Report - www.carlystephan.com/

Report Overview

Submitted URL
www.carlystephan.com/
IP
144.48.36.115
ASN
#136557 Host Universal Pty Ltd
Submitted
2023-01-28 20:51:43
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
widget.manychat.com	35674	2017-01-14T21:37:59Z	2023-03-13T07:30:47Z	374 B	162 B	18.185.191.84
carlystephan.com	unknown	2015-06-23T20:55:16Z	2023-01-23T14:31:40Z	22 kB	1.9 MB	144.48.36.115
optassets.ontraport.com	92263	2017-01-29T14:57:57Z	2023-03-12T20:01:23Z	3.5 kB	16 kB	104.16.21.19
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	680 B	447 B	216.239.32.36
manychat.com	31945	2015-07-15T06:29:35Z	2023-03-13T07:30:45Z	941 B	1.2 kB	18.185.191.84
forms.ontraport.com	155967	2014-08-15T00:58:52Z	2023-03-09T08:04:34Z	6.3 kB	17 kB	104.16.21.19
app.ontraport.com	138668	2014-04-09T08:27:39Z	2023-03-09T15:21:01Z	1.6 kB	62 kB	104.16.21.19
mccdn.me	36435	2020-03-25T16:40:38Z	2023-03-10T12:15:44Z	364 B	742 B	104.26.15.135
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-13T05:15:33Z	463 B	393 B	104.16.57.101
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	768 B	148 kB	172.217.21.168
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.0 kB	2.3 kB	104.18.32.68
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	2.9 kB	149 kB	142.250.74.35
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	546 B	93.184.220.29
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	835 B	78 kB	142.250.74.106
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
www.carlystephan.com	unknown	2019-07-06T16:17:47Z	2023-01-21T01:40:40Z	802 B	970 B	144.48.36.115
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	51 kB	34.120.237.76
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.4 kB	7.0 kB	142.250.74.131
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	1.1 kB	3.4 kB	142.250.74.74
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.33.119.27
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.148.77.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-28 20:51:39	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain
2023-01-28 20:51:43	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	carlystephan.com/	2.2 kB	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash f5c7b2a1da799a481c526323c64fa128 c16aa4ece36fb607ff25eb2dfd4b1979d7f03e96 947741c91cebc627cdf5ae19aaec6122e1855c154189e28dfaf850aae84fa0dc Loading...

	carlystephan.com/	83 B	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 90cbb1f1964b02259c0fbe50f36fe4ea d338a6ffbb29c1f217630ad3cec16ebe8e824532 c9f6b6b1a6ae28f47bb7e4d887a545d5e9e567ae2da9320ae140184665bcd639 Loading...

	carlystephan.com/	934 B	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 87ba44f007923ac5deb5c790eebd040b 6baf3052d6e46ee0968fd13b633f45451ce803f6 2b871427bc064d62b3ee55e18a20c663b9c8b3696220c19dc31df52ad696983e Loading...

	carlystephan.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	3.2 kB	2023-03-07	2024-04-18
Pretty URL carlystephan.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:35 Last Seen2024-04-18 12:45:31 Times Seen2021 Hash e846984437ce810e4757bb0d935e67f0 0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df 7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b Loading...

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message5acb4218-f3ab-5544-9221-0c844ba7dde3%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f2%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D	7.8 kB	2023-03-13	2023-03-13
Pretty URL forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message5acb4218-f3ab-5544-9221-0c844ba7dde3%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f2%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 0fc1673f9e382d0ea9fbe7d130e6803b 5e77eb37b1ef9ff76e7deda887e4369ec4954249 cdb20353031f12d903475d1f4fc54aed88ee5bacb0de085aab6cb261850c22f9 Loading...

	forms.ontraport.com/v2.4/include/minify/?g=genjs-v3	178 kB	2023-03-13	2023-03-14
Pretty URL forms.ontraport.com/v2.4/include/minify/?g=genjs-v3 IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-14 00:54:05 Times Seen1 Hash d2e9192a649eb2c26d00a593a553e6e5 29c674f61e5ed54d6279293dde20737493e8470a 8beddb11957cd8c385afb8128960fcda4ecc0aac0e338e0a88fa15c7608a5ea1 Loading...

	www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV&l=dataLayer&cx=c	223 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 1491b76f5c50f6ab54a9426229032499 abafbe95cdf0762dbd692c0d04000c8e6140cf53 0f7d26b8d0ce3f49c0eb9c398f3655bfcce58a9cb7faa90807c6572b7b689c8c Loading...

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2	5.4 kB	2023-03-13	2024-04-18
Pretty URL carlystephan.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:35:25 Last Seen2024-04-18 14:07:31 Times Seen185 Hash c89a6bb9bf9b0f72089cd02af15ffd8f 983b920d93cde00bca05877123205693af2b1e85 adc89f4602504183c5b29d26d5cfe8bc20a40f4a661c815e9d99d4ddd7318a53 Loading...

	app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js	81 kB	2023-03-08	2023-11-14
Pretty URL app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:51:07 Last Seen2023-11-14 20:28:15 Times Seen12 Hash b5863351103f079f2d4cb53e46017399 05947b49f335eed5c346de4a21295a6a18fd9a67 63457f29c8360dcd4060bf3fbfbf7646c25b448eea6c2e59927ede36c861e805 Loading...

	carlystephan.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-24 08:08:08 Times Seen9803 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	carlystephan.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	4.9 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen24388 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	carlystephan.com/	68 B	2023-03-07	2024-04-24
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 22:39:34 Times Seen22461 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	carlystephan.com/	5.9 kB	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 7945f99f48fa3c6b84a545116c3f637e 7a9fe1747c57b3e988d3623d73ec54b0d2eb9f47 258a243c848577f290fdf90933defa0246e2a306cef7b4aa41b6aa21f7126fb2 Loading...

	www.googletagmanager.com/gtag/js?id=G-MC9KMX4P32	185 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-MC9KMX4P32 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 992ba9f64795acf56daa55d28bbd4285 994a89a9c26cd44579870ceec9e5f273f159dac6 0867900708df92137aca94db8e70b600f08161fee8f570ad986db8b8176f0a85 Loading...

	carlystephan.com/	382 B	2023-03-07	2024-04-11
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-11 14:36:29 Times Seen1005 Hash fc9be1f90b34ea9b460669e6d39663ed a5df6bb03ac3c2a09f07e0bc7ab0b5f9553b5c8e 31bd4b0882dd13a90dab3b1fb9795f645979fa959e17f5873865fe1a5f9f912c Loading...

	carlystephan.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen15494 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	optassets.ontraport.com/opt_assets/blocks/common/jQueryPageBackgroundPro/js/libs/underscore.js	14 kB	2023-03-08	2024-04-24
Pretty URL optassets.ontraport.com/opt_assets/blocks/common/jQueryPageBackgroundPro/js/libs/underscore.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:51:07 Last Seen2024-04-24 01:16:54 Times Seen23 Hash 8a1aba423351aef14e812a252bb57406 522978f3d6a96e38c9bb650e308fa67758966fbb 6109c4f47106ffeef9f8497a1d95e67c7e531c44bf898caded338466eaa691d0 Loading...

	app.ontraport.com/js/globalize/globalize.js	14 kB	2023-03-08	2023-11-14
Pretty URL app.ontraport.com/js/globalize/globalize.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:51:07 Last Seen2023-11-14 20:28:15 Times Seen20 Hash eadf324fcf5e67ebbc2ada6f71449d9e cd2a95d3e0c3cfa3aaa3344a8d85a84c362cd53a 82fc1dcd60ea5ecf1a0362d8d87deb5d5686bf739f8d23c78f248477ba3d6c07 Loading...

	carlystephan.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1	41 kB	2023-03-13	2024-04-22
Pretty URL carlystephan.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:24 Last Seen2024-04-22 09:02:15 Times Seen556 Hash bec8ebd15411d302242295b4b379dbca 1fa0b2e9063cf5f283d5775a45857632bbb293c9 2a19676beceb015e5a09f762982b4216d70b0d01144fea58eefb79935a5724f0 Loading...

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D	463 B	2023-03-13	2023-03-13
Pretty URL forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 6028f5da5a377667b00df0e4eb40ade8 6270af8e62201473cb62262b3d08ab83388b033d 3d287bce5824f70a094f4ee5ba72c86444c1304ff220d5084feea8eb7ad04d66 Loading...

	carlystephan.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen38037 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	carlystephan.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-24 21:32:40 Times Seen31801 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:11:24 Times Seen37050850 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	carlystephan.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 23:48:07 Times Seen16601 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	carlystephan.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1	36 kB	2023-03-13	2024-04-22
Pretty URL carlystephan.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:24 Last Seen2024-04-22 09:02:15 Times Seen481 Hash 1bd44eec7a35509172a02e4022d0b2cd a24589a1154590119967d7291469b0326053f4b5 82b45dde76410ccdfe24c9b3acba3ea30ce30a9bddd94b0f1760b9506a28f27e Loading...

