFxZTeadl6lJ8KT4msjzld1q5GVekVdvodhZ7gdM3BVec0jLHCXALeEi4cA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9ecd97b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/js/fancybox-2.1.5/jquery.fancybox.pack.js
172.67.199.69200 OK 19 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/fancybox-2.1.5/jquery.fancybox.pack.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10105)
Hash 57012871df84acb3a9de344dfa2b715a
81146d7dece6be221c20451ba37965e5ef69ac96
83ab3dd73850685f7441a6eacee8bfe997de793465b21336d254be56de37c015
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/fancybox-2.1.5/jquery.fancybox.pack.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Q8yndHdfqki14BaEi4KK3rDcvvrNqo6KmjbevGqUu3qK6JNWM548RBG9atp%2BPh1y8WvOnf2o2ekjAsIbaCo3QCooO7kaRZrOusWRQWnMLEgxQckGrX3GtXG1hF%2FCdblb4T8FkmSU65emA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9f0b46fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
static.adman.gr/adman.js
104.22.10.183200 OK 61 kB IP 104.22.10.183:0
File type Unicode text, UTF-8 text, with very long lines (48527), with NEL line terminators
Hash 04150a17e6e507a587a71c8994cb8dae
d74ab876c24e9c334b3118dc26b539bcfe0918ff
a2173eaf984e15906c6f69b5da952e0990e7df6a7248ef92c1d04ba30fa6e50c
GET /adman.js HTTP/1.1
Host: static.adman.gr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 19 Jan 2023 12:51:36 GMT
vary: Accept-Encoding
etag: W/"63c93cd8-2d53d"
content-encoding: gzip
Cache-Control: max-age=7200
CF-Cache-Status: HIT
Age: 4153
Server: cloudflare
CF-RAY: 79175c9f7bdeb506-OSL
clever.danversridge.com/assets/images/400x/325425.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/325425.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 372b0235d80ae80d32de83d3b54025a1
6f1c3a91973e36ef8bc717f1cf6b9e3d52fd6475
232c57f21055cbe0e43978c8d4f3d4ac7d02324d39330ceeb7233f4d46cd9474
GET /assets/images/400x/325425.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9f8ddab50b-OSL
Server: cloudflare
clever.danversridge.com/Assets/js/bootstrap-3.1.1/js/bootstrap.min.js
172.67.199.69200 OK 37 kB URL HTTP/1.1 clever.danversridge.com/Assets/js/bootstrap-3.1.1/js/bootstrap.min.js
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1485), with CRLF, LF line terminators
Hash b9eefa52bb9ad0a15e31941548cc5d28
50d9f4978de0c43788be60d06bcd0c82e795e09b
0f23e30790785469d42a486050f0c43adf0baa061bc525ae3776f1db073bbe91
Analyzer Verdict Alert fortinet Phishing
GET /Assets/js/bootstrap-3.1.1/js/bootstrap.min.js HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQnaU8v7IIdPy%2FKKDXIGuO2gLee%2BH47n3CN3J%2FadI%2FsRjs5oC8Vdh%2BePdghAY64Zkr1xtc%2BAt3miuQ2U%2BjPfejF69%2FJXBjSKcdvw6xr8M5DJiZQShuz5NFvDCv%2B4jOBLKbIDVJDJ5GK6SA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175c9f7ddbb4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/assets/images/720x/181775.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/720x/181775.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ab4af5ef5018ee37a52fb95ea5fd9599
45e1a404a68bc6881445373e991bfb864b8aee10
d93a9d82db49a7a84028fc37a21a8b6e149368797ca65a51c0b40c461af365af
GET /assets/images/720x/181775.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9f8b5ffab4-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/345605.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345605.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 460e3aa98eb80709f225229ea80a87c1
509711b25743ce140c764b6b32082071cf92d81b
427b7a121d050379ff6eba3ba12e20eda6e68b9efd8d8785c62f222d36106cd6
GET /assets/images/400x/345605.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9faadcb51b-OSL
Server: cloudflare
clever.danversridge.com/Assets/img/Govastileto_Logo.png
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/Govastileto_Logo.png
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 1cee9b42294b35dfb917a48ce184bfff
8e75742b1c8b7b2656539c75f895490c4603c04c
dc640d005d7b674b5f4a0c53a09d8969af345d006a3d5f8b31adc2c325a7f5e1
GET /Assets/img/Govastileto_Logo.png HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9f8a42b4f4-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/345642.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345642.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 7f18f102f9814a0dc7b26a20305fd640
