r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9ce33c47154f4826255fe9bbe54d72be
e10a363c007a6d15ed43eb35b4e5c246d85c5eed
cf423db1a8ad1dce1b5c25f6025d14411b4a46e95a6001288949f046e244bc24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF423DB1A8AD1DCE1B5C25F6025D14411B4A46E95A6001288949F046E244BC24"
Last-Modified: Fri, 10 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16499
Expires: Sun, 12 Mar 2023 12:25:18 GMT
Date: Sun, 12 Mar 2023 07:50:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 99824e6e553dd5649b1d199589a6dab2
00b2c24f6ef22620045c3b2ef7a63ea9ac8cc0a2
3a4695284040436fd256023da7d39bab8b16f8a2d4f7105c0f995f610dcab2d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A4695284040436FD256023DA7D39BAB8B16F8A2D4F7105C0F995F610DCAB2D2"
Last-Modified: Thu, 09 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3089
Expires: Sun, 12 Mar 2023 08:41:48 GMT
Date: Sun, 12 Mar 2023 07:50:19 GMT
Connection: keep-alive
talansbs.com/http:/talansbs.com/small-business/is-overfunding-holding-you-back/
23.229.220.229301 Moved Permanently 0 B URL HTTP/1.1 talansbs.com/http:/talansbs.com/small-business/is-overfunding-holding-you-back/
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /http:/talansbs.com/small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:19 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 12 Mar 2023 07:09:12 GMT
content-type: application/json
age: 2467
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1a564ae484daef6a82bb08116ad794eb
f75350abf28a42c16324901035889a1f3af700a1
225214187df3f50835a8aafcc4555fe47cf0b78938b71d34fb422942292b153b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "225214187DF3F50835A8AAFCC4555FE47CF0B78938B71D34FB422942292B153B"
Last-Modified: Fri, 10 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10079
Expires: Sun, 12 Mar 2023 10:38:18 GMT
Date: Sun, 12 Mar 2023 07:50:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Hu3DjSxHZL/yXkxDbjZ+qm/LaMymjB7B5YxYjlixJPqQqFsyrwIVpNguP5iSIwCTwSQcJS5zZTA=
x-amz-request-id: EXHZXXGPEX7HYS0K
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 12 Mar 2023 07:19:36 GMT
age: 1843
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 12 Mar 2023 07:50:19 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/
23.229.220.229200 OK 8.0 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1403), with CRLF, LF line terminators
Hash a6a6b58275f760a64af2c310e9172b68
f8a8ea5621581014be79acc486ba591202ff0414
ccb400002025c8b3ba78ea62d153fabc1c7dca784413919d301d5758ee7bcdbb
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:19 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Link: <http://wp.me/p1E8mN-1u>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7990
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
s.gravatar.com/js/gprofiles.js?ver=2023Maraa
192.0.73.2200 OK 7.4 kB URL HTTP/1.1 s.gravatar.com/js/gprofiles.js?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (24043), with no line terminators
Hash b94596ffc2746c0e33c2039215531592
6a6fde47cda13c98489c70905c18b815910d1c4d
4e98be196118a9cd8e66c910fae42a8a45d6781f360996eadc691263d6193462
GET /js/gprofiles.js?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Sep 2022 11:48:47 GMT
ETag: W/"6323111f-5deb"
Content-Encoding: gzip
Expires: Sun, 19 Mar 2023 07:50:19 GMT
Cache-Control: max-age=604800
platform.twitter.com/widgets.js?ver=3.6
151.101.84.157200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js?ver=3.6
IP 151.101.84.157:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash e537bb9176ab0d49ccaa2baf56ba5cd4
1be6d53a34b7dbdd869b3e0680c1c75a2a490c63
ef1af552de1464ddb5c212464755232eee06f1595aadc1afb8ed1a2a6a8f57d4
GET /widgets.js?ver=3.6 HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 27630
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Accept-Ranges: bytes
Date: Sun, 12 Mar 2023 07:50:19 GMT
X-Served-By: cache-iad-kcgs7200031-IAD, cache-bma1622-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding
TW-CDN: FT
s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202310
192.0.77.32200 OK 3.2 kB URL HTTP/1.1 s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202310
IP 192.0.77.32:0
File type ASCII text, with very long lines (2788)
Hash 844b0e2ae8eba4159dd5edd8efbde50c
757861da25bea58b1bc03203f65ae93673cfc065
ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
GET /wp-content/js/devicepx-jetpack.js?ver=202310 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c066eb1-52b6"
Content-Encoding: gzip
Expires: Tue, 05 Mar 2024 00:00:09 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca MISS
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-nc: HIT arn 2
apis.google.com/js/plusone.js?ver=3.6
172.217.21.174200 OK 21 kB URL HTTP/1.1 apis.google.com/js/plusone.js?ver=3.6
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 1eb3db7a5eb87f9d75294ef8872f77a9
acfbf73b2bb7a9cdee3e14b864166c4363ce0ecf
a73a1977494fbcda1e304d48c0c8eb831418334a117270408e04cfecaefbdf11
GET /js/plusone.js?ver=3.6 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Content-Length: 21023
Date: Sun, 12 Mar 2023 07:50:19 GMT
Expires: Sun, 12 Mar 2023 07:50:19 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "0fc9cb8ed4f547b2"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
stats.wordpress.com/e-202310.js
192.0.78.27301 Moved Permanently 162 B URL HTTP/1.1 stats.wordpress.com/e-202310.js
IP 192.0.78.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /e-202310.js HTTP/1.1
Host: stats.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 12 Mar 2023 07:50:19 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://stats.wordpress.com/e-202310.js
X-ac: 3.arn _dca BYPASS
talansbs.com/wp-content/themes/talanThemever3/script.js
23.229.220.229200 OK 2.1 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/script.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash d84911a5c89c989273713f1d3f8a7731
35073377101e6502602d01e3ff903c95d70ccf88
49e5d2dd4042804c2d21a34dfe408a84d7c8d81f31fd4029dc0a55bd588f2f7d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/talanThemever3/script.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:19 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73083cd-1bf7-5ce4314f0a840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2144
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
twitter.com/javascripts/blogger.js
104.244.42.129301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/javascripts/blogger.js
IP 104.244.42.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/javascripts/blogger.js
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 68e65b3302968100
x-response-time: 107
x-connection-hash: bf0a668d728d4bdde16f43a3b39c6a2798aed004f981be7d2761d39641b8313a
date: Sun, 12 Mar 2023 07:50:19 GMT
server: tsa_o
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.129301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: a02079785444d790
x-response-time: 104
x-connection-hash: cce046479b78dae2b1422b19ea72becadcd93c4a86b3f94339f56e7828169d64
date: Sun, 12 Mar 2023 07:50:19 GMT
server: tsa_o
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db27ecc2f481e8871b2e99584e751660
e671ecb839d53e296f4ec303208ddb713c72aecc
5c910268b5c4f0244540c5570056673f8cbe4a0979f301363cb56dc359c147df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C910268B5C4F0244540C5570056673F8CBE4A0979F301363CB56DC359C147DF"
Last-Modified: Sun, 12 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18175
Expires: Sun, 12 Mar 2023 12:53:15 GMT
Date: Sun, 12 Mar 2023 07:50:20 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 9f836c90894013645293d67efbd4faf6
28668c7ecfd0aaa5d55e97494ffbf17062d92db2
9389307e5d85a70937cc031b7b0b18b214087ffdd6920217804dc5e1e84e8085
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3137
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:20 GMT
Last-Modified: Sun, 12 Mar 2023 06:58:03 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 313
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Pragma, Last-Modified, ETag, Retry-After, Cache-Control, Content-Type, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 12 Mar 2023 07:12:32 GMT
age: 2268
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 9f836c90894013645293d67efbd4faf6
28668c7ecfd0aaa5d55e97494ffbf17062d92db2
9389307e5d85a70937cc031b7b0b18b214087ffdd6920217804dc5e1e84e8085
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3022
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:20 GMT
Last-Modified: Sun, 12 Mar 2023 06:59:58 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 313
talansbs.com/Scripts/swfobject_modified.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/Scripts/swfobject_modified.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash a564a299c9a44ea438caeab0d45cc18d
d58f43757a051a0a9e4453b231485c02f5aa8f08
55ebfd5862720859976fa24c0283b77042422fb009e2dd2e5a31b5ba73de594e
Analyzer Verdict Alert fortinet Malware
GET /Scripts/swfobject_modified.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:19 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6
23.229.220.229200 OK 187 B URL HTTP/1.1 talansbs.com/wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 30816eefa3830bb86805d6923840212d
4dbe4972be8dd588d1f79c987776a649ec5a0645
b866497aff195f890db34c5dd7ca1507a5b93e6374a8cfcb67f32aab7ad5dd9b
GET /wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307abe-169-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 187
Keep-Alive: timeout=5
Content-Type: text/css