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2	22 kB	2023-03-13	2024-04-18
Pretty URL carlystephan.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:35:25 Last Seen2024-04-18 14:07:32 Times Seen206 Hash 5d3bea58e10e2487d2000a662f75f3e7 006cccbcd6477c2f3d704abc821a0317f885a089 e64d7a39b7943a79300d1387808fbeca64ea5f0876f673f62506fc520308a34c Loading...

	optassets.ontraport.com/opt_assets/static/js/logging.js	1.0 kB	2023-03-10	2024-04-06
Pretty URL optassets.ontraport.com/opt_assets/static/js/logging.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:07:09 Last Seen2024-04-06 11:35:16 Times Seen84 Hash 6b8020471b4428f3c93d124a99813ea0 b3dbee8a572b08746a90be807cdab2e00b9c7626 990f9545e109622866e56b8152c0ce6317c77ab9bf5851b2310f3e79b2096283 Loading...

	carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1	15 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-24 18:17:34 Times Seen16385 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	carlystephan.com/	35 B	2023-03-07	2024-02-26
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:46 Last Seen2024-02-26 15:59:25 Times Seen376 Hash ddf11fbee9221046d2eeb0eae8829346 6bb92e7a90d5a26cbfecf983b902e37d40c87132 f7b0221d73674c169def983e82e1188090074f35425004a7e4a1e2628436f0ff Loading...

	optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js	34 kB	2023-03-08	2023-05-23
Pretty URL optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:51:06 Last Seen2023-05-23 20:34:51 Times Seen2 Hash 4366d23b3180679c6225098cbdd8ab03 c2eca0f868949ed1fdd2c5709883fdc7313c2749 850494da2a3cda7aa441fe89c62b97b7f95310bd9a984f8a7cdae469f8318954 Loading...

	carlystephan.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 23:48:07 Times Seen52712 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js	254 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2024-04-24 16:17:25 Times Seen5633 Hash 0a497d4661df7b82feee14332ce0bdaf f77d06b0c5dedef1f1db051a44a2b0d7f233ba3a 55accff7b642c2d7a402cbe03c1494c0f14a76bc03dee9d47d219562b6a152a5 Loading...

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D	2.0 kB	2023-03-13	2023-03-13
Pretty URL forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 0cef999e48a6dc51155cf145d4900664 f266cb918353cfd3c373859e6fd3294283bc1bad feebbd208263ec6692a33a8660aea620aad1bbb1f7e5b116840edf03bdd0324c Loading...

	carlystephan.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.12.1	12 kB	2023-03-07	2024-03-08
Pretty URL carlystephan.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.12.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-03-08 16:02:30 Times Seen1559 Hash 45f98dec2f0965e8e879f2c7a1f4e996 8187dccc170f82df78e9be302e5ab49e024d4d34 23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f Loading...

	carlystephan.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 22:40:37 Times Seen68604 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	carlystephan.com/	215 B	2023-03-07	2024-04-24
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-24 22:39:33 Times Seen2910 Hash 35cbb7b9895191e5bfe46064786c9d54 26a3d66370d64124f84a78d0eff4fff02c6b6991 c2982a05f154f49ade6e669b1521734bb5b5e63503edc841e56e957b31063ec5 Loading...

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	carlystephan.com/	1.2 kB	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 9f5c7590e10b238fd0307be9572fc7c8 51d940d68faad671b913db587e4d9077b041a1a1 0d49cca48328e86ff2762a29e42bf509483add599845634ead443aa0a43ceaec Loading...

	carlystephan.com/	2.2 kB	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 8c898bbcc0165ceac9704d706e2cd89f f33fc20eb04beb918b78849747f8f6a5bd2f0d90 13b4ce83a6e5a8b977f2a7f9f04ad7e244dbc8bdb1c49cd938965c8236777009 Loading...

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D	31 kB	2023-03-13	2023-03-13
Pretty URL forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1#!%7B%22receipt%22%3A%22opf-message21f481ff-ec4f-f4d2-3c51-7856ab500682%22%2C%22type%22%3A%22formOpened%22%2C%22data%22%3A%7B%22action%22%3A%22log_visit%22%2C%22uid%22%3A%22p2c205189f8%22%2C%22uniqueVisit%22%3Atrue%2C%22sess_%22%3Anull%7D%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash a3990ecce2fdc84bfb043cb01f95d742 0476db56f605fef09c0b9b2e345776a0749b4b7b 248cf95320c2ce4f38879f14819dd7a33934b716a61bd1d87b01366e129a9fa2 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js	94 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-24 23:54:48 Times Seen10485 Hash ddb84c1587287b2df08966081ef063bf 9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f 88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd Loading...

	carlystephan.com/	340 B	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash dba3052a951c402e47d0054247f7c67e 6572608fd7d45405fde4d170e3f17036507854ff 393ae26d70b14b60e73f2786cad7a9cfa9f39f0e00a83b76778fa92831404069 Loading...

	carlystephan.com/	153 B	2023-03-13	2023-03-13
Pretty URL carlystephan.com/ IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 5a79987aa0acc9a34477961639910ef0 38bbffe98b9d7659258d12ce39d51db25287507b 3199324a440abdb6fd6d4484ecc92af82954154e04c4f05fbc64772e7950402e Loading...

	widget.manychat.com/434561639956367.js	2.2 kB	2023-03-13	2023-03-13
Pretty URL widget.manychat.com/434561639956367.js IP 18.185.191.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash fdf1a6ea69f8f2a4ecaa4eade9d8bd08 a282516183127bf11c0f72bb93872acce17faa73 f15bf2d0cd2cc01089ffb801bcc70e09d246bcd472aa2ae5f82038f62a015a07 Loading...

	app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js	68 kB	2023-03-09	2023-05-29
Pretty URL app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:30:10 Last Seen2023-05-29 12:39:59 Times Seen5 Hash 7480066e9caff71a030a97fa54f24ef9 7f8c0b45df441d5a9e79e7a382d95131736a889b 68fb84fcf2a956748abd17fc285b48609c46f8e5e75209cd2c072a8fa83349a9 Loading...

	carlystephan.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-24 19:00:09 Times Seen30965 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	carlystephan.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	10 kB	2023-03-08	2024-04-24
Pretty URL carlystephan.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-24 16:05:58 Times Seen25613 Hash 8cd696505481e74ffee89b4995f37379 ee9aad199ef2bc60a3460f4c52f37d22907b2ec9 01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874 Loading...

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2	28 kB	2023-03-13	2024-04-18
Pretty URL carlystephan.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:35:25 Last Seen2024-04-18 14:07:32 Times Seen152 Hash 639d732950a4a56235d4fbcd79455beb 01f672414e931e6d48e58467933b7c15fcff5cde 2637add90e2a39ddd207c014a172fa99e2281bc4010bf92de258a67194e0ed3e Loading...

	www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV	226 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-03-13 10:15:32 Times Seen1 Hash 67bc113ca43953fe090b432b23d7ef51 df805d9e1c9211dc1e3d88afc8460c0b856137c8 030adbb4a34ee92128653c97eb602d014d3a85b779b8f619cd06d28e5a16e80e Loading...

	carlystephan.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1	5.0 kB	2023-03-13	2024-04-22
Pretty URL carlystephan.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 IP 144.48.36.115 ASN #136557 Host Universal Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:24 Last Seen2024-04-22 09:02:15 Times Seen473 Hash e8e473a0e46b9fa8e575c1725d6be4ce 7f1f12c2b2ec9af0abc8bc886280dc3f8f0fb95e 6556831cebf7e72974ba6346bcb6f97d14dc2e1a8db779252e364abd543c2169 Loading...

	optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js	1.5 kB	2023-03-13	2023-11-14
Pretty URL optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js IP 104.16.21.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:15:32 Last Seen2023-11-14 20:28:14 Times Seen10 Hash 5d2e53681797f078d63b36f24e88d20e 30cc4d6ca65afeb8505bbb5a8e406c32ddf85bdc b4444dc1f87500b1750795b3f34df570842cd26ab7466ab5b4457de21d23b8e5 Loading...