5944ec1c496254fa49c2b79a835cb7683872a7ba
b29726383cbabf801aabe4f702aecbec58f03c38a2954ff33741ca1b4547ec36
GET /assets/images/400x/345642.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9fce440b45-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/325393.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/325393.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 41b75931726b02308cc85b6554166130
ea98125c3c653b3d202c2610f37667f5e0c8c377
c18fe9ce9c13d3df911580df85563992c7de88ea15001efb653b2b9450d90c91
GET /assets/images/400x/325393.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9ffa6db4f4-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/345486.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345486.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 3beff8572eb1a4a7566cd31378e265f2
a5a66adf0a2c5d74254f7970fbdc27bee46c004d
f8996fbe860e6942a5436e7989be146fa757ab208e02dd6ce749c4f3b3ed863e
GET /assets/images/400x/345486.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9fddf1b50b-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/345594.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345594.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 7b367d88a869235dd162f4c78363edd5
0a9a80ab1510392ed9fbb51d640548eb7514b33e
0dd91d477d57595be4e9f70c0f46f3772c6824cd788cb208bf9923245bd62001
GET /assets/images/400x/345594.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9fee11b4f9-OSL
Server: cloudflare
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 03:41:41 GMT
age: 1767
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
clever.danversridge.com/assets/images/400x/345612.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345612.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 8cfd24c3300aee6bad4cfcc4b411f6f8
4571501be1562290611fb55474d19bb5fbe536c8
7f7facb53546b51543bf35c1da4da606b9b9a4689e8d6e6102065881167b72dd
GET /assets/images/400x/345612.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175c9feafeb51b-OSL
Server: cloudflare
clever.danversridge.com/image.ashx?fid=240935
172.67.199.69200 OK 45 kB URL HTTP/1.1 clever.danversridge.com/image.ashx?fid=240935
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23202), with CRLF, LF line terminators
Hash 2acaf3112b6e80e73734d020d03fb0cb
a56f0341b3953ab96e429b3ec6311d5d1bc52cc7
f220f4c7face95bc4c7c8a24d232086d6a4dbabc83e44bbdff334f96142df710
Analyzer Verdict Alert fortinet Phishing
GET /image.ashx?fid=240935 HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TpYrdnPAvisuWajTk%2FZtWLtDngkh7tOACl5BQ4O6Lcd3R5N2NGczbe49shyU5ewzyeKBRWKJDdYpLzlW96znsDouFNPOo%2Bpc8ueThuk1ygbk0rOYyWJp9wBQ6kKa5KmqUSl9%2Ftc%2BW7jSXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79175c9feb6efab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clever.danversridge.com/Assets/img/gova-copyright.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/gova-copyright.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 23cbfdbd861bc2b9cd8789662c8352ed
781b715a95bac9086227f1e9eabce169a1b9ec36
77d98b9a6748c335c7b26222aceb34a4aa2e5aea03d3ce249b9d5ab2ce2d598b
GET /Assets/img/gova-copyright.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca02e24b4f9-OSL
Server: cloudflare
clever.danversridge.com/assets/images/150x/345646.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/150x/345646.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 6b1bfbd08d20143e8332bb1f0bb8d992
a3f92475b66340ab6353c74247bc0032cca581cc
4f60dd8679a98e2082ca1d92d619e6d42f22611d0b25e959ca1abafab8a9d001
GET /assets/images/150x/345646.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca01a80b4f4-OSL
Server: cloudflare
clever.danversridge.com/assets/images/150x/345661.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/150x/345661.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash a2c8f4e3f15371ccfe13ce419f40a596
8defd6795de38538c736089afaa7985aec7387eb
bfcab7c2e0f43b6059765fc7c98b27be4f5df8c9eef9ce6f4633e9bc05e58915
GET /assets/images/150x/345661.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca02e05b50b-OSL
Server: cloudflare
clever.danversridge.com/assets/images/150x/345680.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/150x/345680.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 48552b867119c0b1c02c5bc180fa38c7