talansbs.com/wp-content/plugins/author-box-1/authorbox.css?ver=3.6
23.229.220.229200 OK 282 B URL HTTP/1.1 talansbs.com/wp-content/plugins/author-box-1/authorbox.css?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 7b54cde01512444ba805987192bf5573
2cbf42f40180878b7319a0f45efa098d328349ed
30d52240c68378fe55204a407b0f379db0ff25cf4c8d4840ea10e1cd69aeee4b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/author-box-1/authorbox.css?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:39 GMT
ETag: "7306413-258-5ce43141b08c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 282
Keep-Alive: timeout=5
Content-Type: text/css
talansbs.com/wp-content/plugins/contact-form-7/styles.css?ver=2.4.5
23.229.220.229200 OK 400 B URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/styles.css?ver=2.4.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 0525b8a257e977b19e38c2bf6cf898cd
0330002b2730a97cd366746adedc53f09f7c09ad
f1cf0e958cf7fad69c47b43e67e86a02ba31a33505e0bb05c14bed3459b6df0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/styles.css?ver=2.4.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306494-3b7-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 400
Keep-Alive: timeout=5
Content-Type: text/css
talansbs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
23.229.220.229200 OK 3.1 kB URL HTTP/1.1 talansbs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash be877782551a115e6da253d62cc3a6b2
b06a56238dcc28a6343c66d41aab3ad12a9c4f08
aba99fe4bef6b2ef9f9f0824e9dbdf7dede23e22a98b2305820c1f25a37e7380
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:59 GMT
ETag: "7306ddc-1c20-5ce43154c35c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3068
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-includes/js/jquery/jquery.js?ver=1.10.2
23.229.220.229200 OK 33 kB URL HTTP/1.1 talansbs.com/wp-includes/js/jquery/jquery.js?ver=1.10.2
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32072)
Hash ce6939bfb13a25fa5801c2c6773df836
eb5b20e0308645fde063a0bf2abf80f71e655376
ef66e613025d34884307f2403837ab0cb0c2b5d94efbf5c73ff066538359adfb
GET /wp-includes/js/jquery/jquery.js?ver=1.10.2 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:59 GMT
ETag: "7306e02-16bc8-5ce43154c35c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 32815
Keep-Alive: timeout=5
Content-Type: application/javascript
cdn.wibiya.com/Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6
104.21.95.49301 Moved Permanently 244 B URL HTTP/1.1 cdn.wibiya.com/Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6
IP 104.21.95.49:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 649e5855d0179b9929070c5c19859e81
bbecd8e3f922a2c118717c2ddcf2e5a39361c877
68ca7309190a7a96832234b18d279960a5806f6a3ab9a641d323c1b193569707
GET /Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6 HTTP/1.1
Host: cdn.wibiya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:20 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.tealdit.com/toolbar/v1.js
Cache-Control: max-age=2678400
CF-Cache-Status: HIT
Age: 128
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VQKbMZ6xJBScsWTBJcepFj83plRkNBCEQK2a4ukDDVx8mT0ycCaoi5f2tnvgEOvERvMAKhQ8bEic1fCBpNT4Ap9Kp1wHG5h%2FnYzbptJQfJbGv3tFnJRy6UKjYYvEf%2FpMYg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a6a7218c9c9b4f1-OSL
alt-svc: h2=":443"; ma=60
talansbs.com/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6
23.229.220.229200 OK 380 B URL HTTP/1.1 talansbs.com/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 1a6b36720f26b53b2c4b895541fed55b
ab6a73019e1acb1a2b960f09777a63232423c595
c6f2965f3711560332e6e5b87522d305f98d196f0fc01776e882eb94a70c30ce
GET /wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307b57-2af-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 380
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS.js
23.229.220.229200 OK 3.7 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 665a74221b6dd5f5eeeb8714e3c4da9e
125f56b3f2c46ae0f1969f23e5e5da549507be80
8aa29c29ae3d032afdf02f3e2291716280bfe15931b0b3a74b2d21fcc5103457
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/AJS.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306809-289c-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3723
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS_fx.js
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS_fx.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d7181ef24963660fe106808523a21d73
edaf2dbb2541570f8763607f1eb5026bcbf8dde3
d0fef73305ab3e0731f2cc3d5ff878c0b1afa0efee2e621394c2542be5730583
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/AJS_fx.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730680d-c78-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1171
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_scripts.js
23.229.220.229200 OK 3.3 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_scripts.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 3fabbc047315f1f54a2c22feaeaf0368
a8d8d88b347dee2c85b9076bdf20afb369590015
a752f9a30e993d5d7b31d7c8b57b9ea6f55c1fcf14466a5959a0ddb8777d22bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/gb_scripts.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306818-2e84-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3332
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_styles.css
23.229.220.229200 OK 691 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_styles.css
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash e44371cbee87f6d7872eeb8e2ee8ec55
901747eb653544679d2696fa122ba73a1b310d86
da2c444c38e1029b5daa82a607e3cb17633306cf8c54ba2328c59cb68dcc0e6e
GET /wp-content/plugins/greybox-integrator/greybox/gb_styles.css HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730681d-8fe-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 691
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
35.81.61.149101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.81.61.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xeMKzc1tdoIUsvCOGmfBpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FPTGmoH/BbnOo6cwbDo8vJ69SUY=
www.tealdit.com/toolbar/v1.js
104.21.72.39301 Moved Permanently 0 B URL HTTP/1.1 www.tealdit.com/toolbar/v1.js
IP 104.21.72.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /toolbar/v1.js HTTP/1.1
Host: www.tealdit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 12 Mar 2023 08:50:20 GMT
Location: https://www.tealdit.com/toolbar/v1.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2BGpvgsD30rKMZYWHHy6Smlk1qGxcgIvR4%2B1r%2BJCBJPrtzVSnMQGMEAxUTaV8Bt0qV%2BZT4IVNk0m4vtmUnQg0Tf436McHsEBckG7oCa5hc4Y8jzBCUOIYIo9lekNXM6AlcU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a6a7219691eb529-OSL
alt-svc: h2=":443"; ma=60
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash fe6bdb0cb8d398ae8bfee00bc9b7d88b
393b4f00917674c54a7daa8398e45168b9eca1c9
30b52da127f3e0bd59f461ee9bb331e965d8541500dbf08a9957f4f0f94f1cd9
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6
23.229.220.229200 OK 445 B URL HTTP/1.1 talansbs.com/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 0a7cd236d1029d69fb43ccce748c15fc
61b536b847d0e90d9e55603937eae40105076ab5
6eb1807cd95750ef9944332dbb8fcb3431ff7e9af86fd44d383e72edf5ca5b09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:46 GMT
ETag: "7306fd1-3a2-5ce431485d880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 445
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52
23.229.220.229200 OK 8.3 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash e51f5d668b5864e866d57e5c4e3b204d
32516fc35d6a73c78e48d67ff192787f4046589d
1d7259f45ea9bca5b2e750179f88f36fefe62ed5b4aefa8f96b6f15ceb70d0d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:40 GMT
ETag: "7306464-5e58-5ce43142a4b00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8297
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5
23.229.220.229200 OK 1.6 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 3fcc7381a1a66e108de8ce3fb191c2c3
2d428338fa8aa348d114e78e31b1a79d031c4538
70cbc8f3ecbb54d43d45890068ffc9ae0d52a928ff4ca4989a250f2b6daa1989
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306481-16aa-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1586
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5
23.229.220.229200 OK 1.6 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash a94fc862b1ced5ebbeb60219e46f2662
1a765fda845d5a56b02d76bad3c8f583172f2ead
4a7db9bdae5db200bc4cd65765d797050bb92682e35aa94fae4b923f3e195e9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307b50-13f7-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1578
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
talansbs.com/wp-content/themes/talanThemever3/style.css
23.229.220.229200 OK 4.6 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/style.css
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 85222d22e94a5e3f72619c7016164634
8825a824f0316fb335c576d9116820cd036c243c
8e4135c9b2c423f0bfdee0d395f56c612f1c0e818db92cba818e03e35d56e866
GET /wp-content/themes/talanThemever3/style.css HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308401-5ecf-5ce4314f0a840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4637
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
talansbs.com/wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg
23.229.220.229200 OK 20 kB URL HTTP/1.1 talansbs.com/wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 173x300, components 3\012- data
Hash 89d6d2216b010fd1e604ced207664772
72653a2b7720d789e379aad0497e0ebf46853fdb