HTTP Transactions (118)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3eb88dea4fe00db1182370e72683c3ab ca520abf1e91bfd2aef40c6a1270a911071e8922 d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7" Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7583 Expires: Sat, 28 Jan 2023 22:57:55 GMT Date: Sat, 28 Jan 2023 20:51:32 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9fbe85f42e8ae8ae41cc12df5f98b141 949fa36ff0f22f72565fd584bef094dd4de23037 184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5146 Expires: Sat, 28 Jan 2023 22:17:18 GMT Date: Sat, 28 Jan 2023 20:51:32 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash dcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 28 Jan 2023 20:43:06 GMT content-type: application/json age: 506 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 03092d1a1bc7ac91ee342a1a7ab2a562 52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a 03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2449 Expires: Sat, 28 Jan 2023 21:32:21 GMT Date: Sat, 28 Jan 2023 20:51:32 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: RChlqzyUFHDYdWggqLQhVRMun5LJux9PIOvGk+a7hxje5ypdRwTTYkaY3gDYVOWolrzVVBod45I= x-amz-request-id: VPV01BA8DEM7NJ2K content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 28 Jan 2023 20:21:06 GMT age: 1826 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 28 Jan 2023 20:51:32 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 28 Jan 2023 20:41:40 GMT age: 592 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16" Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6315 Expires: Sat, 28 Jan 2023 22:36:47 GMT Date: Sat, 28 Jan 2023 20:51:32 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.148.77.40	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.77.40:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: r6JRQZNE1Zg6wnWI99NOWA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: wxYLuj7aZmvyh/EZYNS5SFkejvA=`

	www.carlystephan.com/	144.48.36.115	301 Moved Permanently	237 B
URL HTTP/1.1 www.carlystephan.com/ IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 237 B (237 bytes) Hash 12e26e116544e801a8f0786856d0b96c 91f2ec7e27283022fb64c8dc348ef0646f5d48c4 1c0ccb603f10fb76c53af4957e9804a85f414f782acd38001492cd836ad4c7ab HTTP Headers `GET / HTTP/1.1 Host: www.carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Sat, 28 Jan 2023 20:51:33 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Location: https://www.carlystephan.com/ Content-Length: 237 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=iso-8859-1`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17166 Expires: Sun, 29 Jan 2023 01:37:40 GMT Date: Sat, 28 Jan 2023 20:51:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17166 Expires: Sun, 29 Jan 2023 01:37:40 GMT Date: Sat, 28 Jan 2023 20:51:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17166 Expires: Sun, 29 Jan 2023 01:37:40 GMT Date: Sat, 28 Jan 2023 20:51:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17166 Expires: Sun, 29 Jan 2023 01:37:40 GMT Date: Sat, 28 Jan 2023 20:51:34 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg	34.120.237.76	200 OK	9.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.4 kB (9364 bytes) Hash f185f0b4f90d06dbb397b44ed9c73dbe a48e2c369a048447e0e25e4791eb603859391c1c b466060fc132cc8d23fcb83001206606e2d5502118c65e9f55795b5adbff2fa6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9364 x-amzn-requestid: 1e581631-b99e-4d2d-9ae4-dfb9e740b6d8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa_ekGLJIAMF54A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d445f6-25b17a8d181dfcb251bd4ea6;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:26 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QWZHzwxoalbYlpl8-hYeqO_waF45AvOUNMkSniT8CbDVBj3V7f38cg== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Sat, 28 Jan 2023 16:01:46 GMT etag: "a48e2c369a048447e0e25e4791eb603859391c1c" content-type: image/jpeg age: 17388 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (7028 bytes) Hash 57b73886cbbb719eda5f733c018eedfb b84ed40973f8a0d3c10529e34f9466746cfdaf0c 4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7028 x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa-CwFtboAMF9rg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 21:55:35 GMT age: 82559 etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4475 bytes) Hash 4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4475 x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa_e6HsaIAMF5Lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 21:56:46 GMT age: 82488 etag: "ab4f6528594a1725934727dc7d834c028a79c609" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (4975 bytes) Hash c982569d070f24dba1259603091c22e3 0f93acb5bee53670cc4ef486922f7333d96a2f4e 9a5a2d8a181a763ee6f60c27b396a0e3d7b1527e5177b2aff8d511db250753ed HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4975 x-amzn-requestid: 633350b7-4686-40d5-8c9d-3c097f8e2d34 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa-EBGuaoAMFbSw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d443b3-4201212c1a0eb2a65d3f494c;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: XRAeWdoEkbnzXKOs_EdgQ1r9BGOeDNh4FRXm-fv0KiCz4juqk8UKIw== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 21:59:35 GMT age: 82319 etag: "0f93acb5bee53670cc4ef486922f7333d96a2f4e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7585 bytes) Hash ea24bcba583bd8bd139559448a343e68 b9d37c2b14f890d41983a59f352e8f7caa9c94bb e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7585 x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa_vkE5roAMF0Hw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ== via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 22:16:00 GMT age: 81334 etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11568 bytes) Hash b7a0759c043594fbe85af422b59b8227 a05cfaad16078f42218dae233da38f6f5dff8487 e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11568 x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fSWbxGwnoAMFejw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Sat, 28 Jan 2023 18:36:06 GMT age: 8128 etag: "a05cfaad16078f42218dae233da38f6f5dff8487" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.carlystephan.com/	144.48.36.115	301 Moved Permanently	20 B
URL HTTP/1.1 www.carlystephan.com/ IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type data Size 20 B (20 bytes) Hash 7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2 HTTP Headers `GET / HTTP/1.1 Host: www.carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved Permanently Date: Sat, 28 Jan 2023 20:51:34 GMT Server: Apache X-Redirect-By: WordPress Content-Encoding: gzip Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Location: https://carlystephan.com/ Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash bab8a4c1e6bb2e6c9cc00222eef1235d 1a5dd108e9f9aaf33bc048b0097a9f510d295cad fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:36 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=G-MC9KMX4P32	172.217.21.168	200 OK	68 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-MC9KMX4P32 IP 172.217.21.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (6356) Size 68 kB (67906 bytes) Hash 80c454080cca8fb5352ad66e9d999008 29e29b90091388d374a9882ceaeaad1dd556358d f2cbf02468a9a28fb26d83160728d103c236a9ce335425c62765f6ba6ecfb03f HTTP Headers `GET /gtag/js?id=G-MC9KMX4P32 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 28 Jan 2023 20:51:36 GMT expires: Sat, 28 Jan 2023 20:51:36 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 67906 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.32.68	200 OK	281 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 281 B (281 bytes) Hash 902aceedd68e57a379f4d45cafbd09f6 b30702654c6aba99f367cedd88d9e8e4d8c7e4e7 d4bfa1ac7f81cad3316ddab0b9ab8fbf3acf9dffc5199e1007554e863a81ac5b HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Content-Type: application/ocsp-response Content-Length: 281 Connection: keep-alive Last-Modified: Fri, 27 Jan 2023 10:12:21 GMT Expires: Fri, 03 Feb 2023 10:12:20 GMT Etag: "b30702654c6aba99f367cedd88d9e8e4d8c7e4e7" Cache-Control: max-age=479442,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 790c9b6c5facb509-OSL`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8c630e9bbc930d1c367efa81b67be3f7 ec536695531d40a813d99a06271c7c2d698d51d3 39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash bab8a4c1e6bb2e6c9cc00222eef1235d 1a5dd108e9f9aaf33bc048b0097a9f510d295cad fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash bab8a4c1e6bb2e6c9cc00222eef1235d 1a5dd108e9f9aaf33bc048b0097a9f510d295cad fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV	172.217.21.168	200 OK	79 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-HXT4FWTETV IP 172.217.21.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (21849) Size 79 kB (78718 bytes) Hash 9848b5b0a62edb156ff4507fa14d7375 928e127c077e384cea11edaa1f97b414db9503cb 89031d6c44b12f8df8606c0c8cbe6b2d10750ba21fcabdf2b0019d9aa87d9577 HTTP Headers `GET /gtag/js?id=G-HXT4FWTETV HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 28 Jan 2023 20:51:37 GMT expires: Sat, 28 Jan 2023 20:51:37 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 78718 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1	142.250.74.74	200 OK	2.8 kB
URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 2.8 kB (2766 bytes) Hash 5fa691128350b2e17826121ae9b807e4 5517cf19267f7650c83cdec87ae960a2a0288bd9 4ce9f97fdf6b9d8dc0ff4fe6974f89c031b2ef463f88a67152f6df8c6cd6ec19 HTTP Headers GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 28 Jan 2023 20:51:37 GMT date: Sat, 28 Jan 2023 20:51:37 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	carlystephan.com/	144.48.36.115	200 OK	27 kB
URL HTTP/1.1 carlystephan.com/ IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators Size 27 kB (26735 bytes) Hash 546f95202db118103c4c786ed5898e21 71ac8f5e89abc4d0b9a9d6bdbaa73827b7591f62 cc3fb39c9ed785755ef18708f655351a3efdaea61997e6fce1242c377c35e7f1 HTTP Headers `GET / HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:35 GMT Server: Apache Link: <https://carlystephan.com/wp-json/>; rel="https://api.w.org/", <https://carlystephan.com/wp-json/wp/v2/pages/3589>; rel="alternate"; type="application/json", <https://carlystephan.com/>; rel=shortlink Content-Encoding: gzip Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8