033c6fbca594d2508a2fb8cdadb7746e22569a8c
8054eb731217d4e48d0da76b046ed7dfd089e058e0cc02662b3d3a8afaa5de3a
GET /assets/images/150x/345680.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca03b11b51b-OSL
Server: cloudflare
clever.danversridge.com/assets/images/150x/345607.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/150x/345607.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash a96333592e345e8c79705a4c5d8dbbee
da88d7478d44e8c128e011da4c9735f95b83ae75
018a43fd775b2e21e0857c3c57a1092ac4819a8c3a2bc873b7008f25bdf0c513
GET /assets/images/150x/345607.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca07b83fab4-OSL
Server: cloudflare
clever.danversridge.com/assets/images/400x/345573.jpg
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/assets/images/400x/345573.jpg
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 4b264038f09a6375abed44fd40c16623
31bbb80358d95a7f08ddff7766765d1b26e0bdf7
a4e8ddf4109b05324837d7eb19977766bf3ecafe858bec997ff81141ca80f2c6
GET /assets/images/400x/345573.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca0aab5b4f4-OSL
Server: cloudflare
clever.danversridge.com/Assets/img/rss.png
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/rss.png
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 68c7219c8c7a7941abb9ae3983a033bd
27f865e02f8da830c8e2c3ddb65484ce6f25e70f
6d82640416946e899e1f3ee942cda4804dad765d2273467181bf1c6483095cd2
GET /Assets/img/rss.png HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca0be42b50b-OSL
Server: cloudflare
clever.danversridge.com/Assets/img/facebook.png
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/facebook.png
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash a60f20f3ff935269c7cc9e1d2df6a22d
07fdb6386166a38df74bd0b6803b21efe2869df4
d4801946748dc904a1ae6db88af157a667d81b96945221ef7d889affadc25c31
GET /Assets/img/facebook.png HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca0bb49b51b-OSL
Server: cloudflare
clever.danversridge.com/Assets/img/twitter.png
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/twitter.png
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 9f46fc68bd19fc64aa849beeaf29da89
bc468a988c36684650142deefa9f452ae4c182be
794e83dfb10b43d3ca8c8ef833b4eca664148a6340ae3fba249891581a3a34e6
GET /Assets/img/twitter.png HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca0be700b45-OSL
Server: cloudflare
s.reembed.com/G-8X2zJX.js
172.67.68.145200 OK 13 kB URL HTTP/1.1 s.reembed.com/G-8X2zJX.js
IP 172.67.68.145:0
File type ASCII text, with very long lines (3146)
Hash cce358c4b858272f2b646929292bb20d
1ed28644539b7d5269e8742037bca6b904a86bcb
4860b118aec403547ffbfca4f447a380e501d30575a89190b9648f603d26a7cb
GET /G-8X2zJX.js HTTP/1.1
Host: s.reembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Rem-Status: HIT
cache-control: max-age=1800
Expires: Sat, 28 Jan 2023 10:54:38 GMT
CF-Cache-Status: STALE
Age: 149490
Last-Modified: Sat, 28 Jan 2023 10:39:38 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HRKD2Zc%2B8eExdkMoicPJ3gzMFkydTWs6IIHS%2FiizstA6cqHKT08oPVeOyl%2FOAhE1JlxljqAMXNAXtsK8l94040lM8nKOqktZ0q6IQneCPGNJSwdGotXxQ1tu7aC6X4Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175ca089190b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Mon, 30 Jan 2023 04:11:08 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9883
Expires: Mon, 30 Jan 2023 06:55:51 GMT
Date: Mon, 30 Jan 2023 04:11:08 GMT
Connection: keep-alive
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=20037
date: Mon, 30 Jan 2023 04:11:08 GMT
X-Firefox-Spdy: h2
d31qbv1cthcecs.cloudfront.net/atrk.js
54.230.111.11200 OK 1.6 kB URL HTTP/1.1 d31qbv1cthcecs.cloudfront.net/atrk.js
IP 54.230.111.11:0
File type ASCII text, with very long lines (4255), with no line terminators
Hash d861bd1e6fc385523d9964b18cd6e726
3d176742cb672d8e12ec7e660ff27e26ea9157e8
9e9d714bf8bcf8564e062eb121f376bf0d0141b09941a420fb32ded933f5e316
GET /atrk.js HTTP/1.1
Host: d31qbv1cthcecs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 08 Jan 2023 04:50:57 GMT
Last-Modified: Tue, 27 Apr 2021 18:03:54 GMT
ETag: W/"d89453438fbf10dcf4c13265c40d5160"
Cache-Control: max-age=26920000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yLqxiF01o7jzk2jAk9NjQMCOkMsLd-nKfK_s1Vb1LHscItx24xrZGA==
Age: 1898412
s7.addthis.com/l10n/client.el.min.json
23.38.200.123200 OK 2.4 kB URL HTTP/2 s7.addthis.com/l10n/client.el.min.json
IP 23.38.200.123:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3827), with no line terminators
Hash dea422f196070a70ca2f191045f0596b
59cc2066e4e71c0a627069186b1e11cf2afbcdd6
418a061bed47a28e2f4489c7d4a087afdd5a0c0e9ab12eedcf8c14bd5785d5e1
GET /l10n/client.el.min.json HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://clever.danversridge.com
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
last-modified: Tue, 10 Sep 2019 15:15:17 GMT
etag: W/"5d77be05-1804"
cache-control: public, s-maxage=604800
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 2396
date: Mon, 30 Jan 2023 04:11:08 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Mon, 30 Jan 2023 02:24:45 GMT
Expires: Mon, 30 Jan 2023 04:24:45 GMT
Cache-Control: public, max-age=7200
Age: 6383
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
clever.danversridge.com/Assets/img/favicons/apple-touch-icon.png?v=XBr3Y2myQ5
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/favicons/apple-touch-icon.png?v=XBr3Y2myQ5
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 242557615202ddfa3d4d1b44971fa6e9
f971287220e2f7d972b0c159a1bfa0869f0f7a03
3849e4cabaae95714397476e74696863a0cbfc1e89b8147d56b77db91fcefc28
Analyzer Verdict Alert fortinet Phishing
GET /Assets/img/favicons/apple-touch-icon.png?v=XBr3Y2myQ5 HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0; __atuvc=1%7C5; __atuvs=63d74366047427a5000
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca17b0eb4f4-OSL
Server: cloudflare
clever.danversridge.com/Assets/img/favicons/favicon-16x16.png?v=XBr3Y2myQ5
172.67.199.69502 Bad Gateway 6.5 kB URL HTTP/1.1 clever.danversridge.com/Assets/img/favicons/favicon-16x16.png?v=XBr3Y2myQ5
IP 172.67.199.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 122960006dc49cd989640fe8db0eb4fd
0e42a272a4389cd1ec85f71458107f652127ef10
ffe6c48127b03a20c62afa42cbb9686ca713a252f335f51f41c42b1df5d73914
Analyzer Verdict Alert fortinet Phishing
GET /Assets/img/favicons/favicon-16x16.png?v=XBr3Y2myQ5 HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
Cookie: cf_use_ob=0; __atuvc=1%7C5; __atuvs=63d74366047427a5000
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca18bb5fab4-OSL
Server: cloudflare
m.addthis.com/live/red_lojson/300lo.json?si=63d74366805031c6&bkl=0&bl=1&pdt=163&sid=63d74366805031c6&pub=&rev=v8.28.8-wp&ln=el&pc=men&cb=0&ab=-&dp=clever.danversridge.com&fp=lifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Your%2CFace%2CSounds%2CFamiliar%3A%2C%CE%BD%CE%BF%CF%8D%CE%BC%CE%B5%CF%81%CE%B1%2C%CF%84%CE%B7%CE%BB%CE%B5%CE%B8%CE%AD%CE%B1%CF%83%CE%B7%CF%82%2C%CE%AD%CE%BA%CE%B1%CE%BD%CE%B5%2Clive%3B%2Cyour%2Cface%2Csounds%2Cfamiliar%2Clive&colc=1675051878702&jsl=0&uvs=63d74366047427a5000&skipb=1&callback=addthis.cbs.jsonp__2398734397574530
23.38.200.123200 OK 88 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63d74366805031c6&bkl=0&bl=1&pdt=163&sid=63d74366805031c6&pub=&rev=v8.28.8-wp&ln=el&pc=men&cb=0&ab=-&dp=clever.danversridge.com&fp=lifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Your%2CFace%2CSounds%2CFamiliar%3A%2C%CE%BD%CE%BF%CF%8D%CE%BC%CE%B5%CF%81%CE%B1%2C%CF%84%CE%B7%CE%BB%CE%B5%CE%B8%CE%AD%CE%B1%CF%83%CE%B7%CF%82%2C%CE%AD%CE%BA%CE%B1%CE%BD%CE%B5%2Clive%3B%2Cyour%2Cface%2Csounds%2Cfamiliar%2Clive&colc=1675051878702&jsl=0&uvs=63d74366047427a5000&skipb=1&callback=addthis.cbs.jsonp__2398734397574530
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 53a33e3a4ee89e80c50e27f835773a3c
484a809553545fed88d8c98fa4aeab67902b53ec
881b006f72fbb35824b606103a9b530f17359f4f97c6ea600df3ddfa30312e11
GET /live/red_lojson/300lo.json?si=63d74366805031c6&bkl=0&bl=1&pdt=163&sid=63d74366805031c6&pub=&rev=v8.28.8-wp&ln=el&pc=men&cb=0&ab=-&dp=clever.danversridge.com&fp=lifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Your%2CFace%2CSounds%2CFamiliar%3A%2C%CE%BD%CE%BF%CF%8D%CE%BC%CE%B5%CF%81%CE%B1%2C%CF%84%CE%B7%CE%BB%CE%B5%CE%B8%CE%AD%CE%B1%CF%83%CE%B7%CF%82%2C%CE%AD%CE%BA%CE%B1%CE%BD%CE%B5%2Clive%3B%2Cyour%2Cface%2Csounds%2Cfamiliar%2Clive&colc=1675051878702&jsl=0&uvs=63d74366047427a5000&skipb=1&callback=addthis.cbs.jsonp__2398734397574530 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 88