3f45439c8bc6370027a5b0f6fdec14c779cd131b4c0293671b7430d946468501
GET /wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:56 GMT
ETag: "7308374-4fec-5ce43151e6f00"
Accept-Ranges: bytes
Content-Length: 20460
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
talansbs.com/AddItems/menuend.png
23.229.220.229200 OK 798 B URL HTTP/1.1 talansbs.com/AddItems/menuend.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 82 x 37, 8-bit colormap, non-interlaced\012- data
Hash 480efa55c26f7b59be02bf0751f4de29
fe1eebd3bd386bcbd69b1bd356eda407c5690ef6
ebd3b63f60129d4caa1072a260dc4dfb7a5955025c0a88351d9fc449aae36a3c
GET /AddItems/menuend.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:57:02 GMT
ETag: "730019a-31e-5ce430abf6780"
Accept-Ranges: bytes
Content-Length: 798
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/PostDateIcon.png
23.229.220.229200 OK 275 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/PostDateIcon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 17 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash af5d486fa05b196bdd418b306554dbc0
c1ef3ba5798f9a0644d9fa3f2c401ee9efa786f5
77daa92902495effcc6ce882aab6191084141500e2bb3caa75f1a205bc9066fa
GET /wp-content/themes/talanThemever3/images/PostDateIcon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308479-113-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 275
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.talansbs.com/Additems/twittericon.png
23.229.220.229301 Moved Permanently 0 B URL HTTP/1.1 www.talansbs.com/Additems/twittericon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Additems/twittericon.png HTTP/1.1
Host: www.talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://talansbs.com/Additems/twittericon.png
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
twitter.com/javascripts/blogger.js
104.244.42.129200 OK 763 B URL HTTP/2 twitter.com/javascripts/blogger.js
IP 104.244.42.129:0
Hash 027938f07207ae7c1fedf5204b594135
bc165a29d076f8bff59de59ea4b77d16f3419d90
0d8d60555df1e14882a20cd41c4d1647d2c58a7801a64c7ab6f5d16a80a330ee
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:20 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167860742025409000; Max-Age=34214400; Expires=Thu, 11 Apr 2024 07:50:20 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678607419; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Sun, 12 Mar 2023 07:50:20 GMT
x-frame-options: DENY
x-transaction-id: d6e2ab69b624db2a
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-YTBiODIyZmQtMGYyYS00MGUxLThmYTQtNDE3ZTgxM2M1ZDgx'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 149
x-connection-hash: 5b91dffa01feff8e0719e34d49f3b01bfeb42a52b376a28593d7985a40b3c7a2
X-Firefox-Spdy: h2
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.129200 OK 1.3 kB URL HTTP/2 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.129:0
Hash d9e653ca74f248c55a17afc09780c1af
b9ebd49c8f75b0307805275c4880235555cecc74
23f05a16d2c12424b6bfadfc8d3a949e51f6a6bfd0a4fbf7f10c5b991e82a2dc
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:20 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167860742024690469; Max-Age=34214400; Expires=Thu, 11 Apr 2024 07:50:20 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678607419; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Sun, 12 Mar 2023 07:50:20 GMT
x-frame-options: DENY
x-transaction-id: 4c38c4f603d26cbc
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-ODFhY2M5MjctOGQ1NC00YTQ2LTliNDktOWQ0MTEwN2FiNWIx'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 135
x-connection-hash: 5b91dffa01feff8e0719e34d49f3b01bfeb42a52b376a28593d7985a40b3c7a2
X-Firefox-Spdy: h2
talansbs.com/wp-content/themes/talanThemever3/images/Page-BgTexture.jpg
23.229.220.229200 OK 86 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Page-BgTexture.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 2100x768, components 3\012- data
Hash 70be4b332799d6d0de56e0106abe835d
eeaf0af3058d896c46c70ef3d4dd016a8e92b39d
9e9bffbc7b2ebce2cc65e626c36ed90df28dd2783bac0cb245efe17838eff789
GET /wp-content/themes/talanThemever3/images/Page-BgTexture.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308462-1513b-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 86331
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
talansbs.com/wp-content/themes/talanThemever3/images/Sheet-c.png
23.229.220.229200 OK 259 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Sheet-c.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d31258d43c7b9b75b2656ddd0c749e1
f79ff53989885634e2dd816d349a24b448ea87d2
acbabf534ccdbdf8e562dc59fcb672083e4a02b960e0bdd3218d865455e83987
GET /wp-content/themes/talanThemever3/images/Sheet-c.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "730848b-103-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 259
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Header.jpg
23.229.220.229200 OK 32 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Header.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 967x95, components 3\012- data
Hash d819d144507308d9e036783623a3fb35
565105c460db58b97bb183549bba131533b2de1c
59bbd25145e7fc146dda9f75bd7951b25c2081ab23ac28ae079a3b03ec45cfec
GET /wp-content/themes/talanThemever3/images/Header.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730844b-7d36-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 32054
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
stats.wordpress.com/e-202310.js
192.0.78.27200 OK 3.3 kB URL HTTP/2 stats.wordpress.com/e-202310.js
IP 192.0.78.27:0
File type ASCII text, with very long lines (2690)
Hash eb6fd6d3dcd6eb8d1a5bb6e3fedd1722
b717c49402976649358912142b4b1af7ab7fed66
2b6e6a3a5f022846626fd8c792513fc55a754fd8a4337dcbdc92308cdf3650b8
GET /e-202310.js HTTP/1.1
Host: stats.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 12 Mar 2023 07:50:20 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
expires: Mon, 11 Mar 2024 07:50:20 GMT
cache-control: max-age=31536000
content-encoding: br
x-ac: 3.arn _dca MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash 333732d20ea666add59a8c2f40e6ee26
cafc979054d472ef7b9fe2f5b0c9b7fc6d4dd8d5
cf3f0169b1f263d845e75c3b5536fb4efd2af6b0c59b2c47a9b236c92ccceaaf
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
twitter.com/javascripts/blogger.js
104.244.42.129301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/javascripts/blogger.js
IP 104.244.42.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/javascripts/blogger.js
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 03195a6a339569d3
x-response-time: 107
x-connection-hash: bf0a668d728d4bdde16f43a3b39c6a2798aed004f981be7d2761d39641b8313a
date: Sun, 12 Mar 2023 07:50:20 GMT
server: tsa_o
talansbs.com/wp-content/themes/talanThemever3/images/spacer.gif
23.229.220.229200 OK 43 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/spacer.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /wp-content/themes/talanThemever3/images/spacer.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084b4-2b-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 43
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/themes/talanThemever3/images/subitem-bg.png
23.229.220.229200 OK 138 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/subitem-bg.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 1 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 1aef5ad7ec77499f495ddf5beaef6604
b6b49611ab03f65fba0e0a7693b3da553791bb53
f233bb6c5f9651c83cf57507f6055b967e0752abceb14ae4bde737269eb0a30e
GET /wp-content/themes/talanThemever3/images/subitem-bg.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084b9-8a-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 138
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/MenuItem.png
23.229.220.229200 OK 1.3 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/MenuItem.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 400 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 166ac9fc7b2d6fc43670c7e23515b07d
a1da7a4bdf0284398c31dece95483f6382544bfe
f5fdb32924af68a50bae4cccaf5268b5cfe5b4bc188d2b6c3cc7644509a63e71
GET /wp-content/themes/talanThemever3/images/MenuItem.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308453-50f-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1295
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.129301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 04fc1bfba2c8edf0
x-response-time: 107
x-connection-hash: cce046479b78dae2b1422b19ea72becadcd93c4a86b3f94339f56e7828169d64
date: Sun, 12 Mar 2023 07:50:21 GMT
server: tsa_o
www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 12 Mar 2023 07:50:21 GMT
Connection: keep-alive
Content-Length: 0
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b61032468a516115ba65d181952db420
40fe36b5cccce0cc31b7a61f57a58ac00e702e9c
9bda57d5c579bf6d973cbbffbd05714f7b5d0338c334a5f356f43ba2d4a2ab27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6087
Cache-Control: max-age=119785
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:21 GMT
Etag: "640c9d5f-1d7"
Expires: Mon, 13 Mar 2023 17:06:46 GMT
Last-Modified: Sat, 11 Mar 2023 15:25:19 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: N5amDZymbumPNjDFQqQonz1sNomR54pp6TPfYQ76t9uUJhMoDvtqbMimTG3lMrGBP6NfNOMSH05Lblk9iA4T7A==
content-length: 0
date: Sun, 12 Mar 2023 07:50:21 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.gravatar.com/dist/css/hovercard.min.css?ver=2023Maraa