	carlystephan.com/wp-includes/css/classic-themes.min.css?ver=1	144.48.36.115	200 OK	217 B
URL HTTP/1.1 carlystephan.com/wp-includes/css/classic-themes.min.css?ver=1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text Size 217 B (217 bytes) Hash 95e891f28e44a9b314c09545d86be2b7 f9b13a8bd47273b086a0a07df15f314e0af0bc3e 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5 HTTP Headers `GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:29 GMT Accept-Ranges: bytes Content-Length: 217 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	region1.google-analytics.com/g/collect?v=2&tid=G-MC9KMX4P32&gtm=2oe1p0&_p=837498852&gdid=dNDMyYj&cid=90964611.1674939101&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674939101&sct=1&seg=0&dl=https%3A%2F%2Fcarlystephan.com%2F&dt=Carly%20Stephan&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MC9KMX4P32&gtm=2oe1p0&_p=837498852&gdid=dNDMyYj&cid=90964611.1674939101&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674939101&sct=1&seg=0&dl=https%3A%2F%2Fcarlystephan.com%2F&dt=Carly%20Stephan&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-MC9KMX4P32&gtm=2oe1p0&_p=837498852&gdid=dNDMyYj&cid=90964611.1674939101&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674939101&sct=1&seg=0&dl=https%3A%2F%2Fcarlystephan.com%2F&dt=Carly%20Stephan&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://carlystephan.com Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://carlystephan.com date: Sat, 28 Jan 2023 20:51:37 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	carlystephan.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1	144.48.36.115	200 OK	6.1 kB
URL HTTP/1.1 carlystephan.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (6051), with no line terminators Size 6.1 kB (6051 bytes) Hash 1787ccb3d1d8e93d42790b792e0424fd 0aa761f70bbbfe08229c469bcb394269530c537a bbdb1eb69c6b5cbffaf1be2df2bcbd4a97d2823de9f4b856aae722900a5e27c7 HTTP Headers `GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Tue, 12 Jul 2022 05:55:12 GMT Accept-Ranges: bytes Content-Length: 6051 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/uploads/elementor/css/post-5053.css?ver=1674614830	144.48.36.115	200 OK	10 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/elementor/css/post-5053.css?ver=1674614830 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (10186), with no line terminators Size 10 kB (10186 bytes) Hash bc71484a144e5b60dfa4836fc50da3fc 766a3332ef51eb2a81f2a6a41a818224287de6ae 2ccb602ba1ae8246444b303f87ec03227cd665993bda5499196c27ae76d46833 HTTP Headers `GET /wp-content/uploads/elementor/css/post-5053.css?ver=1674614830 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:47:10 GMT Accept-Ranges: bytes Content-Length: 10186 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	144.48.36.115	200 OK	95 kB
URL HTTP/1.1 carlystephan.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (47826) Size 95 kB (94889 bytes) Hash 71d925864153f0edf91037f3d31048e8 cc16a0524ac63b5ce29f703a66412224f0dd771a c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a HTTP Headers `GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:29 GMT Accept-Ranges: bytes Content-Length: 94889 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.2	144.48.36.115	200 OK	8.8 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (8733) Size 8.8 kB (8777 bytes) Hash 89ea28422a068c0b8d9af2dd31fbaf84 5ec931888545f06c8c9260cb423e95df147df1f4 1923762c9fdd239bcdbc215d5e3ec390e7c15ed44cb145a88d9e2a6d1803a584 HTTP Headers `GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 8777 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1	144.48.36.115	200 OK	16 kB
URL HTTP/1.1 carlystephan.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (15672), with no line terminators Size 16 kB (15672 bytes) Hash ae085723cb5effbc73d92251f60aaa30 9c3f510afd2bf1ac508cc22e4f071697ec1f3290 eee1ce2620eaf7f585a69794864001be0bde74b874d6a18b9f2d11f074229f2b HTTP Headers `GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Tue, 12 Jul 2022 05:55:12 GMT Accept-Ranges: bytes Content-Length: 15672 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/uploads/elementor/css/post-3589.css?ver=1674614830	144.48.36.115	200 OK	19 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/elementor/css/post-3589.css?ver=1674614830 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (13606) Size 19 kB (19151 bytes) Hash bdfe0a359e11887101a648deffd1b138 e7fc4c1d78ab3497a382a4774eb248103715a034 730b3408dfc14fc0810c74f84676ada279dac7289c4e70dcd450b3f042bf622d HTTP Headers `GET /wp-content/uploads/elementor/css/post-3589.css?ver=1674614830 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:47:10 GMT Accept-Ranges: bytes Content-Length: 19151 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/uploads/elementor/css/post-3613.css?ver=1674614830	144.48.36.115	200 OK	2.9 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/elementor/css/post-3613.css?ver=1674614830 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (1184) Size 2.9 kB (2919 bytes) Hash 114ffe6f9e9c2d31d34cd916d20ffed4 cd53b193f771852e6c8f82d9ac436eb788e0dda2 e293911b55876f3610aa452b0ee5368ddd35635c007fb27b85dc9f1e8a69004e HTTP Headers `GET /wp-content/uploads/elementor/css/post-3613.css?ver=1674614830 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:47:10 GMT Accept-Ranges: bytes Content-Length: 2919 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1	144.48.36.115	200 OK	96 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (65496) Size 96 kB (96215 bytes) Hash 82fc4899077bc8756f82006f10eb2f83 4968a76436fa84acac82a957e61c6f3770927834 b402cad14172db0d123d6dfcbe1841c52c929f16645d19d267dd522da83b7f24 HTTP Headers `GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 96215 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/uploads/elementor/css/post-3710.css?ver=1674614830	144.48.36.115	200 OK	14 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/elementor/css/post-3710.css?ver=1674614830 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (13752), with no line terminators Size 14 kB (13752 bytes) Hash c0121afabe35db3844ad849f0f6c5c9a 646a33f5573e019324ebfaf264b7a22b38ac5fcb bdd6c85cc124cdb480c608141f3e13d4545a230a1777577e57d199710bd54e69 HTTP Headers `GET /wp-content/uploads/elementor/css/post-3710.css?ver=1674614830 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:47:10 GMT Accept-Ranges: bytes Content-Length: 13752 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1	144.48.36.115	200 OK	27 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (26516) Size 27 kB (26702 bytes) Hash c55205bce667f5d812354fd1353e7389 f22de0af271eba636a022c873c94fbcd81b4c89a c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 26702 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.12.1	144.48.36.115	200 OK	12 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.12.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (1571) Size 12 kB (11835 bytes) Hash 45f98dec2f0965e8e879f2c7a1f4e996 8187dccc170f82df78e9be302e5ab49e024d4d34 23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f HTTP Headers `GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.12.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Mon, 16 Jan 2023 02:40:08 GMT Accept-Ranges: bytes Content-Length: 11835 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1	144.48.36.115	200 OK	59 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (59158) Size 59 kB (59344 bytes) Hash 74bab4578692993514e7f882cc15c218 b6293bcfd851f963edbe859498570c4c0c7eaae4 d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:37 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 59344 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	144.48.36.115	200 OK	11 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (11126) Size 11 kB (11224 bytes) Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 HTTP Headers `GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Thu, 10 Dec 2020 04:37:57 GMT Accept-Ranges: bytes Content-Length: 11224 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1	144.48.36.115	200 OK	15 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (14869) Size 15 kB (15055 bytes) Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 15055 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	144.48.36.115	200 OK	19 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (15660) Size 19 kB (18617 bytes) Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 HTTP Headers `GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 10 Jun 2022 02:01:11 GMT Accept-Ranges: bytes Content-Length: 18617 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css	144.48.36.115	200 OK	27 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Unicode text, UTF-8 text, with very long lines (26629) Size 27 kB (26674 bytes) Hash 5b339dc448e3ec7d2dbf7cca4abfe263 f619d061a9c22c79bd469599f5bc3c6279a9ae0e 1827802b8b1f515c876c7c3d78003a2e3f50deef33d6db220881e24fa8056909 HTTP Headers GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 26674 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	144.48.36.115	200 OK	90 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (65447) Size 90 kB (89684 bytes) Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 HTTP Headers `GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:29 GMT Accept-Ranges: bytes Content-Length: 89684 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css	144.48.36.115	200 OK	14 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Unicode text, UTF-8 text, with very long lines (14105) Size 14 kB (14155 bytes) Hash b37ae8b5998960e7ac36dcbf22eb84df 13d9b12300a8fe11228dbdc3827a3fd5d511ce0e 71892707a87a4b330684f534464be71d7e178188f11752793f156e083e021431 HTTP Headers GET /wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 14155 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css	144.48.36.115	200 OK	32 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (31726) Size 32 kB (31770 bytes) Hash 6e0bd609f24237c01fc52fd43ba950eb 0f65974c624c885e2883b3f92bbdab2f8a9154d4 c36e53666e5960a01104685f032f385ac3f34919b7a0f7eed9382b1e7df77545 HTTP Headers GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 31770 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css	144.48.36.115	200 OK	9.8 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (9804) Size 9.8 kB (9844 bytes) Hash 5737705144c47c2fb27b7567c484ac4f 62e50e8d2939cfb61f4ef1250bdfed515e041e72 3aafa73cca43fdc6af25e68faea7c0a88eac789db1b739cf398f807b86220dda HTTP Headers GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 9844 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1	144.48.36.115	200 OK	18 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (10019) Size 18 kB (18468 bytes) Hash 4601ba55044413706c2022cb6c1c3d05 5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c HTTP Headers GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 18468 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: text/css`