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Mon, 30 Jan 2023 04:11:08 GMT
X-Firefox-Spdy: h2
script.crazyegg.com/pages/scripts/0064/6061.js
104.19.147.8410 Gone 0 B URL HTTP/1.1 script.crazyegg.com/pages/scripts/0064/6061.js
IP 104.19.147.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pages/scripts/0064/6061.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 410 Gone
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 04:11:08 GMT
Cache-Control: public, max-age=86400, s-maxage=86400
Access-Control-Allow-Origin: *
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79175ca15c850b49-OSL
push.services.mozilla.com/
54.148.70.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.70.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MXFT0BUlVVp90GCmRkjZNg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bFjvH/PTQjZmuaAwXAFmRSzc5lQ=
s7.addthis.com/static/counter.d27508c102582d608697.js
23.38.200.123200 OK 8.3 kB URL HTTP/2 s7.addthis.com/static/counter.d27508c102582d608697.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (24530), with no line terminators
Hash 47fcfb824ad738c29e3195451d5c755e
8a955f27a30f4a8c9cde94567c041040e3c60d61
1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Mon, 30 Jan 2023 04:11:08 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
connect.facebook.net/el_GR/sdk.js
157.240.205.11301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/el_GR/sdk.js
IP 157.240.205.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /el_GR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/el_GR/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Mon, 30 Jan 2023 04:11:08 GMT
Connection: keep-alive
Content-Length: 0
redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
52.26.48.48302 0 B URL HTTP/1.1 redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
IP 52.26.48.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x.png HTTP/1.1
Host: redirect.prod.experiment.routing.cloudfront.aws.a2z.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 302
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Location: http://a41cd3ca3e8641cc6568973af8908fc7f.profile.msp50-p2.cloudfront.net/test.png
Server: Server
platform.twitter.com/widgets.js
151.101.244.157200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 151.101.244.157:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash e537bb9176ab0d49ccaa2baf56ba5cd4
1be6d53a34b7dbdd869b3e0680c1c75a2a490c63
ef1af552de1464ddb5c212464755232eee06f1595aadc1afb8ed1a2a6a8f57d4
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 27630
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 04:11:08 GMT
X-Served-By: cache-iad-kcgs7200031-IAD, cache-hel1410024-HEL
X-Cache: HIT, HIT
Vary: Accept-Encoding
TW-CDN: FT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5468
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:11:08 GMT
Last-Modified: Mon, 30 Jan 2023 02:40:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/el_GR/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/el_GR/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 6baffd475874b1e2d7204a77b53c4497
58ae6311c7e5d01f2e5c5ba86f7f0a43c94d8578
c25e9112061d0fd649e741dd2e27fc7a4c270f213c039082fda9eca438f846a9
GET /el_GR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clever.danversridge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 32238f385706002ee31ff350a37bbad3
etag: "93e7628d22144b5eacd60d9fee8b0319"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 30 Jan 2023 04:24:32 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: a6/9R1h0seLXIEp3tTxElw==
x-fb-debug: UIvx7hdvrcMr0yonqDMS0yCsY4pm01F01xI3DlI6NLFPQsU4LrwHf8WYynCZYgsuRA33vbfFukf1Iwe1i8JdVw==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 04:11:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5468
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:11:08 GMT
Last-Modified: Mon, 30 Jan 2023 02:40:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fclever.danversridge.com
151.101.244.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fclever.danversridge.com
IP 151.101.244.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash b9e24937b9bed483feef94b5cdc39114
d17bb4230d4e6bc204041d6b7055ec4c51c7f77b
927e6f52902d207a572c6075acdc33bedab029a97ee7180538cf6799847a25a4
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fclever.danversridge.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:13 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Mon, 30 Jan 2023 04:11:08 GMT
x-served-by: cache-iad-kjyo7100116-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105435
X-Firefox-Spdy: h2
connect.facebook.net/el_GR/sdk.js?hash=cb07bc4580d194aa9bbd03f473aade5a
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/el_GR/sdk.js?hash=cb07bc4580d194aa9bbd03f473aade5a
IP 157.240.205.11:0
File type ASCII text, with very long lines (13192)
Hash f4da66b88738e924f63c2a8f2aac4899
b88dfd314c652971dfb6f17f61506171149c658c
5cf6e0c078c7e588ab937cb1c7c1e03e3c61bc28bea0d5278052ef0c3c74bfb5
GET /el_GR/sdk.js?hash=cb07bc4580d194aa9bbd03f473aade5a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://clever.danversridge.com
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b35a5986139ec430de827194ada5e241
etag: "3ba0c93dbe1c6c2e0bee65d65aa219df"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 29 Jan 2024 23:20:03 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 9NpmuIc46ST2PCqPKqxImQ==
x-fb-debug: 393Eo1NVA0lq0CQHIW/oEQn4EyOaW6QnhAW3/zUu7OvTCBh2o7zxz0KZGNn16/2YnD86shFcSbPctfPH3hP7gg==
priority: u=3,i
content-length: 87232
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 04:11:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=lifestyle%2F%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&callback=_ate.cbs.sc_lifestylecelebritiesworldyourfacesoundsfamiliartinoumeratile8easisekaneto4olive0
23.38.200.123200 OK 112 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=lifestyle%2F%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&callback=_ate.cbs.sc_lifestylecelebritiesworldyourfacesoundsfamiliartinoumeratile8easisekaneto4olive0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash d5536c3897b41464df2fe0f59da18dca
1cbd552e6b5941c57a241706c3ed0ed051926bb3
132f41dc80743c852762777f29cd5fdc367a003008a36566554ceb595a25bbb3
GET /url/shares.json?url=lifestyle%2F%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&callback=_ate.cbs.sc_lifestylecelebritiesworldyourfacesoundsfamiliartinoumeratile8easisekaneto4olive0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: lifestyle//celebrities-world/your-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live/
last-modified: Mon, 30 Jan 2023 04:11:08 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 112
date: Mon, 30 Jan 2023 04:11:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 22fcd16b2e42281931f99c8b9f1dc771
ea45e9c59b13c185b09f7b7ebd91fb3795794203
e057dadbb5516c2274237a9fad40e1ee50151deac938d16d0bd74796e864c9ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:11:09 GMT
Last-Modified: Mon, 30 Jan 2023 02:49:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
a41cd3ca3e8641cc6568973af8908fc7f.profile.msp50-p2.cloudfront.net/test.png
18.160.185.214200 OK 58 B URL HTTP/1.1 a41cd3ca3e8641cc6568973af8908fc7f.profile.msp50-p2.cloudfront.net/test.png
IP 18.160.185.214:0
File type ASCII text, with no line terminators
Hash b1935f865a4eade8564b6ef4b022f27f
f42746792e52473c4d9e152aceb7080550d3c1e5
21c52b1622a4539bf82dbc7fd4a2638cdde3b8151697eb5c4d3dbb426576fbaa
GET /test.png HTTP/1.1
Host: a41cd3ca3e8641cc6568973af8908fc7f.profile.msp50-p2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://clever.danversridge.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: CloudFront
Date: Mon, 30 Jan 2023 04:11:09 GMT
Content-Type: text/plain
Content-Length: 58
Connection: keep-alive
Expires: Mon, 30 Jan 2023 04:11:09 GMT
Cache-Control: max-age=0
X-Amz-Cf-Id: onHwPhn3n2nuuL9QpU2Mn7R3FHFT-vWQ5gsTQPmJW7qRF6GlREUPNQ==
X-Cache: RoutingProfileExp from cloudfront
Via: 1.1 d86b7f3d8eb32b2ddcbea6fb5773d922.cloudfront.net (CloudFront)
Access-Control-Allow-Origin: *
www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27d66fe59be28c%26domain%3Dclever.danversridge.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fclever.danversridge.com%252Ff21f121ee748e72%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&layout=button_count&locale=el_GR&sdk=joey&send=false&share=false&show_faces=false&width=90
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27d66fe59be28c%26domain%3Dclever.danversridge.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fclever.danversridge.com%252Ff21f121ee748e72%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&layout=button_count&locale=el_GR&sdk=joey&send=false&share=false&show_faces=false&width=90
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27d66fe59be28c%26domain%3Dclever.danversridge.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fclever.danversridge.com%252Ff21f121ee748e72%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F&layout=button_count&locale=el_GR&sdk=joey&send=false&share=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: IQj8V4rhCOiEiINzBJCi5m/5ZACxe8S7Sr0BzIxrRCGwxena+FKxNK4vZ4yIZDvLmAAzwk9zXBJ8VT4R7x0Ncw==
content-length: 0
date: Mon, 30 Jan 2023 04:11:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=3a03c85598d433f516327e0ea8321d16753242d4
104.244.42.136200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=3a03c85598d433f516327e0ea8321d16753242d4
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=3a03c85598d433f516327e0ea8321d16753242d4 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:11:08 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Mon, 30 Jan 2023 04:11:09 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: 62053dc0c59728b4
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 110
x-connection-hash: 892f9ee92ef5342543963a366e77acdfe7ea670bfc3f434c2647e272d7ffe841
X-Firefox-Spdy: h2
platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
151.101.244.157200 OK 2.6 kB URL HTTP/2 platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (7891), with no line terminators
Hash 53e9844a2ab664c62ef616f14c300c75
6ae8675a813d2355377f3039b449b42fc84fce6c
d6a86497618799a0025164855a16585207da6de64b93b3a74de3ae730694fc83
GET /js/button.e7f9415a2e000feaab02c86dd5802747.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:06 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "506673dbdb9085e7201e137e893cc152+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Mon, 30 Jan 2023 04:11:09 GMT
x-served-by: cache-iad-kiad7000128-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2618
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.el.html
151.101.244.157200 OK 14 kB URL HTTP/2 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.el.html
IP 151.101.244.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32037)
Hash 217e41dd17ba81ad238cd20a0677c07a
26f4b17232fbc4d6c98158fd4cd8f6c3a2eaef61
a89e1ace8a3bf826146b0663cdd998b41247def17141d67f7bb00c1719f290d4
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.el.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:10 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "898346c89e90bbbf2994faceb031eb6f+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Mon, 30 Jan 2023 04:11:09 GMT
x-served-by: cache-iad-kcgs7200054-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 14045
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22el%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675051879675%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=3a03c85598d433f516327e0ea8321d16753242d4
104.244.42.136200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22el%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675051879675%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=3a03c85598d433f516327e0ea8321d16753242d4
IP 104.244.42.136:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fclever.danversridge.com%2Flifestyle%2Fcelebrities-world%2Fyour-face-sounds-familiar--ti-noumera-tile8easis-ekane-to-4o-live%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22el%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675051879675%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=3a03c85598d433f516327e0ea8321d16753242d4 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://clever.danversridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:11:08 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Mon, 30 Jan 2023 04:11:09 GMT
content-length: 43
x-transaction-id: 0dcf7ad77a0867d7
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 892f9ee92ef5342543963a366e77acdfe7ea670bfc3f434c2647e272d7ffe841
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:11:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:11:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:11:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8d680cbaee5ef3e7b8e09b174ed6ecf
6651a0d3041920798240ea67e827c3d458769fa9
4c74e8ebff95e67da678248d3dc1d3f42d98c8a0d33d54d9d2bde36314c9f952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3678
x-amzn-requestid: 21cd1ae3-b769-418a-b7f8-5efa486db859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEvE-RIAMFpmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-6998009c289996563d78616a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XbMeLjDaYoPiw42pUbszzOEqWeUdx01NI6zVLJFgp0r3B_2dHHxX-w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:45 GMT
age: 21564
etag: "6651a0d3041920798240ea67e827c3d458769fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 38113
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36ff8d0c9899da25e80edbb858b164de
3e2491c5465f3c427a11c32bdfee27767559bb3f
b060501c6d82e97bd4826a62b790d58cd9d7ece8e1590267bc9b48033f3ce9b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7223
x-amzn-requestid: b05a1db9-29e2-42d0-9eca-9a0f462c87c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3IHtpIAMFUkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e693-7e13d93143b5e666313a4b8f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: plMEbbqV1vxLnOthRyrgLOOwdxH-aFHCP98axvP0RORnE4gtbEkZyg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:52 GMT
age: 21557
etag: "3e2491c5465f3c427a11c32bdfee27767559bb3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0729af7c574710c33356c8c3c7757d6
aec801b4158398d2d3222e7247532a1b0ba446e3
057d2ed0960c8d83dda10de975594b21ddeaaf8dcc07a106f3b3c121afb90e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: 52245e9a-4ea7-470c-ad88-1051471fc543
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvBxGv2oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4920b-6b6d100e11edfa5307b67933;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:10:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qgh4eyT_OHA_N3vH7o37gjmjUpRyJMXzG3pyvKH8pnxjWxu8ykXIRw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:48:34 GMT
age: 84155
etag: "aec801b4158398d2d3222e7247532a1b0ba446e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 22787
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 029e272400d7190359cd2eabbf418188
6300f72a4e44444fc9e4027fb47a85122650b0f2
ef353caae33db21140027a07d1bf3956c2476baaa69c12c1de3c369ac69b13dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6927
x-amzn-requestid: 6749dadd-1cbd-4e35-9dae-20337098eccf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGjtGWwoAMF87Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf847d-3c470030501c0e572e9f2560;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EogN6efNByyhDbY4zvYa5Z4ZiFJfmcphq1TO7EdIxFZAG3vQZfjpJA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:46:05 GMT
age: 80704
etag: "6300f72a4e44444fc9e4027fb47a85122650b0f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clever.danversridge.com/assets/images/150x/345603.jpg
172.67.199.69502 Bad Gateway 0 B URL HTTP/1.1 clever.danversridge.com/assets/images/150x/345603.jpg
IP 172.67.199.69:0
GET /assets/images/150x/345603.jpg HTTP/1.1
Host: clever.danversridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clever.danversridge.com/content/terms-and-conditions-of-use.html
HTTP/1.1 502 Bad Gateway
Date: Mon, 30 Jan 2023 04:11:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Mon, 30-Jan-23 04:11:38 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 79175ca00e4d0b45-OSL
Server: cloudflare
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 0 B URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clever.danversridge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116325
date: Mon, 30 Jan 2023 04:11:08 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2