192.0.73.2200 OK 1.9 kB URL HTTP/1.1 s.gravatar.com/dist/css/hovercard.min.css?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (8069)
Hash 61f9d983eb62bb05ec7a53e0cde1a645
865dac6893de02651a007239581da6e23beb9a88
3d261c73111b3ec277d6d40b15978839ebef180639f76ed698332798b16bbeb3
GET /dist/css/hovercard.min.css?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 09:10:35 GMT
ETag: W/"63b3f10b-1f86"
Content-Encoding: gzip
Expires: Sun, 19 Mar 2023 07:50:21 GMT
Cache-Control: max-age=604800
s.gravatar.com/dist/css/services.min.css?ver=2023Maraa
192.0.73.2200 OK 643 B URL HTTP/1.1 s.gravatar.com/dist/css/services.min.css?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (3236)
Hash e3d8ce6d4c0bfed4cbf303bf7a75f0ba
5262fb96cec66c94d099270658ddc908c698917f
792f46a05d6065063fc5d88d603dbe5b94a17826822a074db8b86ffd65d13c51
GET /dist/css/services.min.css?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 09:10:35 GMT
ETag: W/"63b3f10b-ca5"
Content-Encoding: gzip
Expires: Sun, 19 Mar 2023 07:50:21 GMT
Cache-Control: max-age=604800
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2573307db8caef0a070ba3ebd4f61e2e
28e8cb63280e9b5e4184017cb22aa5f197007450
87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18903
Expires: Sun, 12 Mar 2023 13:05:24 GMT
Date: Sun, 12 Mar 2023 07:50:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be71491cee9b47dc3ffb23b4fdff25b3
79c7d22c8df6d305f46c5779ccb9f25169d4d111
e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8487
x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BkEcBGizoAMFgOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 21:42:55 GMT
age: 36446
etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2573307db8caef0a070ba3ebd4f61e2e
28e8cb63280e9b5e4184017cb22aa5f197007450
87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18903
Expires: Sun, 12 Mar 2023 13:05:24 GMT
Date: Sun, 12 Mar 2023 07:50:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb5622b-64bb-44a9-ae57-cd90f8333c17.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb5622b-64bb-44a9-ae57-cd90f8333c17.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 215253944e7c16879f238738b0fbf474
4846fb7dd877767c913aa2f1a02df39dc7a53da0
e1cfdf434170527599c62e41e745d05c4a1a3359bf59ff7ea6b7ac4630fa0b44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb5622b-64bb-44a9-ae57-cd90f8333c17.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6782
x-amzn-requestid: f174b4ff-b25f-4280-8ade-b081e71a7269
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BotvIHO9oAMF1xA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640cf660-3b09471827484d894f9e73cf;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:45:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 3pMyJXUylIzHV8bEu8hF32hd7jEiRZ5f5NO2Ua6EnJdz36PTpjoNUA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 21:54:11 GMT
age: 35770
etag: "4846fb7dd877767c913aa2f1a02df39dc7a53da0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2573307db8caef0a070ba3ebd4f61e2e
28e8cb63280e9b5e4184017cb22aa5f197007450
87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18903
Expires: Sun, 12 Mar 2023 13:05:24 GMT
Date: Sun, 12 Mar 2023 07:50:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd79ce52-61f2-47b0-a88d-03f2fe3aa889.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd79ce52-61f2-47b0-a88d-03f2fe3aa889.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fd5c28821c8bf2d62d0c4332f06bd71
6e2c08457854437b2b851340277d31439e5ab470
86725a37e80a10c5b0b52a10e498225d97565752ec25303cb159a34386a49523
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd79ce52-61f2-47b0-a88d-03f2fe3aa889.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8845
x-amzn-requestid: b556bc0e-9cf5-4062-9df4-0ccee00cbab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BoswFH5soAMF2SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640cf4cd-0ba8e60549c78f9d3b720a20;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFRUOo6vNYBlNXfP-XzizobifYejOdXIuu_bj2owYGiDHDsv1HrMhA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 22:03:58 GMT
age: 35183
etag: "6e2c08457854437b2b851340277d31439e5ab470"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e665056-b1ff-4dc7-b901-397a9f3f3389.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e665056-b1ff-4dc7-b901-397a9f3f3389.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 84547d233db9291b8e2fb5eee1b92683
bb18380c07584b011b8d642d4e4401e0aeb4fae6
aba1c323ca556072319069c496a51e77cb4e85927947ed336e509326fcd961cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e665056-b1ff-4dc7-b901-397a9f3f3389.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6948
x-amzn-requestid: 79dd07a8-a13e-42bd-b26a-7a58a26fc119
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BjaHhGYDoAMFVAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ad6fc-3fc73b5f476846b768e1e36e;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 07:06:36 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: cqY0B-eOWKDCa4rqMdYKRsGd4OfMfsogHw3-KW7l_A4rioSXWWQEcg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Sun, 12 Mar 2023 07:30:41 GMT
age: 1180
etag: "bb18380c07584b011b8d642d4e4401e0aeb4fae6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
talansbs.com/wp-content/themes/talanThemever3/images/Block-h.png
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-h.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 3000 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 563223b46427bbe21e450e0c6762ae7d
50dfda7751cc2b10c4540791aa18c0d3d66ea895
8fde24c938870d309614d8616b14096f735252c0289b3e2d3670534acc01fe3c
GET /wp-content/themes/talanThemever3/images/Block-h.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730842c-4d4-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1236
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/PostBullets.png
23.229.220.229200 OK 216 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/PostBullets.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash 730632458dfe56963eeb62f543842dbd
4822792496fe9ffb9cbb3bfa69f78f6302f8880f
a1b9e567fe8ce5843400f7a2d966d2aee7a5934fa0e43c9e3f84fd9b9fc77ba4
GET /wp-content/themes/talanThemever3/images/PostBullets.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730846b-d8-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 216
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Block-s.png
23.229.220.229200 OK 347 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-s.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash b9633db4fd28dfd7b77d411c6b794559
2613a13b6a24a1b67726bb36b10af03728ee0aec
38293cdde3fabc7e03f4f947b5171edf046c2f52e98d7a58ce09eb0f6298282d
GET /wp-content/themes/talanThemever3/images/Block-s.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308433-15b-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 347
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 388235f946f2078e7ac12de869b0840b
1fb4f99bbad05a24e6cde4f454b24f1a7b3ab030
3f0e28e92730931c9c0fcd9a27d963e7c7564f41b93a7c7e55f2a47d09dea79e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/page.js?_=1678607421736
104.22.70.197301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/page.js?_=1678607421736
IP 104.22.70.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/page.js?_=1678607421736 HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 12 Mar 2023 08:50:21 GMT
Location: https://static.addtoany.com/menu/page.js?_=1678607421736
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7a6a7222ccf015fc-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2573307db8caef0a070ba3ebd4f61e2e
28e8cb63280e9b5e4184017cb22aa5f197007450
87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18903
Expires: Sun, 12 Mar 2023 13:05:24 GMT
Date: Sun, 12 Mar 2023 07:50:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26033b42139d27c847cf9881a17e0332
b196fbef36c2a5242abfc5d7115f1efd39499453
028dd1c86eaab6b991ad3dcb7fda21cdcfe8f9b22155c6bcb9363fbe379096ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4512
x-amzn-requestid: e9ba0dc3-3e1a-4ff5-8d0d-57386ced2fb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BotIeGZ-IAMFmBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640cf569-1a45fa73148fb01f3822ee29;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:40:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 5dasHBaMZCENF6r8miupz4Jzeqy_tuotsvkcSRgs6AtsrWexauN6SQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 21:42:45 GMT
age: 36456
etag: "b196fbef36c2a5242abfc5d7115f1efd39499453"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
172.217.21.174301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: sffe
content-length: 226
x-xss-protection: 0
date: Sun, 12 Mar 2023 07:50:20 GMT
expires: Sun, 12 Mar 2023 08:20:20 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60c95e46b874e5404fe3d3cc03e60512
2a5c926ca9264e71c52e7a714389ffba9caa7a71
65bfa154efbb8a169f32c8b8cffd31faaacc6daf7b7e4fb2ac655b68e1a8c4e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7117
x-amzn-requestid: 42df44a6-6963-4db2-9ab5-534c9883a559
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bosv8ErJIAMFtfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640cf4cc-20f83d8f7715fff50d8977a3;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: UkM0v5LR5xQj0uH3b7UE6XuOq_6xo2ah3kNnFZnQEjFJF4oUXjdS8A==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 21:42:45 GMT
etag: "2a5c926ca9264e71c52e7a714389ffba9caa7a71"
content-type: image/jpeg
age: 36456
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b61032468a516115ba65d181952db420