	carlystephan.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	144.48.36.115	200 OK	3.2 kB
URL HTTP/1.1 carlystephan.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (3164), with no line terminators Size 3.2 kB (3164 bytes) Hash e846984437ce810e4757bb0d935e67f0 0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df 7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b HTTP Headers GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Tue, 12 Jul 2022 05:55:12 GMT Accept-Ranges: bytes Content-Length: 3164 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2	142.250.74.35	200 OK	24 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 24 Jan 2023 04:29:08 GMT expires: Wed, 24 Jan 2024 04:29:08 GMT cache-control: public, max-age=31536000 age: 404551 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2	142.250.74.35	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data Size 17 kB (17368 bytes) Hash abe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9 HTTP Headers `GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17368 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 28 Jan 2023 12:49:39 GMT expires: Sun, 28 Jan 2024 12:49:39 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 age: 28920 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2	142.250.74.35	200 OK	23 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data Size 23 kB (23236 bytes) Hash 716309aab2bca045f9627f63ad79d0bf 38804233a29aaf975d557fe14e762c627bef76e0 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429 HTTP Headers `GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 25 Jan 2023 10:58:23 GMT expires: Thu, 25 Jan 2024 10:58:23 GMT cache-control: public, max-age=31536000 last-modified: Tue, 26 Apr 2022 16:04:12 GMT content-type: font/woff2 age: 294796 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	142.250.74.35	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 25 Jan 2023 19:33:54 GMT expires: Thu, 25 Jan 2024 19:33:54 GMT cache-control: public, max-age=31536000 age: 263865 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2	142.250.74.35	200 OK	23 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data Size 23 kB (23040 bytes) Hash de69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49 HTTP Headers `GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 22 Jan 2023 10:25:03 GMT expires: Mon, 22 Jan 2024 10:25:03 GMT cache-control: public, max-age=31536000 age: 555996 last-modified: Tue, 26 Apr 2022 15:56:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 77c1047a0856615ab284a62366a623b1 81f8ae4aaec60ebe023425d2a0bc909f56f22d8d 162b72279617e8971485962e700f82670eb5e303be62091e65d8ed0432fea496 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6474 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Last-Modified: Sat, 28 Jan 2023 19:03:45 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 280`

	fonts.gstatic.com/s/ebgaramond/v26/SlGWmQSNjdsmc35JDF1K5GRweDs1Zw.woff2	142.250.74.35	200 OK	41 kB
URL HTTP/2 fonts.gstatic.com/s/ebgaramond/v26/SlGWmQSNjdsmc35JDF1K5GRweDs1Zw.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 41220, version 1.0\012- data Size 41 kB (41220 bytes) Hash 15c16e2f1ebe6cf6eae9e4b6f94c5322 e22f010aefd1e606eec34156446516f12183f817 8ddebc0a4b970f9e03ef06875d2321d6f47046522c6e60dfdc026a39f6f2c084 HTTP Headers `GET /s/ebgaramond/v26/SlGWmQSNjdsmc35JDF1K5GRweDs1Zw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://carlystephan.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 41220 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 27 Jan 2023 02:07:20 GMT expires: Sat, 27 Jan 2024 02:07:20 GMT cache-control: public, max-age=31536000 last-modified: Mon, 11 Jul 2022 19:17:07 GMT content-type: font/woff2 age: 153859 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 28 Jan 2023 20:51:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	carlystephan.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	144.48.36.115	200 OK	5.6 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (5477) Size 5.6 kB (5629 bytes) Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 HTTP Headers `GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Thu, 13 Aug 2020 05:19:05 GMT Accept-Ranges: bytes Content-Length: 5629 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2	144.48.36.115	200 OK	5.4 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (5315) Size 5.4 kB (5359 bytes) Hash c89a6bb9bf9b0f72089cd02af15ffd8f 983b920d93cde00bca05877123205693af2b1e85 adc89f4602504183c5b29d26d5cfe8bc20a40f4a661c815e9d99d4ddd7318a53 HTTP Headers GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 5359 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1	144.48.36.115	200 OK	5.0 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (4974) Size 5.0 kB (5014 bytes) Hash e8e473a0e46b9fa8e575c1725d6be4ce 7f1f12c2b2ec9af0abc8bc886280dc3f8f0fb95e 6556831cebf7e72974ba6346bcb6f97d14dc2e1a8db779252e364abd543c2169 HTTP Headers GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 5014 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1	144.48.36.115	200 OK	36 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Unicode text, UTF-8 text, with very long lines (35829) Size 36 kB (35870 bytes) Hash 1bd44eec7a35509172a02e4022d0b2cd a24589a1154590119967d7291469b0326053f4b5 82b45dde76410ccdfe24c9b3acba3ea30ce30a9bddd94b0f1760b9506a28f27e HTTP Headers GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 35870 Keep-Alive: timeout=5, max=95 Connection: Keep-Alive Content-Type: application/javascript`

	ocsp.sectigo.com/	104.18.32.68	200 OK	281 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 281 B (281 bytes) Hash 613fa36ca1b1c13ad4ac69aa36728398 f385405dcd91566ea52002af51ffe6671dd6e315 39bb99a391ac3b4f19697292e1c5a2b9ed4ef0a6d0609fe851402815bb5515c2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Content-Type: application/ocsp-response Content-Length: 281 Connection: keep-alive Last-Modified: Sat, 28 Jan 2023 06:19:31 GMT Expires: Sat, 04 Feb 2023 06:19:30 GMT Etag: "f385405dcd91566ea52002af51ffe6671dd6e315" Cache-Control: max-age=551870,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 790c9b7b0b1bb509-OSL`

	manychat.com/pixel/logEvent	18.185.191.84	204 No Content	0 B
URL HTTP/2 manychat.com/pixel/logEvent IP 18.185.191.84:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /pixel/logEvent HTTP/1.1 Host: manychat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://carlystephan.com/ Origin: https://carlystephan.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Sat, 28 Jan 2023 20:51:39 GMT access-control-allow-origin: https://carlystephan.com access-control-allow-methods: GET, POST, OPTIONS access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type access-control-max-age: 1728000 content-type: text/plain charset=UTF-8 content-length: 0 X-Firefox-Spdy: h2`

	carlystephan.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	144.48.36.115	200 OK	6.5 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (6475), with no line terminators Size 6.5 kB (6475 bytes) Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a HTTP Headers `GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 10 Jun 2022 02:01:11 GMT Accept-Ranges: bytes Content-Length: 6475 Keep-Alive: timeout=5, max=94 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	144.48.36.115	200 OK	18 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators Size 18 kB (17823 bytes) Hash e495a4709e3eae31c67f8263f25d2d39 d43ba6a092e4823a71f3bff75d5ed279a481636b 1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b HTTP Headers `GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:28 GMT Accept-Ranges: bytes Content-Length: 17823 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	144.48.36.115	200 OK	4.9 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (4875) Size 4.9 kB (4910 bytes) Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 HTTP Headers `GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 10 Jun 2022 02:01:11 GMT Accept-Ranges: bytes Content-Length: 4910 Keep-Alive: timeout=5, max=95 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	144.48.36.115	200 OK	10 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type data Size 10 kB (10230 bytes) Hash 8cd696505481e74ffee89b4995f37379 ee9aad199ef2bc60a3460f4c52f37d22907b2ec9 01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874 HTTP Headers `GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:28 GMT Accept-Ranges: bytes Content-Length: 10230 Keep-Alive: timeout=5, max=94 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2	144.48.36.115	200 OK	22 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (21520) Size 22 kB (21564 bytes) Hash 5d3bea58e10e2487d2000a662f75f3e7 006cccbcd6477c2f3d704abc821a0317f885a089 e64d7a39b7943a79300d1387808fbeca64ea5f0876f673f62506fc520308a34c HTTP Headers GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 21564 Keep-Alive: timeout=5, max=93 Connection: Keep-Alive Content-Type: application/javascript`

	ocsp.sectigo.com/	104.18.32.68	200 OK	281 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 281 B (281 bytes) Hash 613fa36ca1b1c13ad4ac69aa36728398 f385405dcd91566ea52002af51ffe6671dd6e315 39bb99a391ac3b4f19697292e1c5a2b9ed4ef0a6d0609fe851402815bb5515c2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Content-Type: application/ocsp-response Content-Length: 281 Connection: keep-alive Last-Modified: Sat, 28 Jan 2023 06:19:31 GMT Expires: Sat, 04 Feb 2023 06:19:30 GMT Etag: "f385405dcd91566ea52002af51ffe6671dd6e315" Cache-Control: max-age=551870,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 790c9b7b0f480b51-OSL`

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1	104.16.21.19	200 OK	12 kB
URL HTTP/2 forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32954) Size 12 kB (11594 bytes) Hash a608b5ba6f3802095d65f9387e6327b7 5e0fb6fe730c7c402529081eec5d9bccf3649f3a f62c2bad109fb75c076b63f830d13873bf987a4d1aecab05d0bc43535ea267a4 HTTP Headers GET /v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/html vary: Accept-Encoding, Accept-Encoding set-cookie: PHPSESSID=udm7r21n5rjg4s57flbltb6vb7; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-benvironment: production access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-what: what x-op-pci: true x-cache-status: BYPASS cf-cache-status: DYNAMIC server: cloudflare cf-ray: 790c9b7acbf4b524-OSL content-encoding: br X-Firefox-Spdy: h2

	carlystephan.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	144.48.36.115	200 OK	12 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (12198), with no line terminators Size 12 kB (12198 bytes) Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 HTTP Headers GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 20 Jan 2023 03:57:40 GMT Accept-Ranges: bytes Content-Length: 12198 Keep-Alive: timeout=5, max=95 Connection: Keep-Alive Content-Type: application/javascript`

	optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css	104.16.21.19	200 OK	2.6 kB
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (10269), with no line terminators Size 2.6 kB (2588 bytes) Hash d48d5ec059b078f5e6e096f23ea26089 668014db4bfb51864d6f6b310154458498470ae5 fe2502ac7b1011f65bebdf5c771113228599ebf0dfd3645b7743e63e281b53a3 HTTP Headers `GET /opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=19389 etag: W/"63d2f131-4bbd" last-modified: Thu, 26 Jan 2023 21:31:29 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d58f0b524-OSL content-encoding: br X-Firefox-Spdy: h2

	carlystephan.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	144.48.36.115	200 OK	21 kB
URL HTTP/1.1 carlystephan.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Unicode text, UTF-8 text, with very long lines (8189) Size 21 kB (21440 bytes) Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 HTTP Headers `GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 23 Nov 2022 03:34:29 GMT Accept-Ranges: bytes Content-Length: 21440 Keep-Alive: timeout=5, max=94 Connection: Keep-Alive Content-Type: application/javascript`

	ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css	142.250.74.106	200 OK	7.6 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css IP 142.250.74.106:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (29523) Size 7.6 kB (7645 bytes) Hash 12140c3537b9f49687fce2d624314338 416e4f362c010444156b64b5ae0acfe30733ab29 7ea48e0bd98e2a829470b120a3b60a0106379ed779327d6df983a00cc196a2c4 HTTP Headers `GET /ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 7645 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 27 Jan 2023 06:56:37 GMT expires: Sat, 27 Jan 2024 06:56:37 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/css; charset=UTF-8 age: 136502 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js	142.250.74.106	200 OK	68 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js IP 142.250.74.106:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (32073) Size 68 kB (67948 bytes) Hash 33411bb179575dfc40cc62c61899664f d03c06d5893d632e1a7f826a6ffd9768ba885e11 274befc7b39609fed270e69335bc92b3d8251545594636eb408d5d93e0ae1a4f HTTP Headers `GET /ajax/libs/jqueryui/1.12.1/jquery-ui.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 67948 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 25 Jan 2023 22:56:03 GMT expires: Thu, 25 Jan 2024 22:56:03 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 age: 251736 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	carlystephan.com/wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.2	144.48.36.115	200 OK	0 B
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 02 Apr 2021 09:56:22 GMT Accept-Ranges: bytes Content-Length: 378786 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2	144.48.36.115	200 OK	28 kB
URL HTTP/1.1 carlystephan.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2 IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type ASCII text, with very long lines (27417) Size 28 kB (27461 bytes) Hash 639d732950a4a56235d4fbcd79455beb 01f672414e931e6d48e58467933b7c15fcff5cde 2637add90e2a39ddd207c014a172fa99e2281bc4010bf92de258a67194e0ed3e HTTP Headers GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2 HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Wed, 25 Jan 2023 02:40:58 GMT Accept-Ranges: bytes Content-Length: 27461 Keep-Alive: timeout=5, max=92 Connection: Keep-Alive Content-Type: application/javascript`

	carlystephan.com/wp-content/uploads/2019/08/JP-300x147.png	144.48.36.115	200 OK	17 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2019/08/JP-300x147.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type PNG image data, 300 x 147, 8-bit/color RGBA, non-interlaced\012- data Size 17 kB (17439 bytes) Hash 052cf6eaaaf57046b880c4f8ccfca598 24d99dd58083bfcdaba1c94eb7fc89903c093890 77a3bfb0cbc519d0015609e3a7b8fb92bc3166f47578e13e3872ff5f682558cc HTTP Headers `GET /wp-content/uploads/2019/08/JP-300x147.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 23 Aug 2019 08:07:59 GMT Accept-Ranges: bytes Content-Length: 17439 Keep-Alive: timeout=5, max=93 Connection: Keep-Alive Content-Type: image/png`

	carlystephan.com/wp-content/uploads/2019/08/Raspberry-300x127.png	144.48.36.115	200 OK	10 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2019/08/Raspberry-300x127.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type PNG image data, 300 x 127, 8-bit colormap, non-interlaced\012- data Size 10 kB (9996 bytes) Hash e7a128dcfcc2b2304256e3c8a778094a e5140f73417d47e5d7ff6803ea002305efcb1a7d 2802331abe7b8ae7030a630e09d4739eb7c93b3ac850a1421febe70ed417a3db HTTP Headers GET /wp-content/uploads/2019/08/Raspberry-300x127.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 23 Aug 2019 08:08:01 GMT Accept-Ranges: bytes Content-Length: 9996 Keep-Alive: timeout=5, max=92 Connection: Keep-Alive Content-Type: image/png`

	optassets.ontraport.com/opt_assets/images/load.gif	104.16.21.19	200 OK	7.5 kB
URL HTTP/2 optassets.ontraport.com/opt_assets/images/load.gif IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type RIFF (little-endian) data, Web/P image\012- data Size 7.5 kB (7536 bytes) Hash 1a773d042ef2b45aabbc4d5cadf46bda e2083dc83db30f8b4926baa009a4a5e13c1f3b94 9849148fb78b3bff432f8743b265597b51272346ced388dce6b3225634e2c7cd HTTP Headers `GET /opt_assets/images/load.gif HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:40 GMT content-type: image/webp content-length: 7536 access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origFmt=gif, origSize=13281 content-disposition: inline; filename="load.webp" etag: "63d1ba22-33e1" last-modified: Wed, 25 Jan 2023 23:24:18 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 170186 expires: Sat, 28 Jan 2023 21:51:40 GMT cache-control: public, max-age=3600 accept-ranges: bytes server: cloudflare cf-ray: 790c9b808e35b524-OSL X-Firefox-Spdy: h2