40fe36b5cccce0cc31b7a61f57a58ac00e702e9c
9bda57d5c579bf6d973cbbffbd05714f7b5d0338c334a5f356f43ba2d4a2ab27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6088
Cache-Control: max-age=119786
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:21 GMT
Etag: "640c9d5f-1d7"
Expires: Mon, 13 Mar 2023 17:06:47 GMT
Last-Modified: Sat, 11 Mar 2023 15:25:19 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
pixel.wp.com/g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1908&rand=0.3772277321088864
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1908&rand=0.3772277321088864
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1908&rand=0.3772277321088864 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:21 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 388235f946f2078e7ac12de869b0840b
1fb4f99bbad05a24e6cde4f454b24f1a7b3ab030
3f0e28e92730931c9c0fcd9a27d963e7c7564f41b93a7c7e55f2a47d09dea79e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com
151.101.84.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash b9e24937b9bed483feef94b5cdc39114
d17bb4230d4e6bc204041d6b7055ec4c51c7f77b
927e6f52902d207a572c6075acdc33bedab029a97ee7180538cf6799847a25a4
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:13 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 12 Mar 2023 07:50:21 GMT
x-served-by: cache-iad-kjyo7100116-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105435
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
172.217.21.174301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: sffe
content-length: 226
x-xss-protection: 0
date: Sun, 12 Mar 2023 07:50:20 GMT
expires: Sun, 12 Mar 2023 08:20:20 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ec6311aff40cad7ab34f00d36611b030
cf544610c8266b570673ea252aafe9339f145707
155dc155e18b34ee37d7c61224e421db376a38ac40e6fbf6c2939d8747a01c9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/modules/core.26680508.js
104.22.70.197301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/modules/core.26680508.js
IP 104.22.70.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/modules/core.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Mar 2023 07:50:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 12 Mar 2023 08:50:22 GMT
Location: https://static.addtoany.com/menu/modules/core.26680508.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7a6a7223cf7e993e-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
talansbs.com/wp-content/themes/talanThemever3/images/Block-c.png
23.229.220.229200 OK 294 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-c.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 986 x 3, 8-bit/color RGBA, non-interlaced\012- data
Hash a31cbc913d6038bf197e6425681a7a5c
92113039836ddaac5862913969a518ea159d1366
4ec285e0f3c625cc866fc90ca2fe3f8bf8101f16cc3d5103bb7dd9d4c4ea5565
GET /wp-content/themes/talanThemever3/images/Block-c.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308426-126-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 294
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/BlockContentBullets.png
23.229.220.229200 OK 263 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/BlockContentBullets.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash 536282cfcad39912e8b967a1a1483159
a5bab000b42a04dec1f713f627c6b8b41859c395
045116ad2c61fa11680ae0c44625cee31f0746e7dcb8cc250da88509b4763317
GET /wp-content/themes/talanThemever3/images/BlockContentBullets.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730843e-107-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 263
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Block-v.png
23.229.220.229200 OK 1.3 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-v.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 14 x 3000, 8-bit/color RGBA, non-interlaced\012- data
Hash 93244ac8aacca0d54cd329a5e794d44d
9adaeba5e8d9f1085cd1cf146f849671d7686eaa
eb514eb7937e27a019e32d9e335cf57ab786439b5a5382c7e6dd6f45b739db6d
GET /wp-content/themes/talanThemever3/images/Block-v.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308439-534-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1332
Keep-Alive: timeout=5
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/rssIcon.png
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/rssIcon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 19 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ba30d0e6792a146e239f38983203d6f
f6ffa47b9fe79fc11788e34b3d8c9bb927d94536
16ce4f8fc6874a33c5dfd02737f38e4c3ff0d07f8f467dde8311a4111fa6880d
GET /wp-content/themes/talanThemever3/images/rssIcon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084ac-497-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 1175
Keep-Alive: timeout=5
Content-Type: image/png
static.addtoany.com/menu/page.js?_=1678607421736
104.22.70.197200 OK 1.5 kB URL HTTP/2 static.addtoany.com/menu/page.js?_=1678607421736
IP 104.22.70.197:0
File type ASCII text, with very long lines (3076), with no line terminators
Hash 3401327dfdc2e540d32c193a0fe3240d
52a1467e849867e41519e2621d2465dc9ad6f062
2fb32e0e02af312d05a9b0501c183521ebeb9711022b318eb412e2686cfed962
GET /menu/page.js?_=1678607421736 HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:21 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 33515
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7a6a72235ad62e12-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
talansbs.com/wp-content/themes/talanThemever3/images/MenuSeparator.png
23.229.220.229200 OK 136 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/MenuSeparator.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 1 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d95d800ecc8f5fafe9f0d83eedc9513
f01a5112a22a0be3aa00890371754e1f13519087
3236a12e6ed86853d54e2c3e2e2986982305f0cc6afd5dc570cce84f9c074d5c
GET /wp-content/themes/talanThemever3/images/MenuSeparator.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730845b-88-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 136
Keep-Alive: timeout=5
Content-Type: image/png
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 2d5274e237fda05629b878e3b486d738
c0a7e224ea706cedffcf2a54e4cec119d3c56a95
684e374a9cc925b1063bb03a05983259651cd5aa4d8da5ba38ceae6076d4fee9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 875
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:22 GMT
Last-Modified: Sun, 12 Mar 2023 07:35:47 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 313
developers.google.com/
172.217.21.174301 Moved Permanently 0 B IP 172.217.21.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: ce0b8cb90ca31accb5ff0338f00a0fad
Date: Sun, 12 Mar 2023 07:50:22 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
platform.twitter.com/widgets.js
151.101.84.157200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 151.101.84.157:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash e537bb9176ab0d49ccaa2baf56ba5cd4
1be6d53a34b7dbdd869b3e0680c1c75a2a490c63
ef1af552de1464ddb5c212464755232eee06f1595aadc1afb8ed1a2a6a8f57d4
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 27630
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Accept-Ranges: bytes
Date: Sun, 12 Mar 2023 07:50:22 GMT
X-Served-By: cache-iad-kcgs7200031-IAD, cache-bma1622-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding
TW-CDN: FT
1.gravatar.com/avatar/56e22888e73df23b32b2d3799852af0e?s=60&d=http%3A%2F%2F1.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D60&r=G
192.0.73.2302 Found 0 B URL HTTP/1.1 1.gravatar.com/avatar/56e22888e73df23b32b2d3799852af0e?s=60&d=http%3A%2F%2F1.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D60&r=G
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/56e22888e73df23b32b2d3799852af0e?s=60&d=http%3A%2F%2F1.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D60&r=G HTTP/1.1
Host: 1.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 12 Mar 2023 07:50:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://www.gravatar.com/avatar/56e22888e73df23b32b2d3799852af0e?s=60&d=http%3A%2F%2F1.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D60&r=G>; rel="canonical"
Location: http://1.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60
Expires: Sun, 12 Mar 2023 07:55:22 GMT
Cache-Control: max-age=300
X-nc: HIT arn 4
www.google-analytics.com/ga.js
142.250.74.78200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Sun, 12 Mar 2023 06:13:07 GMT
Expires: Sun, 12 Mar 2023 08:13:07 GMT
Cache-Control: public, max-age=7200
Age: 5835
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
199.232.192.134301 Moved Permanently 219 B URL HTTP/1.1 talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
IP 199.232.192.134:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b22a8f71ae72ac4b781cff49386dfa9
a8e7202517458752851aeb18c9fb770e931fec34
186d5321baf20106cb6361d9ec524b818d876d773a5bd9dd5530ae5889d74be3
GET /embed.js?pname=wordpress&pver=2.66 HTTP/1.1
Host: talansbs.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 219
Server: Varnish
Location: https://talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
Content-Type: text/html
Cache-Control: public, max-age=31536000
Date: Sun, 12 Mar 2023 07:50:22 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
www.adobe.com/images/shared/download_buttons/get_flash_player.gif
2.21.240.208301 Moved Permanently 29 kB URL HTTP/1.1 www.adobe.com/images/shared/download_buttons/get_flash_player.gif
IP 2.21.240.208:0
ASN #20940 Akamai International B.V.
Hash 5be7f4b32251544012ea535ab980b4a1
3d2dd26b8f6dd92fd2eb9ca571865801df2a2b1d
fa105edd0b99a2ec12e50892a49d24ca8bda3f9b30feb3224778f773f3fb50e8
GET /images/shared/download_buttons/get_flash_player.gif HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Content-Length: 281
Server: Apache
Location: https://www.adobe.com/images/shared/download_buttons/get_flash_player.gif
Cache-Control: max-age=788
Expires: Sun, 12 Mar 2023 08:03:30 GMT
Date: Sun, 12 Mar 2023 07:50:22 GMT
Connection: keep-alive
Server-Timing: cdn-cache; desc=MISS, edge; dur=1, origin; dur=12, ak_p; desc="466279_34992332_485983009_231_3870_7_-";dur=1
Set-Cookie: ak_bmsc=DACB8E89FF6B9C1AD20331FE6A32211A~000000000000000000000000000000~YAAQzPAVAs9JMYmGAQAAw5LM1BP3licjCPJ5fuSsXDkpBcX8geTfnajetQILHGaXP9zwaO3gsTc2Sdpc+gaLL9pRjSO4eOX3um7owhKb9GNOlfiAe5pQtZZL7YAcrmgHWKEi/YCxhEYnfGWkFHXux2OTgKLEL7mfwqNkjscjtWZb0J5YQ95piJikd+c0HU3HyXQPIkRoLnI7okp+JGM0n3ZdKHQekLwJXXITkbDjqpdu3mEfjubpGh901zCeGn34Kkg8e7kWufcOnn4Gpnrj5WhMSik1gT8pTes9MO0w1b2Bl1i9/yNm0ZGwbrlIncP8V6sBGg==; Domain=.adobe.com; Path=/; Expires=Sun, 12 Mar 2023 09:50:22 GMT; Max-Age=7200; HttpOnly
connect.facebook.net/en_US/sdk.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 12 Mar 2023 07:50:22 GMT
Connection: keep-alive
Content-Length: 0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ec6311aff40cad7ab34f00d36611b030
cf544610c8266b570673ea252aafe9339f145707
155dc155e18b34ee37d7c61224e421db376a38ac40e6fbf6c2939d8747a01c9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.viglink.com/api/vglnk.js
18.155.145.20200 OK 29 kB URL HTTP/1.1 cdn.viglink.com/api/vglnk.js
IP 18.155.145.20:0
File type ASCII text, with very long lines (693)
Hash 18a10f22bd971df457201f5dcd81eef1
8508fb0103243bece8de7af7de5e58669eda27a3
3d45ef7516d63ff90e860d1ba7e2217ccc1582d4e8187ef571e6b5293fced1f6
GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 28829
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:36:11 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 07 Mar 2023 13:37:03 GMT
Cache-Control: public, max-age=604800
ETag: "18a10f22bd971df457201f5dcd81eef1"
X-Cache: Hit from cloudfront
Via: 1.1 c4d787a1103a5c1f813ed02541260b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HAM50-P1
X-Amz-Cf-Id: UIl7QfL3Xv0jWo9tflmMsR0DaMnmDF_ZR8eUu7KQxdjZs79WmEIUww==
Age: 411199
1.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60
192.0.73.2200 OK 34 kB URL HTTP/1.1 1.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60
IP 192.0.73.2:0
Hash b88a1a81c08b53fb96b7838fc94b2d63
0ffcd89a41fb6833bd6105426d61d25f756ad4b8
2a8c64cfb518832738d34fec056d756b9054d812bba3221c62596c59b7050942
GET /avatar/ad516503a11cd5ca435acc9bb6523536?s=60 HTTP/1.1
Host: 1.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 12 Mar 2023 07:50:22 GMT
Content-Type: image/png
Content-Length: 932
Connection: keep-alive
Last-Modified: Sat, 01 Mar 2008 02:44:06 GMT
Link: <https://www.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60>; rel="canonical"
Content-Disposition: inline; filename="ad516503a11cd5ca435acc9bb6523536.png"
Access-Control-Allow-Origin: *
Expires: Sun, 12 Mar 2023 07:55:22 GMT
Cache-Control: max-age=300
X-nc: HIT arn 4
Accept-Ranges: bytes
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=22111666&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1138930064&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678607423421&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1019114613.1678607423.1678607423.1678607423.1%3B%2B__utmz%3D69761045.1678607423.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1839526754&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.78200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=22111666&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1138930064&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678607423421&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1019114613.1678607423.1678607423.1678607423.1%3B%2B__utmz%3D69761045.1678607423.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1839526754&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.78:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=22111666&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1138930064&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678607423421&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1019114613.1678607423.1678607423.1678607423.1%3B%2B__utmz%3D69761045.1678607423.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1839526754&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Sun, 12 Mar 2023 07:50:22 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
syndication.twitter.com/settings?session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
104.244.42.8200 OK 284 B URL HTTP/2 syndication.twitter.com/settings?session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (663), with no line terminators
Hash 8792f18dcb406af2be326e0dd816eed7
d1ad89d9036b3985071b394706514862f7c687ce
19640da1d34fa31a031d58d27be6408f6703dddc3c4495f72d55a60f518b7cba
GET /settings?session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:21 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 12 Mar 2023 07:50:22 GMT
content-length: 284
content-encoding: gzip
x-transaction-id: 8d636786ad177c58
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 117
x-connection-hash: 916a86864fc5beda7a59e4abb2560640e9b6144ee8bd7b1adcf550cd6737ce15
X-Firefox-Spdy: h2
www.adobe.com/images/shared/download_buttons/get_flash_player.gif
2.21.240.208200 OK 1.7 kB URL HTTP/2 www.adobe.com/images/shared/download_buttons/get_flash_player.gif
IP 2.21.240.208:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 112 x 33\012- data
Hash feb21ee4b711858c4e3485f844cc9772
1678ec04014ec245f6daf72589f24bc55c42cbe1
b26af9f56cff4a8ea0a3c06eaa442962ac51317bec73931122df1d9c95f6388b
GET /images/shared/download_buttons/get_flash_player.gif HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2016 07:30:56 GMT
akamai-x-true-ttl: 900
content-type: image/gif
content-length: 1720
server: Apache
strict-transport-security: max-age=86400
accept-ranges: bytes
x-adobe-loc: ew1
x-adobe-source: 128.101
x-content-type-options: nosniff
cache-control: max-age=669
expires: Sun, 12 Mar 2023 08:01:31 GMT
date: Sun, 12 Mar 2023 07:50:22 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466279_34992332_485983050_30_4252_8_0";dur=1
X-Firefox-Spdy: h2
talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
199.232.192.134200 OK 26 kB URL HTTP/1.1 talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
IP 199.232.192.134:0
File type ASCII text, with very long lines (32006)
Hash 422c97d78598a0a3b21f3334b906484f
f40619766162b9611391f13acc73c154517d63c3
4c651006a219d21eebb37fbc613c0e9931e8769dcd5139a5a6203b6bc0c63a14
GET /embed.js?pname=wordpress&pver=2.66 HTTP/1.1
Host: talansbs.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25635
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Sun, 12 Mar 2023 07:50:22 GMT
Age: 1
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
talansbs.com/wp-content/uploads/2011/03/favicon.ico
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/uploads/2011/03/favicon.ico
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash fc4ae376bcc0378c8cbbe4af96e283ab
ea349ef73ae3158980ac6dc33c0f5615be70c21c
9a68aa421187be85c2400ceb3341bbefc802fb17275605731163a3265c58b4b3
GET /wp-content/uploads/2011/03/favicon.ico HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:22 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:57 GMT
ETag: "730851e-47e-5ce43152db140"
Accept-Ranges: bytes
Content-Length: 1150
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/x-icon
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash c933394484e67836e54c5daed83710a6
8c750a6c00d8bc6536b0fd21eb3b2df7c1f024ab
e2fdd3ce2ce0d896a75e8cd4a702bcb40aafbd325f2e255a44af626322f9a577
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 34b14cdd0625e67c346e5a77d7bcbf16
etag: "a0345c7e9dffab901926ec965175fa23"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 12 Mar 2023 08:05:49 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: yTM5RITmeDblTF2u2DcQpg==
x-fb-debug: vp9agp2OywKXSFxXM9pP6/sSxwgGp6IQwyTNivQgV1hpvL/7UfibfHS3qrnUy+9YlpjM6Vvo+VnQ2owte/zNdA==
content-length: 1686
x-fb-trip-id: 1904183273
date: Sun, 12 Mar 2023 07:50:22 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 206c5161ef17342c6b22c2b24e002a89
ef86f2786a6fb1a4a7794e3332c0b7bdc4890682
5b23ceb0b9634b6a9c0de5e10f932b99edaa99db8514f0c983f393e3cd2acf40
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
talansbs.com/small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf
23.229.220.229404 Not Found 9.1 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash bf667bab6e6c6497e08cc12c63348b65
2913f6cd017248f19d1135d53202f35b0d9b49bd
b24feb6d43c6c4f1bb3984ce49996be3e90ee5523818ac38b5fc575ff4132869
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
142.250.74.109200 OK 11 kB URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 142.250.74.109:0
Hash 31b470bb1f888cd73c7df2da3994d424
59735bd0bea45251a24023b5c33bf4417f448339
15ba7eeba8981c415759d9e1cd08557515391d56e80b2ca9a25b151a81e281aa
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 12 Mar 2023 07:50:22 GMT
content-security-policy: script-src 'nonce-LMZDmQaLY4IwRLsWoD6YnQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
151.101.84.157200 OK 2.6 kB URL HTTP/2 platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (7891), with no line terminators
Hash 53e9844a2ab664c62ef616f14c300c75
6ae8675a813d2355377f3039b449b42fc84fce6c
d6a86497618799a0025164855a16585207da6de64b93b3a74de3ae730694fc83
GET /js/button.e7f9415a2e000feaab02c86dd5802747.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:06 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "506673dbdb9085e7201e137e893cc152+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 12 Mar 2023 07:50:22 GMT
x-served-by: cache-iad-kiad7000128-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2618
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c11248ad196c57fdf878000b4591a416
f86236c890bcceaf313e5021bf8ef6669688ea77
550e8187d0a76ef1d3127e200c20ab609ee72a44bc05c040bf178f4c8ec5eebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