	carlystephan.com/wp-content/uploads/2019/08/Awaken-Radio-300x300.png	144.48.36.115	200 OK	72 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2019/08/Awaken-Radio-300x300.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data Size 72 kB (72241 bytes) Hash e391958add089b36b67e39afcc07d346 59bb2cfa5264a8041b84ee95f4217cc096d978a0 3614a48c1e7248c17e7dbbf7b528c0ffe63ff540baa6c266d6f6b4bcd1e76f8a HTTP Headers GET /wp-content/uploads/2019/08/Awaken-Radio-300x300.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 23 Aug 2019 07:04:36 GMT Accept-Ranges: bytes Content-Length: 72241 Keep-Alive: timeout=5, max=91 Connection: Keep-Alive Content-Type: image/png`

	manychat.com/pixel/logEvent	18.185.191.84	200 OK	601 B
URL HTTP/2 manychat.com/pixel/logEvent IP 18.185.191.84:0 ASN #16509 AMAZON-02 File type data Size 601 B (601 bytes) Hash ee35ddd4ac6f6882b08b9fc9198a6edb 00926a3f5d71aa0f6b54e9a454044b5432e65a03 359fa2454e942390806de5b8db9753f344bc5e12042bdeaaf401a59a86b92db0 HTTP Headers `POST /pixel/logEvent HTTP/1.1 Host: manychat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 664 Origin: https://carlystephan.com Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/json access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`

	forms.ontraport.com/cdn-cgi/rum?	104.16.21.19	204 No Content	0 B
URL HTTP/2 forms.ontraport.com/cdn-cgi/rum? IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 4873 Origin: https://forms.ontraport.com Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Sat, 28 Jan 2023 20:51:40 GMT access-control-allow-origin: https://forms.ontraport.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 790c9b815f5bb524-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	carlystephan.com/wp-content/uploads/2022/12/CarlyStephan-90-scaled.jpg	144.48.36.115	200 OK	910 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2022/12/CarlyStephan-90-scaled.jpg IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark IV, xresolution=150, yresolution=158, resolutionunit=2, software=Adobe Lightroom 4.4 (Macintosh), datetime=2021:10:11 14:29:55, copyright=\302\251 Kirra Smith Photography - hello@kirrasmithphotography.com.au], baseline, precision 8, 2560x1707, components 3\012- data Size 910 kB (909799 bytes) Hash ac8c486620a65ae63f0845a53887ff6e a7ef1dc331a756097b13d7c576920d521231e789 e0b3597de8facc030ee8c931e250555688dff9ec871fa9bf4de6afb6cbfae915 HTTP Headers GET /wp-content/uploads/2022/12/CarlyStephan-90-scaled.jpg HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/wp-content/uploads/elementor/css/post-3589.css?ver=1674614830 Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 09 Dec 2022 00:06:57 GMT Accept-Ranges: bytes Content-Length: 909799 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: image/jpeg`

	carlystephan.com/wp-content/uploads/2019/08/SF.png	144.48.36.115	200 OK	41 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2019/08/SF.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data Size 41 kB (41084 bytes) Hash 0444754b77ac49de5e4cba61f0b1a332 41c229ecbb2161b5dba3a87a804b1c1a6eb370a8 7b3c835f7d9525e3f49f371b5c6478dc945b119f31966c9838dbf024258af749 HTTP Headers `GET /wp-content/uploads/2019/08/SF.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 23 Aug 2019 07:04:42 GMT Accept-Ranges: bytes Content-Length: 41084 Keep-Alive: timeout=5, max=92 Connection: Keep-Alive Content-Type: image/png`

	forms.ontraport.com/cdn-cgi/rum?	104.16.21.19	204 No Content	0 B
URL HTTP/2 forms.ontraport.com/cdn-cgi/rum? IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 7747 Origin: https://forms.ontraport.com Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Sat, 28 Jan 2023 20:51:40 GMT access-control-allow-origin: https://forms.ontraport.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 790c9b822870b524-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	carlystephan.com/wp-content/uploads/2019/08/TLC-300x294.png	144.48.36.115	200 OK	18 kB
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2019/08/TLC-300x294.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type PNG image data, 300 x 294, 8-bit/color RGBA, non-interlaced\012- data Size 18 kB (17580 bytes) Hash 17a80effa31ec72180e50077f4507cb4 269b96918736901a9ecb7b0e483e1e56f8e81522 da32d64c6e350faab0b5aa400ae26d010def061faf3b090b8b9931a94255e7d7 HTTP Headers `GET /wp-content/uploads/2019/08/TLC-300x294.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Fri, 23 Aug 2019 07:04:44 GMT Accept-Ranges: bytes Content-Length: 17580 Keep-Alive: timeout=5, max=91 Connection: Keep-Alive Content-Type: image/png`

	app.ontraport.com/js/libs/materialize/dist/css/materializev2.min.css	104.16.21.19	200 OK	59 kB
URL HTTP/2 app.ontraport.com/js/libs/materialize/dist/css/materializev2.min.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (37580) Size 59 kB (59149 bytes) Hash 5455779e81aee90790b3408805a8fde8 ad0bd6994f576b6f9cee9c915736e55999e098d8 54ebc5b05ce38acd6858a8505b66e8539d3c714fb4de30791322a9baacd19b83 HTTP Headers `GET /js/libs/materialize/dist/css/materializev2.min.css HTTP/1.1 Host: app.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css vary: Accept-Encoding, Accept-Encoding, Accept-Encoding last-modified: Thu, 26 Jan 2023 21:31:27 GMT etag: W/"63d2f12f-92cd" p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-ca: 10.2.80.206 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-class: app x-op-release: 3 cf-cache-status: HIT age: 211 expires: Sat, 28 Jan 2023 21:11:39 GMT cache-control: public, max-age=1200 server: cloudflare cf-ray: 790c9b7d6911b524-OSL content-encoding: br X-Firefox-Spdy: h2

	forms.ontraport.com/cdn-cgi/rum?	104.16.21.19	204 No Content	0 B
URL HTTP/2 forms.ontraport.com/cdn-cgi/rum? IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 628 Origin: https://forms.ontraport.com Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Sat, 28 Jan 2023 20:51:40 GMT access-control-allow-origin: https://forms.ontraport.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 790c9b82b946b524-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	forms.ontraport.com/cdn-cgi/rum?	104.16.21.19	204 No Content	0 B
URL HTTP/2 forms.ontraport.com/cdn-cgi/rum? IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 628 Origin: https://forms.ontraport.com Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Sat, 28 Jan 2023 20:51:40 GMT access-control-allow-origin: https://forms.ontraport.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 790c9b82b948b524-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	widget.manychat.com/434561639956367.js	18.185.191.84	200 OK	0 B
URL HTTP/2 widget.manychat.com/434561639956367.js IP 18.185.191.84:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /434561639956367.js HTTP/1.1 Host: widget.manychat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:37 GMT content-type: text/plain; charset=utf-8 cache-control: no-store content-encoding: gzip X-Firefox-Spdy: h2`

	carlystephan.com/wp-content/uploads/2022/12/LIGHT-RICH-Banner-1536x865.png	144.48.36.115	200 OK	0 B
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2022/12/LIGHT-RICH-Banner-1536x865.png IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Size 0 B (0 bytes) Hash HTTP Headers GET /wp-content/uploads/2022/12/LIGHT-RICH-Banner-1536x865.png HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:39 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Thu, 01 Dec 2022 00:10:01 GMT Accept-Ranges: bytes Content-Length: 1930336 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/png`

	forms.ontraport.com/formeditor/formeditor/css/form.default.css	104.16.21.19	200 OK	0 B
URL HTTP/2 forms.ontraport.com/formeditor/formeditor/css/form.default.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /formeditor/formeditor/css/form.default.css HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css vary: Accept-Encoding, Accept-Encoding last-modified: Thu, 22 Dec 2022 20:57:49 GMT etag: W/"63a4c4cd-31ae" p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-benvironment: production access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-what: what expires: Sat, 28 Jan 2023 21:51:39 GMT cache-control: public, max-age=3600 x-op-pci: true x-cache-status: BYPASS cf-cache-status: HIT age: 170188 server: cloudflare cf-ray: 790c9b7d793ab524-OSL content-encoding: br X-Firefox-Spdy: h2

	optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify etag: W/"63d2f16b-86a9" last-modified: Thu, 26 Jan 2023 21:32:27 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d996eb524-OSL content-encoding: br X-Firefox-Spdy: h2