disqus.com/embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default
151.101.0.134200 OK 2.7 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default
IP 151.101.0.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2840)
Hash 5a0428ac6c287b3fe65a2cafc4ecefed
bd6d26dbee90eb6d5418fc4ec357301cf4e63efa
0867f8a625e2435516a5c10d796e22226107157944fb17cbd0c853257afd3c8f
GET /embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2709
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Fri, 04 Nov 2022 15:21:40 GMT
ETag: W/"lounge:view:274977158.88753e381cbdcf9c73a1157636b054b4.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Sun, 12 Mar 2023 07:50:22 GMT
Age: 1
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
151.101.84.157200 OK 14 kB URL HTTP/2 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32037)
Hash 5a5f82f9d2c1fc86f320b7c08ddad1b7
5c8f4cafda96bb9e27749d4a02e1728d43b9a4f4
aa240b580471b7fdea2e24645b7bfd4fe08c24f25b801ea519bb393337d0b0f8
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:10 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "28919252629e2fa1d4ed52f48cb66ac0+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 12 Mar 2023 07:50:22 GMT
x-served-by: cache-iad-kiad7000079-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 13592
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
151.101.84.157200 OK 14 kB URL HTTP/2 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32037)
Hash 5a5f82f9d2c1fc86f320b7c08ddad1b7
5c8f4cafda96bb9e27749d4a02e1728d43b9a4f4
aa240b580471b7fdea2e24645b7bfd4fe08c24f25b801ea519bb393337d0b0f8
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:10 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "28919252629e2fa1d4ed52f48cb66ac0+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 12 Mar 2023 07:50:22 GMT
x-served-by: cache-iad-kiad7000079-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 13592
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js
143.204.55.127200 OK 496 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (958), with no line terminators
Hash 7f2d0fca9ed6b9bbbb6bf359f1402360
53e2be5c5dd7399a0650c543f32f2366fed8bd0f
ffdba86ea9261bcdb38983056f2baa71b5b5ad2016b0afa89b8a470d4395eae1
GET /next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 496
date: Thu, 23 Feb 2023 19:13:47 GMT
server: nginx
last-modified: Thu, 23 Feb 2023 18:52:58 GMT
etag: "63f7b60a-1f0"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 23 Feb 2024 19:13:47 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AaImX4mSAuInUE2rMM0tsnihwLEYWkrI9MaxOnz5C4CHi4YTvSvOXw==
age: 1427794
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js
143.204.55.127200 OK 94 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32023)
Hash bf4a0b5b88f74f7ef0476bf5f18d26b6
7f5b902779d8379c2790a6d07c49c7c25d30f1d5
05ff45a6562c6c33d76dd0c58498dcf5dba43d6e2240b94b05091d3e47c2d635
GET /next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94186
date: Wed, 18 Jan 2023 17:45:34 GMT
server: nginx
last-modified: Wed, 18 Jan 2023 17:40:51 GMT
etag: "63c82f23-16fea"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 18 Jan 2024 17:45:34 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q0dPOdEakGexvkdpR5Inc2-793hzSqTicgcxUKoU4MOh3f1h0mB4cA==
age: 4543487
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423714%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423714%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423714%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:22 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 12 Mar 2023 07:50:22 GMT
content-length: 43
x-transaction-id: 5cc158ab78888911
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 916a86864fc5beda7a59e4abb2560640e9b6144ee8bd7b1adcf550cd6737ce15
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423715%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423715%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678607423715%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c07232cb0da06c37c04070f1e551515af5d0d9ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:21 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 12 Mar 2023 07:50:22 GMT
content-length: 43
x-transaction-id: 49771512e5373fb1
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 916a86864fc5beda7a59e4abb2560640e9b6144ee8bd7b1adcf550cd6737ce15
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
143.204.55.127200 OK 33 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
IP 143.204.55.127:0
File type ASCII text, with very long lines (65469)
Hash b1abfb9db5e807b98ed65ce8623d7dc5
445a4767c22e08ba896b756d215d29d8888f1d4e
19fab4127c2a939ec51c122dd03bbb28c4d3146794e982889c7ed617ef23417c
GET /next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 33270
date: Wed, 15 Feb 2023 19:09:53 GMT
server: nginx
last-modified: Wed, 15 Feb 2023 18:40:44 GMT
etag: "63ed272c-81f6"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 15 Feb 2024 19:09:53 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MqIiKzzR8XjNK8J3beIr-MIfuW4-77P2v_kqGeERagM0wOAZMF-0xA==
age: 2119229
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js
143.204.55.127200 OK 130 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32018)
Size 130 kB (129739 bytes)
Hash 3d77971e869a0324d344d0977bcb5d89
0fccc448477f353e16a77b3c75e544936797156f
5929ac6b285678bfece5402dab180695c9841bc0cc37e079fe4fc2b310498da2
GET /next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 129739
date: Thu, 23 Feb 2023 19:13:47 GMT
server: nginx
last-modified: Thu, 23 Feb 2023 18:52:58 GMT
etag: "63f7b60a-1facb"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 23 Feb 2024 19:13:47 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6QjkkrCu1XrUNvri-U-wbPRwcySECWf7qVlws9QeWlvc7uZqLJ2fQQ==
age: 1427795
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
23.229.220.229404 Not Found 12 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 62d51a39737ab4d747317e79942d07f0
a6370c0276d270965129a5bfd3f5d9519079c349
a40afb7c785db2d54af96444124210b8fa4d48e924a3ccf6fea283592ad87d31
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:21 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c5612c5131d59819b60bcd3123fbe1e
86f82bfa3a20987ac256d2efd06dc95c0df285e8
00fc14cc05fb85329d10ee97f1c959244f274c67d56a37f4eb8006acd0e867bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 12 Mar 2023 07:50:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.127200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Sun, 15 Jan 2023 02:16:14 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-3317"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 15 Jan 2024 02:16:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2uZ5S57T78M0TDstKjwAKEEiskLFhmHODyM17j7oAafJOu0JsW4GbQ==
age: 4858448
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg
143.204.55.127200 OK 840 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (736)
Hash 727e30eb9b6c1e85cb010b9c8eb04c7e
5b7ed3f88c4d25d1d9e15bbd15af68daf5c573b4
0589c5845288117448d7aa710af60618b151d78efd1a2653f89a0b57f7eb3de8
GET /next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 840
date: Wed, 25 Jan 2023 03:23:40 GMT
server: nginx
last-modified: Fri, 20 Jan 2023 22:02:55 GMT
etag: "63cb0f8f-348"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 25 Jan 2024 03:23:40 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vz0EXXzaXGYkKxtmypo3Lz8R_HSSWBZW9CCs_FqkNk1J7ifAvMqYfw==
age: 3990402
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg
143.204.55.127200 OK 891 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (787)
Hash 8c96be6b50de1c3fab838c5f050e0be5
d0eb4a80710c083c77020cc3b6cd6756cf0bca60
068753b8f09b32ad8a3283199c7252090d0076a56924df724dda72828ae31b95
GET /next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 891
date: Sat, 28 Jan 2023 10:59:15 GMT
server: nginx
last-modified: Fri, 20 Jan 2023 22:02:55 GMT
etag: "63cb0f8f-37b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 28 Jan 2024 10:59:15 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UpAD448y4LkhnhtV4dw9558IKOPxKC39-preCvhkqmYgzERe02NK_w==
age: 3703867
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg
143.204.55.127200 OK 605 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (503)
Hash 3bc0b4bff6c268a4ceaf404014b9be42
d8f61dc82cbbd889b66505bb3e9c7711b9bb8cb5
a657bedd3bc0c106f7cfa5fe6556a0b7e175870d33bd7da9ef67ffcffbafda69
GET /next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 605
date: Tue, 17 Jan 2023 07:05:35 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-25d"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jan 2024 07:05:35 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: siXlx0Ib_wFgHyT2dYbBcHSTMRpNOfvN-9qG-us2Cy5GPza-uD9hkg==
age: 4668287
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.127200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.127:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Tue, 17 Jan 2023 06:16:10 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-6e3"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jan 2024 06:16:10 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Eg5m1g-LRxwcpESOvHRcbhWPOee6ThwTSWJAeLXjlS3yXV9Z8cKVUw==
age: 4671252
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.127200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.127:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Wed, 18 Jan 2023 06:17:27 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 18 Jan 2024 06:17:27 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JopX1Rzv56N2X0qFc5yAgBAJBHZU-QXQqqa9D6Izm3douQE8jPBrpw==
age: 4584775
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
IP 142.250.74.106:0
Hash 451bea8c68653671e59797b5206dd253
0d2a80376ca561da68e184e590d0d4e23b206182
1881c9d0909af1820c1358c5290b34edfa509c6f15a65e7c1ee6719263efe66b
GET /css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 12 Mar 2023 07:50:22 GMT
date: Sun, 12 Mar 2023 07:50:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Mar 2023 13:09:06 GMT
expires: Wed, 06 Mar 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 412877
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 Mar 2023 13:15:37 GMT
expires: Thu, 07 Mar 2024 13:15:37 GMT
cache-control: public, max-age=31536000
age: 326086
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 11 Mar 2023 12:49:39 GMT
expires: Sun, 10 Mar 2024 12:49:39 GMT
cache-control: public, max-age=31536000
age: 68444
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=263&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=7vi37f7p4vdld&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
199.232.192.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=263&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=7vi37f7p4vdld&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
IP 199.232.192.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=263&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=7vi37f7p4vdld&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Sun, 12 Mar 2023 07:50:23 GMT
Cross-Origin-Resource-Policy: cross-origin
talansbs.com/small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92
23.229.220.229200 OK 37 B URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash 4d6e96cca45089cbf8cee6628831eca1
345ec56d8b648374b12f2d36b2b9041b7400e2c9
e89ec2b2cccb346ec4bc303eda6a08c5f23223db2a893b4bb0db2ef31d1b4d18
GET /small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1019114613.1678607423.1678607423.1678607423.1; __utmb=69761045.1.10.1678607423; __utmc=69761045; __utmz=69761045.1678607423.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:23 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 37
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 595273c27981175204968166c4f34aca
e477e89e6302d11a494aacb93fb6a3bf2871b464
190b16059a538071c5709cb248f578985c0c446c37b9efc5b6849694ffb0c58a
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=97120
Date: Sun, 12 Mar 2023 07:50:24 GMT
Etag: "640c4a6c-1d7"
Expires: Mon, 13 Mar 2023 10:49:04 GMT
Last-Modified: Sat, 11 Mar 2023 09:31:24 GMT
Server: ECAcc (bsa/EB6C)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dtxpoN1uRNuKn8Vj6ZOgEodq2m7RJ-bljSTgi0zX9p_uRMF1Hr2VkQ==
Age: 4660
api.viglink.com/api/ping
176.34.85.179200 OK 220 B IP 176.34.85.179:0
File type ASCII text, with no line terminators
Hash 8812ed8babe668fe34b35a0c414ac09c
78892f539af070f521f36f6f18a19d7b5e4cb3c3
80103bd5712668ef87669698a363d2a8c738f306a4fdb990a4ef2af04645e2d9
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 171
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://talansbs.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Sun, 12 Mar 2023 07:50:23 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 220
Connection: keep-alive
talansbs.com/wp-content/plugins/greybox-integrator/greybox/w_close.gif
23.229.220.229200 OK 74 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/w_close.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 11 x 11\012- data
Hash 910dd85634d6c0c6b3bd9a081ca4b09b
9ea94f1d7c68b7317f7c8a4f7881d58bfa1bbdce
7a2730e63aee037949864ea19477701b096c00310ba32e44e22f2124a9c72367
GET /wp-content/plugins/greybox-integrator/greybox/w_close.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1019114613.1678607423.1678607423.1678607423.1; __utmb=69761045.1.10.1678607423; __utmc=69761045; __utmz=69761045.1678607423.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:24 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730683e-4a-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 74
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/plugins/greybox-integrator/greybox/header_bg.gif
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/header_bg.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 223 x 35\012- data
Hash 11594865f8d093dfae37f12d20f281d6
9ca0a3a12899c3bd4afef823575e2691cc54cc02
6f1835a06585a3cf90a0b7e85f67607fddebb9a4e7f81f534257e61b904e26cf
GET /wp-content/plugins/greybox-integrator/greybox/header_bg.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1019114613.1678607423.1678607423.1678607423.1; __utmb=69761045.1.10.1678607423; __utmc=69761045; __utmz=69761045.1678607423.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:24 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306823-4a4-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 1188
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/plugins/greybox-integrator/greybox/g_close.gif
23.229.220.229200 OK 541 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/g_close.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 25 x 30\012- data
Hash ae7187edec916ea7b4aa2f77dff1b091
016aafa05c05c382cb6f87989bd4d8261141bf2a
3e7f0e56964b201b30b49fb975290614ac8b9ed8ec7b4849b519a33f0c847aa5
GET /wp-content/plugins/greybox-integrator/greybox/g_close.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1019114613.1678607423.1678607423.1678607423.1; __utmb=69761045.1.10.1678607423; __utmc=69761045; __utmz=69761045.1678607423.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:24 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306812-21d-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 541
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/plugins/greybox-integrator/greybox/indicator.gif
23.229.220.229200 OK 8.2 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/indicator.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 100 x 100\012- data
Hash f64b6f735c03431a65c7b211f55f5522
4d9a0c9e8d7aa20d6e6e3ea7881a41503028a7da
325c9abd3a010d95544f93d94a8ae5b9fae2a70affb4bfa260dd161cbf2e295b
GET /wp-content/plugins/greybox-integrator/greybox/indicator.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1019114613.1678607423.1678607423.1678607423.1; __utmb=69761045.1.10.1678607423; __utmc=69761045; __utmz=69761045.1678607423.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sun, 12 Mar 2023 07:50:24 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306827-202e-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 8238
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
api.viglink.com/api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572
176.34.85.179200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572
IP 176.34.85.179:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Sun, 12 Mar 2023 07:50:24 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
api.viglink.com/api/sync.js?key=034153a8f6f990b64f375d12e1cc4572
176.34.85.179200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.js?key=034153a8f6f990b64f375d12e1cc4572
IP 176.34.85.179:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.js?key=034153a8f6f990b64f375d12e1cc4572 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Sun, 12 Mar 2023 07:50:24 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
api.viglink.com/api/domains
176.34.85.179200 OK 41 B URL HTTP/1.1 api.viglink.com/api/domains
IP 176.34.85.179:0
File type ASCII text, with no line terminators
Hash a32369b9ec3c18e78f4ecfcff7260ef1
b0970c12d0a033be41598191c534caa48093f608
16729d5addaafc0d2ad2176dfb2c1bfb552f997a222ca1f68ad884f3639946b9
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 268
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://talansbs.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Sun, 12 Mar 2023 07:50:24 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive
talansbs.com/Additems/twittericon.png
23.229.220.229404 Not Found 0 B URL HTTP/1.1 talansbs.com/Additems/twittericon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
GET /Additems/twittericon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 Mar 2023 07:51:59 GMT
expires: Thu, 07 Mar 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 345504
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
76.76.21.142308 Permanent Redirect 0 B URL HTTP/1.0 www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
IP 76.76.21.142:0
GET /hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
Refresh: 0;url=https://www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
server: Vercel
www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
76.76.21.142404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
IP 76.76.21.142:0
GET /hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 134544
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Sun, 12 Mar 2023 07:50:20 GMT
etag: W/"6a18c9a257500d9f5660d7a78d38d8ae"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::h8rvq-1678607420060-55ea2089571f
X-Firefox-Spdy: h2
twitter.com/javascripts/blogger.js
104.244.42.129200 OK 0 B URL HTTP/2 twitter.com/javascripts/blogger.js
IP 104.244.42.129:0
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:21 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167860742130150490; Max-Age=34214400; Expires=Thu, 11 Apr 2024 07:50:21 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678607420; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Sun, 12 Mar 2023 07:50:21 GMT
x-frame-options: DENY
x-transaction-id: 36704dde065fbba7
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-NWZmN2E4ZGUtMmFiYS00ZTlmLThjOWItNjc1MjA3OWJkNDA4'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 139
x-connection-hash: 5b91dffa01feff8e0719e34d49f3b01bfeb42a52b376a28593d7985a40b3c7a2
X-Firefox-Spdy: h2
www.tealdit.com/toolbar/v1.js
104.21.72.39200 OK 0 B URL HTTP/2 www.tealdit.com/toolbar/v1.js
IP 104.21.72.39:0
GET /toolbar/v1.js HTTP/1.1
Host: www.tealdit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 25 Oct 2019 01:09:08 GMT
access-control-allow-origin: *
etag: W/"5db24b34-1f65"
expires: Sun, 12 Mar 2023 04:14:06 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: BDBC:2F89:2496B26:25A6F8B:60BF3F92
via: 1.1 varnish
age: 127
x-served-by: cache-osl6526-OSL
x-cache: MISS
x-cache-hits: 0
x-timer: S1623146386.195318,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: e47c2109ef8ff41ba1c17aa8a904b2f084884b21
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tj5sk8%2BeU4%2FDvoVrPb7PA61iy%2F69mYb9qOPR2dRN2biW3H0en0YSz1YND%2Fr9wQ2gkJ%2Fv91Wbx8f9FoRvCGL5DmU9LtOevH%2BdsZmDUY%2F7iuCb0R0gz8mtBxIgHRN%2B1c8RUTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a6a7219ab55069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
23.229.220.229404 Not Found 0 B URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Sun, 12 Mar 2023 07:50:20 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 12 Mar 2023 07:50:21 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 24051669
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7a6a7222ca7f0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2