	carlystephan.com/wp-content/uploads/2020/11/102A4200-2-scaled.jpg	144.48.36.115	200 OK	0 B
URL HTTP/1.1 carlystephan.com/wp-content/uploads/2020/11/102A4200-2-scaled.jpg IP 144.48.36.115:0 ASN #136557 Host Universal Pty Ltd File type Size 0 B (0 bytes) Hash HTTP Headers GET /wp-content/uploads/2020/11/102A4200-2-scaled.jpg HTTP/1.1 Host: carlystephan.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/wp-content/uploads/elementor/css/post-3589.css?ver=1674614830 Cookie: _ga_MC9KMX4P32=GS1.1.1674939101.1.0.1674939101.0.0.0; _ga=GA1.1.90964611.1674939101 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Sat, 28 Jan 2023 20:51:40 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Last-Modified: Sun, 15 Nov 2020 07:21:59 GMT Accept-Ranges: bytes Content-Length: 393666 Keep-Alive: timeout=5, max=94 Connection: Keep-Alive Content-Type: image/jpeg`

	mccdn.me/assets/js/widget.js	104.26.15.135	200 OK	0 B
URL HTTP/2 mccdn.me/assets/js/widget.js IP 104.26.15.135:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/js/widget.js HTTP/1.1 Host: mccdn.me User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/javascript; charset=utf-8 last-modified: Sat, 28 Jan 2023 07:09:43 GMT etag: W/"63d4ca37-5941a" access-control-allow-origin: https://manychat.com timing-allow-origin: * cache-control: public, max-age=7200 cf-cache-status: HIT age: 5742 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxomtbXPSpB0Vdr97hGdvbmcmJKql0cdxIMeuVr08SjuBvwCQ2PigO0QH2KZZV7irHat2RkqqDTaKjV9hqP0M8fe9jTL29WDZ3RHJmXr4Mc44n5Y2HECx31k"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 790c9b798ff5b4ff-OSL content-encoding: br X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.57.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://forms.ontraport.com Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 790c9b7e49d0b500-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.css	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/blocks/common/skeleton/css/skeleton.css HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=11452 etag: W/"63d2f131-2cbc" last-modified: Thu, 26 Jan 2023 21:31:29 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d58efb524-OSL content-encoding: br X-Firefox-Spdy: h2

	optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/fonts.css	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/fonts.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/blocks/common/skeleton/css/fonts.css HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=358934 etag: W/"63d2f131-57a16" last-modified: Thu, 26 Jan 2023 21:31:29 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d58f5b524-OSL content-encoding: br X-Firefox-Spdy: h2

	optassets.ontraport.com/opt_assets/blocks/common/jQueryPageBackgroundPro/js/libs/underscore.js	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/jQueryPageBackgroundPro/js/libs/underscore.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/blocks/common/jQueryPageBackgroundPro/js/libs/underscore.js HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/plain vary: Accept-Encoding p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-class: optassets x-op-release: 3 x-op-ca: 10.2.80.206 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS last-modified: Fri, 27 Jan 2023 12:03:10 GMT cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d792eb524-OSL content-encoding: br X-Firefox-Spdy: h2

	app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js	104.16.21.19	200 OK	0 B
URL HTTP/2 app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/ontraport/opt_assets/drivers/opf.js HTTP/1.1 Host: app.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:37 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify etag: W/"63d2f1b8-109f8" last-modified: Thu, 26 Jan 2023 21:33:44 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: app x-op-release: 3 cf-cache-status: HIT age: 223 expires: Sat, 28 Jan 2023 21:11:37 GMT cache-control: public, max-age=1200 server: cloudflare cf-ray: 790c9b6db893b524-OSL content-encoding: br X-Firefox-Spdy: h2

	forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1	104.16.21.19	200 OK	0 B
URL HTTP/2 forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f2&formType=embed&formGUID=OPF_cf9db1a7-e1f2-4b37-2ab0-099cc47520db&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://carlystephan.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/html vary: Accept-Encoding, Accept-Encoding set-cookie: PHPSESSID=p8dhmq8u7u8o14994lnhqd20l3; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-benvironment: production access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-what: what x-op-pci: true x-cache-status: BYPASS cf-cache-status: DYNAMIC server: cloudflare cf-ray: 790c9b7abbe4b524-OSL content-encoding: br X-Firefox-Spdy: h2

	optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/normalize.css	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/normalize.css IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/blocks/common/skeleton/css/normalize.css HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=7797 etag: W/"63d2f131-1e75" last-modified: Thu, 26 Jan 2023 21:31:29 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 6817 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d58edb524-OSL content-encoding: br X-Firefox-Spdy: h2

	forms.ontraport.com/v2.4/include/minify/?g=moonrayCSS	104.16.21.19	200 OK	0 B
URL HTTP/2 forms.ontraport.com/v2.4/include/minify/?g=moonrayCSS IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /v2.4/include/minify/?g=moonrayCSS HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: text/css; charset=utf-8 pragma: no-cache expires: Sat, 28 Jan 2023 21:51:39 GMT vary: Accept-Encoding last-modified: Thu, 25 Jun 2020 20:57:16 GMT etag: W/"pub1593118636;gz" cache-control: public, max-age=3600 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-benvironment: production access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-what: what x-op-pci: true x-cache-status: BYPASS cf-cache-status: HIT age: 170188 server: cloudflare cf-ray: 790c9b7d793bb524-OSL content-encoding: br X-Firefox-Spdy: h2

	optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js	104.16.21.19	200 OK	0 B
URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js HTTP/1.1 Host: optassets.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=1472 etag: W/"63d2f131-5c0" last-modified: Thu, 26 Jan 2023 21:31:29 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: optassets x-op-release: 3 cf-cache-status: HIT age: 4425 expires: Sun, 29 Jan 2023 04:51:39 GMT cache-control: public, max-age=28800 server: cloudflare cf-ray: 790c9b7d8959b524-OSL content-encoding: br X-Firefox-Spdy: h2

	forms.ontraport.com/v2.4/include/minify/?g=genjs-v3	104.16.21.19	200 OK	0 B
URL HTTP/2 forms.ontraport.com/v2.4/include/minify/?g=genjs-v3 IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /v2.4/include/minify/?g=genjs-v3 HTTP/1.1 Host: forms.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c205189f8&formType=embed&formGUID=OPF_5adedb6c-46b5-9130-a8d1-50ae14dcfc81&referer=https%3A%2F%2Fcarlystephan.com%2F&formceptionID=formception-2e853e96-c926-3779-c04b-3b10d95f8903&__opv=v1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/x-javascript; charset=utf-8 pragma: no-cache expires: Sat, 28 Jan 2023 21:51:39 GMT vary: Accept-Encoding last-modified: Wed, 25 Jan 2023 22:01:01 GMT etag: W/"pub1674684061;gz" cache-control: public, max-age=3600 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-benvironment: production access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-what: what x-op-pci: true x-cache-status: BYPASS cf-cache-status: HIT age: 170188 server: cloudflare cf-ray: 790c9b7d8944b524-OSL content-encoding: br X-Firefox-Spdy: h2

	app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js	104.16.21.19	200 OK	0 B
URL HTTP/2 app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/libs/materialize/dist/js/materializev2.min.js HTTP/1.1 Host: app.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/javascript vary: Accept-Encoding, Accept-Encoding, Accept-Encoding last-modified: Thu, 26 Jan 2023 21:31:27 GMT etag: W/"63d2f12f-13bbf" p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" x-op-ca: 10.2.80.206 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS x-op-class: app x-op-release: 3 cf-cache-status: HIT age: 211 expires: Sat, 28 Jan 2023 21:11:39 GMT cache-control: public, max-age=1200 server: cloudflare cf-ray: 790c9b7d996db524-OSL content-encoding: br X-Firefox-Spdy: h2

	app.ontraport.com/js/globalize/globalize.js	104.16.21.19	200 OK	0 B
URL HTTP/2 app.ontraport.com/js/globalize/globalize.js IP 104.16.21.19:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/globalize/globalize.js HTTP/1.1 Host: app.ontraport.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://forms.ontraport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 28 Jan 2023 20:51:39 GMT content-type: application/javascript access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=19965 etag: W/"63d2f12e-4dfd" last-modified: Thu, 26 Jan 2023 21:31:26 GMT p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" vary: Accept-Encoding, Accept-Encoding, Accept-Encoding x-op-ca: 10.2.80.206 x-op-class: app x-op-release: 3 cf-cache-status: HIT age: 211 expires: Sat, 28 Jan 2023 21:11:39 GMT cache-control: public, max-age=1200 server: cloudflare cf-ray: 790c9b7d895db524-OSL content-encoding: br X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML