r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 234b80a5a27f3d377e322e680413479d
3da8ba535ec19898f5b83ece48cd4038ac2bf557
370104df5dd8f739601a4be42ae41bb92f365dcf585823a3c14733f7c394e926
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "370104DF5DD8F739601A4BE42AE41BB92F365DCF585823A3C14733F7C394E926"
Last-Modified: Sun, 12 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7970
Expires: Tue, 14 Mar 2023 05:06:26 GMT
Date: Tue, 14 Mar 2023 02:53:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 405abd45d42535567c1ecb518f4bdb04
0505c27fe2921bfa89657173fb77ca7280f04772
bdef4e5edfe0bf3fefb4dc5625e41f3faeb23a0afd24c4e6255f40f757568c35
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDEF4E5EDFE0BF3FEFB4DC5625E41F3FAEB23A0AFD24C4E6255F40F757568C35"
Last-Modified: Sun, 12 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8106
Expires: Tue, 14 Mar 2023 05:08:42 GMT
Date: Tue, 14 Mar 2023 02:53:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ae4d7bec26e013433e638f87260aa632
62384e39bc90d0b2ab92895220f0383e678669f4
b704031d560770485c9552dcf56b911b7b5ad45d8a3f73acd17dbbbeeff294f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B704031D560770485C9552DCF56B911B7B5AD45D8A3F73ACD17DBBBEEFF294F4"
Last-Modified: Sun, 12 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10927
Expires: Tue, 14 Mar 2023 05:55:43 GMT
Date: Tue, 14 Mar 2023 02:53:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Backoff, Alert, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 14 Mar 2023 02:14:09 GMT
content-type: application/json
age: 2367
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rM28pS06uHTX2nSYW+IEUmtTIXyxwTYY7b0IOsP7zx7YLKIzD9/4l+h7Ud9F6TtA3s/nlsTyJuU=
x-amz-request-id: KSX0NNKNM7VXYGV9
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 14 Mar 2023 02:46:38 GMT
age: 418
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
talansbs.com/http:/talansbs.com/?p=92%27;
23.229.220.229301 Moved Permanently 0 B URL HTTP/1.1 talansbs.com/http:/talansbs.com/?p=92%27;
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /http:/talansbs.com/?p=92%27; HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Mar 2023 02:53:36 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/
23.229.220.229200 OK 8.0 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1403), with CRLF, LF line terminators
Hash a436da7e7f1bc0ae8632f6eb69403f41
3b991c3a57ab834f1e05448cb8d8e25ac563720c
632d70d8213afe7f3cd9b68ab28b62b007c85a0e5484b17850088c0f153596e5
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Link: <http://wp.me/p1E8mN-1u>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7995
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202311
192.0.77.32200 OK 3.2 kB URL HTTP/1.1 s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202311
IP 192.0.77.32:0
File type ASCII text, with very long lines (2788)
Hash 844b0e2ae8eba4159dd5edd8efbde50c
757861da25bea58b1bc03203f65ae93673cfc065
ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
GET /wp-content/js/devicepx-jetpack.js?ver=202311 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5bffef65-52b6"
Content-Encoding: gzip
Expires: Tue, 12 Mar 2024 00:00:56 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca MISS
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-nc: HIT arn 2
s.gravatar.com/js/gprofiles.js?ver=2023Maraa
192.0.73.2200 OK 7.4 kB URL HTTP/1.1 s.gravatar.com/js/gprofiles.js?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (24043), with no line terminators
Hash b94596ffc2746c0e33c2039215531592
6a6fde47cda13c98489c70905c18b815910d1c4d
4e98be196118a9cd8e66c910fae42a8a45d6781f360996eadc691263d6193462
GET /js/gprofiles.js?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Sep 2022 11:48:47 GMT
ETag: W/"6323111f-5deb"
Content-Encoding: gzip
Expires: Tue, 21 Mar 2023 02:53:36 GMT
Cache-Control: max-age=604800
stats.wordpress.com/e-202311.js
192.0.78.27301 Moved Permanently 162 B URL HTTP/1.1 stats.wordpress.com/e-202311.js
IP 192.0.78.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /e-202311.js HTTP/1.1
Host: stats.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 14 Mar 2023 02:53:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://stats.wordpress.com/e-202311.js
X-ac: 3.arn _dca BYPASS
apis.google.com/js/plusone.js?ver=3.6
142.250.74.46200 OK 21 kB URL HTTP/1.1 apis.google.com/js/plusone.js?ver=3.6
IP 142.250.74.46:0
File type ASCII text, with very long lines (1429)
Hash 1eb3db7a5eb87f9d75294ef8872f77a9
acfbf73b2bb7a9cdee3e14b864166c4363ce0ecf
a73a1977494fbcda1e304d48c0c8eb831418334a117270408e04cfecaefbdf11
GET /js/plusone.js?ver=3.6 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Content-Length: 21023
Date: Tue, 14 Mar 2023 02:53:36 GMT
Expires: Tue, 14 Mar 2023 02:53:36 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "0fc9cb8ed4f547b2"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
talansbs.com/wp-content/themes/talanThemever3/script.js
23.229.220.229200 OK 2.1 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/script.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash d84911a5c89c989273713f1d3f8a7731
35073377101e6502602d01e3ff903c95d70ccf88
49e5d2dd4042804c2d21a34dfe408a84d7c8d81f31fd4029dc0a55bd588f2f7d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/talanThemever3/script.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73083cd-1bf7-5ce4314f0a840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2144
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash db27ecc2f481e8871b2e99584e751660
e671ecb839d53e296f4ec303208ddb713c72aecc
5c910268b5c4f0244540c5570056673f8cbe4a0979f301363cb56dc359c147df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C910268B5C4F0244540C5570056673F8CBE4A0979F301363CB56DC359C147DF"
Last-Modified: Sun, 12 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7840
Expires: Tue, 14 Mar 2023 05:04:16 GMT
Date: Tue, 14 Mar 2023 02:53:36 GMT
Connection: keep-alive
platform.twitter.com/widgets.js?ver=3.6
192.229.233.25200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js?ver=3.6
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js?ver=3.6 HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 307
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:36 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.65301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 73bad0ec7df0fc96
x-response-time: 101
x-connection-hash: a3f417a2bce4d8a1cdaace15826754d47252016d8073cd637f19b475a1b961e3
date: Tue, 14 Mar 2023 02:53:36 GMT
server: tsa_o
twitter.com/javascripts/blogger.js
104.244.42.65301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/javascripts/blogger.js
IP 104.244.42.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/javascripts/blogger.js
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 7b39b47411cdf1ee
x-response-time: 101
x-connection-hash: 5e637fb500200c7119ecfb8dee2ddfda785971a4c0ef196ff67b0f165e4e094b
date: Tue, 14 Mar 2023 02:53:36 GMT
server: tsa_o
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 14 Mar 2023 02:12:32 GMT
age: 2464
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.wibiya.com/Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6
172.67.143.66301 Moved Permanently 244 B URL HTTP/1.1 cdn.wibiya.com/Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6
IP 172.67.143.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 649e5855d0179b9929070c5c19859e81
bbecd8e3f922a2c118717c2ddcf2e5a39361c877
68ca7309190a7a96832234b18d279960a5806f6a3ab9a641d323c1b193569707
GET /Toolbars/dir_0862/Toolbar_862127/Loader_862127.js?ver=3.6 HTTP/1.1
Host: cdn.wibiya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:36 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.tealdit.com/toolbar/v1.js
Cache-Control: max-age=2678400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Bj05gKYlPB8rcP50gdr3td6R8xCcV6%2BMofeiw3xQu9F7wFMkPxmYK4qnGmL%2BjRN2BtSj5rPI%2FypbitNs1zfuDDNSAa4oeca042sQCo86uXPS%2BB4vaAEcdKogat0ToMsxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a793a301a30b4eb-OSL
alt-svc: h2=":443"; ma=60
talansbs.com/Scripts/swfobject_modified.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/Scripts/swfobject_modified.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash ce5a427faf6f76ebe6e541cf19be961d
9b854580071a7d46a49a3729ec97207eff8818ff
7c0bd57e5392369cffbb391872dfa58fb485bd9eb143f79fc6f37945dc0a2e0b
Analyzer Verdict Alert fortinet Malware
GET /Scripts/swfobject_modified.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 613ed91b2f3e9c3fa04635d2465747e0
d54aff343cae91c770a0db6f7e502da8c3258cc8
d3e11f0b34d758b2785fcc80075e8608da6b185ba280cbac47c13aece7b6cac6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 54
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:36 GMT
Etag: "640f068a-139"
Last-Modified: Tue, 14 Mar 2023 02:52:42 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 613ed91b2f3e9c3fa04635d2465747e0
d54aff343cae91c770a0db6f7e502da8c3258cc8
d3e11f0b34d758b2785fcc80075e8608da6b185ba280cbac47c13aece7b6cac6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4128
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:36 GMT
Last-Modified: Tue, 14 Mar 2023 01:44:48 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 313
talansbs.com/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6
23.229.220.229200 OK 380 B URL HTTP/1.1 talansbs.com/wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 1a6b36720f26b53b2c4b895541fed55b
ab6a73019e1acb1a2b960f09777a63232423c595
c6f2965f3711560332e6e5b87522d305f98d196f0fc01776e882eb94a70c30ce
GET /wp-content/plugins/the-events-calendar/resources/events.js?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307b57-2af-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 380
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/author-box-1/authorbox.css?ver=3.6
23.229.220.229200 OK 282 B URL HTTP/1.1 talansbs.com/wp-content/plugins/author-box-1/authorbox.css?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 7b54cde01512444ba805987192bf5573
2cbf42f40180878b7319a0f45efa098d328349ed
30d52240c68378fe55204a407b0f379db0ff25cf4c8d4840ea10e1cd69aeee4b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/author-box-1/authorbox.css?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:39 GMT
ETag: "7306413-258-5ce43141b08c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 282
Keep-Alive: timeout=5
Content-Type: text/css
talansbs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
23.229.220.229200 OK 3.1 kB URL HTTP/1.1 talansbs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash be877782551a115e6da253d62cc3a6b2
b06a56238dcc28a6343c66d41aab3ad12a9c4f08
aba99fe4bef6b2ef9f9f0824e9dbdf7dede23e22a98b2305820c1f25a37e7380
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:59 GMT
ETag: "7306ddc-1c20-5ce43154c35c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3068
Keep-Alive: timeout=5
Content-Type: application/javascript
talansbs.com/wp-content/plugins/contact-form-7/styles.css?ver=2.4.5
23.229.220.229200 OK 400 B URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/styles.css?ver=2.4.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 0525b8a257e977b19e38c2bf6cf898cd
0330002b2730a97cd366746adedc53f09f7c09ad
f1cf0e958cf7fad69c47b43e67e86a02ba31a33505e0bb05c14bed3459b6df0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/styles.css?ver=2.4.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306494-3b7-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 400
Keep-Alive: timeout=5
Content-Type: text/css
talansbs.com/wp-includes/js/jquery/jquery.js?ver=1.10.2
23.229.220.229200 OK 33 kB URL HTTP/1.1 talansbs.com/wp-includes/js/jquery/jquery.js?ver=1.10.2
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32072)
Hash ce6939bfb13a25fa5801c2c6773df836
eb5b20e0308645fde063a0bf2abf80f71e655376
ef66e613025d34884307f2403837ab0cb0c2b5d94efbf5c73ff066538359adfb
GET /wp-includes/js/jquery/jquery.js?ver=1.10.2 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:59 GMT
ETag: "7306e02-16bc8-5ce43154c35c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 32815
Keep-Alive: timeout=5
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS.js
23.229.220.229200 OK 3.7 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 665a74221b6dd5f5eeeb8714e3c4da9e
125f56b3f2c46ae0f1969f23e5e5da549507be80
8aa29c29ae3d032afdf02f3e2291716280bfe15931b0b3a74b2d21fcc5103457
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/AJS.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306809-289c-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3723
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.tealdit.com/toolbar/v1.js
104.21.72.39301 Moved Permanently 0 B URL HTTP/1.1 www.tealdit.com/toolbar/v1.js
IP 104.21.72.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /toolbar/v1.js HTTP/1.1
Host: www.tealdit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 14 Mar 2023 03:53:36 GMT
Location: https://www.tealdit.com/toolbar/v1.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIcLgmsRcDg9Wy2%2FvIL6r%2BEk80BOKAGZbZaCfe5THzcjw8Haopnlo6t1rdeRQfEYXa34dyCDBdSqGtTZ2DkFArv9fPRV%2BVnlgcU0CGp8FIDll7DHP722sjC7OAm2Oerj1Qs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a793a322ed40b31-OSL
alt-svc: h2=":443"; ma=60
talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS_fx.js
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/AJS_fx.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d7181ef24963660fe106808523a21d73
edaf2dbb2541570f8763607f1eb5026bcbf8dde3
d0fef73305ab3e0731f2cc3d5ff878c0b1afa0efee2e621394c2542be5730583
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/AJS_fx.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730680d-c78-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1171
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_scripts.js
23.229.220.229200 OK 3.3 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_scripts.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 3fabbc047315f1f54a2c22feaeaf0368
a8d8d88b347dee2c85b9076bdf20afb369590015
a752f9a30e993d5d7b31d7c8b57b9ea6f55c1fcf14466a5959a0ddb8777d22bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/greybox-integrator/greybox/gb_scripts.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306818-2e84-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3332
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_styles.css
23.229.220.229200 OK 691 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/gb_styles.css
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash e44371cbee87f6d7872eeb8e2ee8ec55
901747eb653544679d2696fa122ba73a1b310d86
da2c444c38e1029b5daa82a607e3cb17633306cf8c54ba2328c59cb68dcc0e6e
GET /wp-content/plugins/greybox-integrator/greybox/gb_styles.css HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730681d-8fe-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 691
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.88.60.132101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.60.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0pkUuU/vyilJEd7R8b9g/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Nw9aoFgpB6s08TI+DM4epWHS/X0=
talansbs.com/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6
23.229.220.229200 OK 445 B URL HTTP/1.1 talansbs.com/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 0a7cd236d1029d69fb43ccce748c15fc
61b536b847d0e90d9e55603937eae40105076ab5
6eb1807cd95750ef9944332dbb8fcb3431ff7e9af86fd44d383e72edf5ca5b09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:46 GMT
ETag: "7306fd1-3a2-5ce431485d880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 445
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52
23.229.220.229200 OK 8.3 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash e51f5d668b5864e866d57e5c4e3b204d
32516fc35d6a73c78e48d67ff192787f4046589d
1d7259f45ea9bca5b2e750179f88f36fefe62ed5b4aefa8f96b6f15ceb70d0d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:40 GMT
ETag: "7306464-5e58-5ce43142a4b00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8297
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash c76f994d9f5747b0d11770e2cfd524a1
06ff58e3fd047894bfcce731053566aa21e8346e
eacfb7484ce6ade486a43d02b17759124ee7fa8bb219ec4037878fcfb30437c6
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:36 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5
23.229.220.229200 OK 1.6 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 3fcc7381a1a66e108de8ce3fb191c2c3
2d428338fa8aa348d114e78e31b1a79d031c4538
70cbc8f3ecbb54d43d45890068ffc9ae0d52a928ff4ca4989a250f2b6daa1989
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/scripts.js?ver=2.4.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306481-16aa-5ce4314398d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1586
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
talansbs.com/wp-content/themes/talanThemever3/style.css
23.229.220.229200 OK 4.6 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/style.css
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 85222d22e94a5e3f72619c7016164634
8825a824f0316fb335c576d9116820cd036c243c
8e4135c9b2c423f0bfdee0d395f56c612f1c0e818db92cba818e03e35d56e866
GET /wp-content/themes/talanThemever3/style.css HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308401-5ecf-5ce4314f0a840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4637
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
talansbs.com/wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5
23.229.220.229200 OK 1.6 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash a94fc862b1ced5ebbeb60219e46f2662
1a765fda845d5a56b02d76bad3c8f583172f2ead
4a7db9bdae5db200bc4cd65765d797050bb92682e35aa94fae4b923f3e195e9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/the-events-calendar/resources/events.css?ver=1.6.5 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307b50-13f7-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1578
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
talansbs.com/wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6
23.229.220.229200 OK 187 B URL HTTP/1.1 talansbs.com/wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 30816eefa3830bb86805d6923840212d
4dbe4972be8dd588d1f79c987776a649ec5a0645
b866497aff195f890db34c5dd7ca1507a5b93e6374a8cfcb67f32aab7ad5dd9b
GET /wp-content/plugins/twitter-facebook-google-plusone-share/tfg_style.css?ver=3.6 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:50 GMT
ETag: "7307abe-169-5ce4314c2e180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 187
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
talansbs.com/AddItems/menuend.png
23.229.220.229200 OK 798 B URL HTTP/1.1 talansbs.com/AddItems/menuend.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 82 x 37, 8-bit colormap, non-interlaced\012- data
Hash 480efa55c26f7b59be02bf0751f4de29
fe1eebd3bd386bcbd69b1bd356eda407c5690ef6
ebd3b63f60129d4caa1072a260dc4dfb7a5955025c0a88351d9fc449aae36a3c
GET /AddItems/menuend.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:57:02 GMT
ETag: "730019a-31e-5ce430abf6780"
Accept-Ranges: bytes
Content-Length: 798
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/PostDateIcon.png
23.229.220.229200 OK 275 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/PostDateIcon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 17 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash af5d486fa05b196bdd418b306554dbc0
c1ef3ba5798f9a0644d9fa3f2c401ee9efa786f5
77daa92902495effcc6ce882aab6191084141500e2bb3caa75f1a205bc9066fa
GET /wp-content/themes/talanThemever3/images/PostDateIcon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308479-113-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 275
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg
23.229.220.229200 OK 20 kB URL HTTP/1.1 talansbs.com/wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 173x300, components 3\012- data
Hash 89d6d2216b010fd1e604ced207664772
72653a2b7720d789e379aad0497e0ebf46853fdb
3f45439c8bc6370027a5b0f6fdec14c779cd131b4c0293671b7430d946468501
GET /wp-content/uploads/2011/01/Talan-Web-Ads5-173x300.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:56 GMT
ETag: "7308374-4fec-5ce43151e6f00"
Accept-Ranges: bytes
Content-Length: 20460
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.talansbs.com/Additems/twittericon.png
23.229.220.229301 Moved Permanently 0 B URL HTTP/1.1 www.talansbs.com/Additems/twittericon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Additems/twittericon.png HTTP/1.1
Host: www.talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://talansbs.com/Additems/twittericon.png
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/themes/talanThemever3/images/Page-BgTexture.jpg
23.229.220.229200 OK 86 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Page-BgTexture.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 2100x768, components 3\012- data
Hash 70be4b332799d6d0de56e0106abe835d
eeaf0af3058d896c46c70ef3d4dd016a8e92b39d
9e9bffbc7b2ebce2cc65e626c36ed90df28dd2783bac0cb245efe17838eff789
GET /wp-content/themes/talanThemever3/images/Page-BgTexture.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308462-1513b-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 86331
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
talansbs.com/wp-content/themes/talanThemever3/images/Sheet-s.png
23.229.220.229200 OK 861 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Sheet-s.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash ecf491502eaf3df82df13441a1da3066
a52db183470808f660940d7d9f11421644e16bc7
265652c5adeee11ebd184fd1a49ee3d38d3442e63e346687ed204ab6108bf685
GET /wp-content/themes/talanThemever3/images/Sheet-s.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308496-35d-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 861
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Sheet-h.png
23.229.220.229200 OK 314 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Sheet-h.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 50 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f638cf9e18a8be1a3a0bdccd1ea6bd6
62fe5d12ea776b8e63feddef52746f8cf85ece0f
310a4e21656a7cad601dace6bee044715f37c848e23045474c3451fd17ba94f9
GET /wp-content/themes/talanThemever3/images/Sheet-h.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "7308491-13a-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 314
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
23.229.220.229404 Not Found 18 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354), with CRLF, LF line terminators
Hash 9b6deb9a3fcaf8212f27480d54774c02
d62ccd0300e07ab55896062ab0343862ce304dab
dcba278a5d4c728cfc745431e0e346a3923d197a80834cbde226459cb2fd83e6
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_scr.js HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/themes/talanThemever3/images/Sheet-v.png
23.229.220.229200 OK 314 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Sheet-v.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 66 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 18e5a7827fff5029b4df7239761b4031
05cdd9f9d413e7e560550028de77d7449af1d4a4
87105665389bc87d03e5497c023ec899368fecbc94d69c4727212ff2bea451fc
GET /wp-content/themes/talanThemever3/images/Sheet-v.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "730849c-13a-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 314
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Header.jpg
23.229.220.229200 OK 32 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Header.jpg
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 967x95, components 3\012- data
Hash d819d144507308d9e036783623a3fb35
565105c460db58b97bb183549bba131533b2de1c
59bbd25145e7fc146dda9f75bd7951b25c2081ab23ac28ae079a3b03ec45cfec
GET /wp-content/themes/talanThemever3/images/Header.jpg HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730844b-7d36-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 32054
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
twitter.com/javascripts/blogger.js
104.244.42.65301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/javascripts/blogger.js
IP 104.244.42.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/javascripts/blogger.js
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: d9a24db74c55623f
x-response-time: 107
x-connection-hash: a3f417a2bce4d8a1cdaace15826754d47252016d8073cd637f19b475a1b961e3
date: Tue, 14 Mar 2023 02:53:37 GMT
server: tsa_o
talansbs.com/wp-content/themes/talanThemever3/images/Sheet-c.png
23.229.220.229200 OK 259 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Sheet-c.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d31258d43c7b9b75b2656ddd0c749e1
f79ff53989885634e2dd816d349a24b448ea87d2
acbabf534ccdbdf8e562dc59fcb672083e4a02b960e0bdd3218d865455e83987
GET /wp-content/themes/talanThemever3/images/Sheet-c.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "730848b-103-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 259
Keep-Alive: timeout=5
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/MenuItem.png
23.229.220.229200 OK 1.3 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/MenuItem.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 400 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 166ac9fc7b2d6fc43670c7e23515b07d
a1da7a4bdf0284398c31dece95483f6382544bfe
f5fdb32924af68a50bae4cccaf5268b5cfe5b4bc188d2b6c3cc7644509a63e71
GET /wp-content/themes/talanThemever3/images/MenuItem.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308453-50f-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1295
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/spacer.gif
23.229.220.229200 OK 43 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/spacer.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /wp-content/themes/talanThemever3/images/spacer.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084b4-2b-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 43
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/themes/talanThemever3/images/subitem-bg.png
23.229.220.229200 OK 138 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/subitem-bg.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 1 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 1aef5ad7ec77499f495ddf5beaef6604
b6b49611ab03f65fba0e0a7693b3da553791bb53
f233bb6c5f9651c83cf57507f6055b967e0752abceb14ae4bde737269eb0a30e
GET /wp-content/themes/talanThemever3/images/subitem-bg.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084b9-8a-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 138
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.65301 Moved Permanently 0 B URL HTTP/1.1 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
perf: 7626143928
location: https://twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: 6b6b591c8a8008d5
x-response-time: 106
x-connection-hash: 5e637fb500200c7119ecfb8dee2ddfda785971a4c0ef196ff67b0f165e4e094b
date: Tue, 14 Mar 2023 02:53:37 GMT
server: tsa_o
www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
Content-Length: 0
s.gravatar.com/dist/css/hovercard.min.css?ver=2023Maraa
192.0.73.2200 OK 1.9 kB URL HTTP/1.1 s.gravatar.com/dist/css/hovercard.min.css?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (8069)
Hash 61f9d983eb62bb05ec7a53e0cde1a645
865dac6893de02651a007239581da6e23beb9a88
3d261c73111b3ec277d6d40b15978839ebef180639f76ed698332798b16bbeb3
GET /dist/css/hovercard.min.css?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:38 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 09:10:35 GMT
ETag: W/"63b3f10b-1f86"
Content-Encoding: gzip
Expires: Tue, 21 Mar 2023 02:53:38 GMT
Cache-Control: max-age=604800
s.gravatar.com/dist/css/services.min.css?ver=2023Maraa
192.0.73.2200 OK 643 B URL HTTP/1.1 s.gravatar.com/dist/css/services.min.css?ver=2023Maraa
IP 192.0.73.2:0
File type ASCII text, with very long lines (3236)
Hash e3d8ce6d4c0bfed4cbf303bf7a75f0ba
5262fb96cec66c94d099270658ddc908c698917f
792f46a05d6065063fc5d88d603dbe5b94a17826822a074db8b86ffd65d13c51
GET /dist/css/services.min.css?ver=2023Maraa HTTP/1.1
Host: s.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:38 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 09:10:35 GMT
ETag: W/"63b3f10b-ca5"
Content-Encoding: gzip
Expires: Tue, 21 Mar 2023 02:53:38 GMT
Cache-Control: max-age=604800
pixel.wp.com/g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1732&rand=0.9353168898756317
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1732&rand=0.9353168898756317
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A1.7&blog=24341621&post=92&host=talansbs.com&ref=&fcp=1732&rand=0.9353168898756317 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:38 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
static.addtoany.com/menu/page.js?_=1678762417292
188.114.98.234301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/page.js?_=1678762417292
IP 188.114.98.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/page.js?_=1678762417292 HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 14 Mar 2023 03:53:38 GMT
Location: https://static.addtoany.com/menu/page.js?_=1678762417292
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7a793a3b495f0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc40e3b94a6e673365a2f0acebcc4d1d
c144f393392ae61bb19a453348f904d405c61609
acbb425a7cdf346cd310732182f54fcb02839448b0fca438f11578e94eb3e58a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 9fcbc21a058c94488d8c27f703b90d45
1918d1e1eb5b31f78b8ce2c105c51c6d1fa251cf
2080724c22e53cb699294d3fffc05abe195fd08a28bc255edf6b87562906b44e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4828
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Last-Modified: Tue, 14 Mar 2023 01:33:10 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Ftalansbs.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4165823
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:38 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1cb274086a7fc07be41dfeb65ec1dbf
c6339993814eda4b9629ef179222b060d1f5143b
b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15309
Expires: Tue, 14 Mar 2023 07:08:47 GMT
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1cb274086a7fc07be41dfeb65ec1dbf
c6339993814eda4b9629ef179222b060d1f5143b
b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15309
Expires: Tue, 14 Mar 2023 07:08:47 GMT
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
twitter.com/javascripts/blogger.js
104.244.42.65200 OK 3.1 kB URL HTTP/2 twitter.com/javascripts/blogger.js
IP 104.244.42.65:0
Hash b984eb69d5dd704619fb9649d433d65f
e04ea152f609b92d862fc532dd7b6ccb88992e9d
0e433f5cb64ed74d619128c1fcebf23696eb0b4b76ca6f0939da61d2df1726e7
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:37 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167876241786311521; Max-Age=34214400; Expires=Sat, 13 Apr 2024 02:53:37 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678762416; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Tue, 14 Mar 2023 02:53:37 GMT
x-frame-options: DENY
x-transaction-id: dbd333b30e8bdd7f
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-OThkZjQ3MWEtM2EyMS00ODBmLTg4NDItYjdiNmE0Mjk5YTcy'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 153
x-connection-hash: c29d78e6cab5342ae66a8e11904bb10cf0b31aae9fc01f3f2c7e2bc33ef6c4a0
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
23.229.220.229404 Not Found 19 kB URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Hash 53a85a0fbd7022849a7ff4ff6414e401
c61011396c5a31c4bf08aecff7bbf008c9dc7fb0
2ffaf8d9fd85a8af7cd4f4a71f4b667d3d439ab2f251a0e95da8f215d76290bd
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/wp-content/themes/talanThemever3/images/Block-h.png
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-h.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 3000 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 563223b46427bbe21e450e0c6762ae7d
50dfda7751cc2b10c4540791aa18c0d3d66ea895
8fde24c938870d309614d8616b14096f735252c0289b3e2d3670534acc01fe3c
GET /wp-content/themes/talanThemever3/images/Block-h.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730842c-4d4-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1236
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/Block-s.png
23.229.220.229200 OK 347 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-s.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash b9633db4fd28dfd7b77d411c6b794559
2613a13b6a24a1b67726bb36b10af03728ee0aec
38293cdde3fabc7e03f4f947b5171edf046c2f52e98d7a58ce09eb0f6298282d
GET /wp-content/themes/talanThemever3/images/Block-s.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308433-15b-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 347
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
142.250.74.46301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&size=tall&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 14 Mar 2023 02:53:38 GMT
expires: Tue, 14 Mar 2023 03:23:38 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96e84919-82a6-462c-89aa-5dfd62b065b1.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96e84919-82a6-462c-89aa-5dfd62b065b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60ae6be476f64653385ee775c2ba5460
4ebff6ea6c7104f16db08ac1e13af5c4d9ecab71
c3a75d6b8f755e734ecc6fcfb5229cb47f7a4d9a6bcdbae6693da0e94b03cafc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96e84919-82a6-462c-89aa-5dfd62b065b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6598
x-amzn-requestid: 0b194caa-137d-4f93-8a7b-26cb05bfa3a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSpAEHZIAMFedA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f97d2-2e4dd06a76e1184a2b39188f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:38:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -Mmu1WeJkhzGKe0pDGGakOhgDlRKh_1oBy92FnA2Jksg3JK9pTjj1w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Mar 2023 21:38:46 GMT
age: 18892
etag: "4ebff6ea6c7104f16db08ac1e13af5c4d9ecab71"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
talansbs.com/wp-content/themes/talanThemever3/images/Block-v.png
23.229.220.229200 OK 1.3 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-v.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 14 x 3000, 8-bit/color RGBA, non-interlaced\012- data
Hash 93244ac8aacca0d54cd329a5e794d44d
9adaeba5e8d9f1085cd1cf146f849671d7686eaa
eb514eb7937e27a019e32d9e335cf57ab786439b5a5382c7e6dd6f45b739db6d
GET /wp-content/themes/talanThemever3/images/Block-v.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308439-534-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 1332
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b3d3cb-384b-43c6-9a1b-11edcbc4e7d9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b3d3cb-384b-43c6-9a1b-11edcbc4e7d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac34c66a7a2d2bf361c142e7ba3ed83d
6daac083cbbe8d2b535bcb79b09057b85d126065
9fe5518012a6b0934371d4b52c6c559e1d733e4b9b6e19e0cf029aa56e13b9eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b3d3cb-384b-43c6-9a1b-11edcbc4e7d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9208
x-amzn-requestid: 39b9bea2-a847-4fbf-af69-614ba432032d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSo-FowIAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f97d2-59b64a8d2afb8f4731eda0ba;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:38:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: aqpjMqDPim68JQO_fXeGRf3tbylahtyLYzh0XDiaNrls7MFy6VB0Kw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Mar 2023 21:38:46 GMT
age: 18892
etag: "6daac083cbbe8d2b535bcb79b09057b85d126065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc20f2b31-8a32-4e66-bba7-e76e1c14f5ce.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc20f2b31-8a32-4e66-bba7-e76e1c14f5ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd8a4e29260d209803408596cb286f8f
20f6796c0c7064542cc8eefe138076d16d66e8d8
54a328e054b23ddbf531b69a7c5bb817704c0dd98bc7625c9571df19df982a17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc20f2b31-8a32-4e66-bba7-e76e1c14f5ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8091
x-amzn-requestid: 7e6e055a-de20-4f2f-8f76-2fe57747ed08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgDFEMoAMFXIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-1e932e3a10bd39d630310c65;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1AyaOZsHPOolqcjucN45Q4J2mbD2HQ61cRDGtgQp7zEGE_osmeo2MA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Mar 2023 21:38:46 GMT
age: 18892
etag: "20f6796c0c7064542cc8eefe138076d16d66e8d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.65200 OK 7.0 kB URL HTTP/2 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.65:0
Hash 0b32cf4a297d563f495df8c5fee6bb5a
590a3e7664824b5003ba718047fb770a847df0c9
41c395f23c251325110ac774184b4de285f4f44159d99c5110598befd972c354
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167876241819022780; Max-Age=34214400; Expires=Sat, 13 Apr 2024 02:53:38 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678762417; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Tue, 14 Mar 2023 02:53:38 GMT
x-frame-options: DENY
x-transaction-id: bb2a1eb8df0f6762
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-ZTA2MzM2NGQtNmJjYy00NmI3LTkxOTItYmMxYTVlNjY5NGIx'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 146
x-connection-hash: c29d78e6cab5342ae66a8e11904bb10cf0b31aae9fc01f3f2c7e2bc33ef6c4a0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26521ff6-85cb-4f66-a570-c1c161a5b9f5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26521ff6-85cb-4f66-a570-c1c161a5b9f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93e1b34f4dbbd7b8215af242107281df
91fd7a5a7a2e805cb355705e2fb1e0b91401db0b
e1bd756029248ccd01f1ac240a4a07a2f15e15d6624a6a660a9126767dd6056a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26521ff6-85cb-4f66-a570-c1c161a5b9f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 53d1e94f-178f-449d-820e-20db4c52d766
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFE7foAMFdcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-23789aa8567f8c661bea3fb4;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: p9YSuZjR9ovoouuLN7-lqbEYYOva0wMUD1VfVJ-VcCez12WZSCivqQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Mar 2023 22:38:27 GMT
age: 15311
etag: "91fd7a5a7a2e805cb355705e2fb1e0b91401db0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1cb274086a7fc07be41dfeb65ec1dbf
c6339993814eda4b9629ef179222b060d1f5143b
b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15309
Expires: Tue, 14 Mar 2023 07:08:47 GMT
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc40e3b94a6e673365a2f0acebcc4d1d
c144f393392ae61bb19a453348f904d405c61609
acbb425a7cdf346cd310732182f54fcb02839448b0fca438f11578e94eb3e58a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1cb274086a7fc07be41dfeb65ec1dbf
c6339993814eda4b9629ef179222b060d1f5143b
b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F"
Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15309
Expires: Tue, 14 Mar 2023 07:08:47 GMT
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&layout=box_count&show_faces=false&action=like&font=verdana&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: LnrrnQ3fKfW8iI/83LrkaHe1HlLhp+xy0Rl0zO0mWrD+KSKyhaW+luyR1oA49VI+GYgGdaJrcLN1No+cgGiDSQ==
content-length: 0
date: Tue, 14 Mar 2023 02:53:38 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
142.250.74.46301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&origin=http%3A%2F%2Ftalansbs.com&url=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 14 Mar 2023 02:53:38 GMT
expires: Tue, 14 Mar 2023 03:23:38 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5d67d04ac82d4ea0ca4b38da4bd83aae
bf9e22a9288857af45d6045e823e7527a02e4800
c5aa2b8c1e83217eedc70c576e08beb00af70c47fd99d78bc2ffbcf01cf39bc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/modules/core.26680508.js
188.114.98.234301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/modules/core.26680508.js
IP 188.114.98.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/modules/core.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 14 Mar 2023 03:53:38 GMT
Location: https://static.addtoany.com/menu/modules/core.26680508.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7a793a3c298a0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 9fcbc21a058c94488d8c27f703b90d45
1918d1e1eb5b31f78b8ce2c105c51c6d1fa251cf
2080724c22e53cb699294d3fffc05abe195fd08a28bc255edf6b87562906b44e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4829
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Last-Modified: Tue, 14 Mar 2023 01:33:10 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
static.addtoany.com/menu/eso.26680508.js
188.114.98.234301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/eso.26680508.js
IP 188.114.98.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/eso.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Mar 2023 02:53:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 14 Mar 2023 03:53:38 GMT
Location: https://static.addtoany.com/menu/eso.26680508.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7a793a3c39910b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
talansbs.com/wp-content/themes/talanThemever3/images/Block-c.png
23.229.220.229200 OK 294 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/Block-c.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 986 x 3, 8-bit/color RGBA, non-interlaced\012- data
Hash a31cbc913d6038bf197e6425681a7a5c
92113039836ddaac5862913969a518ea159d1366
4ec285e0f3c625cc866fc90ca2fe3f8bf8101f16cc3d5103bb7dd9d4c4ea5565
GET /wp-content/themes/talanThemever3/images/Block-c.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "7308426-126-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 294
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
talansbs.com/wp-content/themes/talanThemever3/images/rssIcon.png
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/rssIcon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 19 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ba30d0e6792a146e239f38983203d6f
f6ffa47b9fe79fc11788e34b3d8c9bb927d94536
16ce4f8fc6874a33c5dfd02737f38e4c3ff0d07f8f467dde8311a4111fa6880d
GET /wp-content/themes/talanThemever3/images/rssIcon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:53 GMT
ETag: "73084ac-497-5ce4314f0a840"
Accept-Ranges: bytes
Content-Length: 1175
Keep-Alive: timeout=5
Content-Type: image/png
twitter.com/javascripts/blogger.js
104.244.42.65200 OK 737 B URL HTTP/2 twitter.com/javascripts/blogger.js
IP 104.244.42.65:0
Hash 188b63cc5b1f116a63fc57ba31cec815
6e113148b22f28d33504496ad115f437d1c80431
09862d2af949da1e50d6a0c0796fc7c978891ae0c6355ae47056913517329928
GET /javascripts/blogger.js HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:36 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167876241695412806; Max-Age=34214400; Expires=Sat, 13 Apr 2024 02:53:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678762415; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Tue, 14 Mar 2023 02:53:36 GMT
x-frame-options: DENY
x-transaction-id: 2a85ae49897db643
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-OGNkNDdjODMtZmY1YS00OTlhLWI0YWYtNGY3MDcwNmIwYTRm'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 134
x-connection-hash: c29d78e6cab5342ae66a8e11904bb10cf0b31aae9fc01f3f2c7e2bc33ef6c4a0
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 3fb998619812ab3c62ec039e98bb8748
b3adcc7081f963fd714bc1ee23aabe87c009ddd1
278533a9f9c39141da18f78bccdd9d5d922ac870a1c6643286779a5968cfc0f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3990
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Last-Modified: Tue, 14 Mar 2023 01:47:08 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 312
talansbs.com/wp-content/themes/talanThemever3/images/MenuSeparator.png
23.229.220.229200 OK 136 B URL HTTP/1.1 talansbs.com/wp-content/themes/talanThemever3/images/MenuSeparator.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 1 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d95d800ecc8f5fafe9f0d83eedc9513
f01a5112a22a0be3aa00890371754e1f13519087
3236a12e6ed86853d54e2c3e2e2986982305f0cc6afd5dc570cce84f9c074d5c
GET /wp-content/themes/talanThemever3/images/MenuSeparator.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/wp-content/themes/talanThemever3/style.css
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:59:52 GMT
ETag: "730845b-88-5ce4314e16600"
Accept-Ranges: bytes
Content-Length: 136
Keep-Alive: timeout=5
Content-Type: image/png
cdn.viglink.com/api/vglnk.js
54.230.111.25200 OK 29 kB URL HTTP/1.1 cdn.viglink.com/api/vglnk.js
IP 54.230.111.25:0
File type ASCII text, with very long lines (693)
Hash 18a10f22bd971df457201f5dcd81eef1
8508fb0103243bece8de7af7de5e58669eda27a3
3d45ef7516d63ff90e860d1ba7e2217ccc1582d4e8187ef571e6b5293fced1f6
GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 28829
Connection: keep-alive
Date: Thu, 09 Mar 2023 01:10:40 GMT
Last-Modified: Tue, 07 Feb 2023 13:36:11 GMT
ETag: "18a10f22bd971df457201f5dcd81eef1"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hlwb19YEJYVQPyZsngEtxb4v2r1q1MZnfFSlOe5QEe92A04GDFDY3w==
Age: 438179
platform.twitter.com/widgets.js
192.229.233.25200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 309
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:38 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
developers.google.com/
216.58.207.206301 Moved Permanently 0 B IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 68989aa773defd329a02a4a3aabac910
Date: Tue, 14 Mar 2023 02:53:38 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
www.google-analytics.com/ga.js
142.250.74.142200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 14 Mar 2023 02:13:12 GMT
Expires: Tue, 14 Mar 2023 04:13:12 GMT
Cache-Control: public, max-age=7200
Age: 2426
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
199.232.196.134301 Moved Permanently 33 kB URL HTTP/1.1 talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
IP 199.232.196.134:0
Hash 74ae8d3973ddf55ad3bd02ea65511542
9d8f5419a93f9d642dbe4532760a862fef105934
9f58f5d41efddc7b25e5b590b7c752c2e62565d62638c8031296bfb6f750f5f2
GET /embed.js?pname=wordpress&pver=2.66 HTTP/1.1
Host: talansbs.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 219
Server: Varnish
Location: https://talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
Content-Type: text/html
Cache-Control: public, max-age=31536000
Date: Tue, 14 Mar 2023 02:53:38 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
connect.facebook.net/en_US/sdk.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
Content-Length: 0
www.adobe.com/images/shared/download_buttons/get_flash_player.gif
95.101.11.25301 Moved Permanently 29 kB URL HTTP/1.1 www.adobe.com/images/shared/download_buttons/get_flash_player.gif
IP 95.101.11.25:0
ASN #20940 Akamai International B.V.
Hash 5be7f4b32251544012ea535ab980b4a1
3d2dd26b8f6dd92fd2eb9ca571865801df2a2b1d
fa105edd0b99a2ec12e50892a49d24ca8bda3f9b30feb3224778f773f3fb50e8
GET /images/shared/download_buttons/get_flash_player.gif HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Content-Length: 281
Server: Apache
Location: https://www.adobe.com/images/shared/download_buttons/get_flash_player.gif
Cache-Control: max-age=548
Expires: Tue, 14 Mar 2023 03:02:46 GMT
Date: Tue, 14 Mar 2023 02:53:38 GMT
Connection: keep-alive
Server-Timing: cdn-cache; desc=HIT, edge; dur=27, ak_p; desc="466322_1600457493_27083670_2749_7066_0_-";dur=1
Set-Cookie: ak_bmsc=539FE33F84EBD073212BC920CA2A6E90~000000000000000000000000000000~YAAQFQtlX3Kb/tiGAQAANKIJ3hMdLnUY/t4THRG9K7SWy+zb1YsKLV6gcFAExZpCm7Mgj+LfeZgqRsxMJBviu/mk/5TaTf9SOmVtaMrKd5gV9xllZ3GZtUZUvVuVxYgP3KgaLoTtI8dCL7JmWee1Pt1u6ieWYaRXRu5FXfPH5CYgJPJszsfdKVi7GMCfRLy8EvNTV0tEFT5IGGMj/OsVjoxxXNVzuRBQ7M77vKU05CHjv7c2efrfNVWuJTKzamBElggNFU79ZDKQho6o44PpRgAUf9RYZpFP47xDu+S9GK2HwBnldFszBl8+4X9GnA5UGITt/A==; Domain=.adobe.com; Path=/; Expires=Tue, 14 Mar 2023 04:53:38 GMT; Max-Age=7200; HttpOnly
1.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60
192.0.73.2200 OK 932 B URL HTTP/1.1 1.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60
IP 192.0.73.2:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 2db00bcc96a2b9291915bd94684d7d8b
b795d7a56a2d412b990d21ef45285d9ab58f425c
7ae66d7754b648f2c19263ca51f03a5cf10e37f8b98ef44bcce7c06bcb212c5b
GET /avatar/ad516503a11cd5ca435acc9bb6523536?s=60 HTTP/1.1
Host: 1.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Mar 2023 02:53:38 GMT
Content-Type: image/png
Content-Length: 932
Connection: keep-alive
Last-Modified: Sat, 01 Mar 2008 02:44:06 GMT
Link: <https://www.gravatar.com/avatar/ad516503a11cd5ca435acc9bb6523536?s=60>; rel="canonical"
Content-Disposition: inline; filename="ad516503a11cd5ca435acc9bb6523536.png"
Access-Control-Allow-Origin: *
Expires: Tue, 14 Mar 2023 02:58:38 GMT
Cache-Control: max-age=300
X-nc: HIT arn 3
Accept-Ranges: bytes
static.addtoany.com/menu/page.js?_=1678762417292
188.114.98.234200 OK 155 kB URL HTTP/2 static.addtoany.com/menu/page.js?_=1678762417292
IP 188.114.98.234:0
File type ASCII text, with very long lines (3076), with no line terminators
Size 155 kB (154629 bytes)
Hash 85e80120624b2a954b2817e5cd125ad6
eb2850a0bc5e88c73af763ebaaf7f391c77be9da
c3ce4aa417a13a4c982d8ed2df4c2926248e2c738d9366f399e803a95729269d
GET /menu/page.js?_=1678762417292 HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 5823
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e1s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7a793a3bafed0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
104.244.42.200200 OK 284 B URL HTTP/2 syndication.twitter.com/settings?session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (663), with no line terminators
Hash 8792f18dcb406af2be326e0dd816eed7
d1ad89d9036b3985071b394706514862f7c687ce
19640da1d34fa31a031d58d27be6408f6703dddc3c4495f72d55a60f518b7cba
GET /settings?session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Tue, 14 Mar 2023 02:53:38 GMT
content-length: 284
content-encoding: gzip
x-transaction-id: a1c19f473ef8a43b
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 117
x-connection-hash: 837fa555372714c09db3352b114623f8ababca4b241401b62246b0153e4525f0
X-Firefox-Spdy: h2
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1851136124&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1063089589&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678762418838&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1029587020.1678762419.1678762419.1678762419.1%3B%2B__utmz%3D69761045.1678762419.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1388228768&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.142200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1851136124&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1063089589&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678762418838&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1029587020.1678762419.1678762419.1678762419.1%3B%2B__utmz%3D69761045.1678762419.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1388228768&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1851136124&utmhn=talansbs.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&utmhid=1063089589&utmr=-&utmp=%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&utmht=1678762418838&utmac=UA-23803495-1&utmcc=__utma%3D69761045.1029587020.1678762419.1678762419.1678762419.1%3B%2B__utmz%3D69761045.1678762419.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1388228768&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Tue, 14 Mar 2023 02:53:38 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5d67d04ac82d4ea0ca4b38da4bd83aae
bf9e22a9288857af45d6045e823e7527a02e4800
c5aa2b8c1e83217eedc70c576e08beb00af70c47fd99d78bc2ffbcf01cf39bc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash d6f09b3aefd36d3ae21e63c80d46997b
f87415eb843932c397e64fe9fd917a3fd7ca746c
904a9fe60a33305f12397e94e7948a33510ab601398a322404362f0e9d4b905b
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1e0d5a4949e242384860c0bfb1e3f21f
etag: "de94b08d725f98d51351007d5ddad856"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 14 Mar 2023 03:07:55 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 1vCbOu/TbTriHmPIDUaZew==
x-fb-debug: VNhRmY2jgK5aWca5K6ooqqsOEKsepR9rTeASdL/n8wCSCtYzwOO4xJFabGWKVFGcuW/eFgwLdJMpSZE0IVd4Yw==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1904183273
date: Tue, 14 Mar 2023 02:53:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5d67d04ac82d4ea0ca4b38da4bd83aae
bf9e22a9288857af45d6045e823e7527a02e4800
c5aa2b8c1e83217eedc70c576e08beb00af70c47fd99d78bc2ffbcf01cf39bc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.adobe.com/images/shared/download_buttons/get_flash_player.gif
95.101.11.25200 OK 1.7 kB URL HTTP/2 www.adobe.com/images/shared/download_buttons/get_flash_player.gif
IP 95.101.11.25:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 112 x 33\012- data
Hash feb21ee4b711858c4e3485f844cc9772
1678ec04014ec245f6daf72589f24bc55c42cbe1
b26af9f56cff4a8ea0a3c06eaa442962ac51317bec73931122df1d9c95f6388b
GET /images/shared/download_buttons/get_flash_player.gif HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2016 07:30:56 GMT
content-type: image/gif
content-length: 1720
server: Apache
strict-transport-security: max-age=86400
accept-ranges: bytes
x-adobe-loc: ew1
x-adobe-source: 128.76
x-content-type-options: nosniff
cache-control: max-age=634
expires: Tue, 14 Mar 2023 03:04:12 GMT
date: Tue, 14 Mar 2023 02:53:38 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=28, ak_p; desc="466322_1600457493_27083682_2809_3529_2_0";dur=1
X-Firefox-Spdy: h2
talansbs.com/wp-content/uploads/2011/03/favicon.ico
23.229.220.229200 OK 1.2 kB URL HTTP/1.1 talansbs.com/wp-content/uploads/2011/03/favicon.ico
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash fc4ae376bcc0378c8cbbe4af96e283ab
ea349ef73ae3158980ac6dc33c0f5615be70c21c
9a68aa421187be85c2400ceb3341bbefc802fb17275605731163a3265c58b4b3
GET /wp-content/uploads/2011/03/favicon.ico HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:38 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:57 GMT
ETag: "730851e-47e-5ce43152db140"
Accept-Ranges: bytes
Content-Length: 1150
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/x-icon
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9545ff63a3f2c6cdb9149bb997dca837
28d8a77e00e7de3a45e0033d1b81f1053ae67ee2
f34d2a1ca3fb791691e354261e78e08f76b7b83fdd6ed9cac2f9758154e80e26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
199.232.196.134200 OK 26 kB URL HTTP/1.1 talansbs.disqus.com/embed.js?pname=wordpress&pver=2.66
IP 199.232.196.134:0
File type ASCII text, with very long lines (32006)
Hash a6a46d8c8f5a0cb57aec56999feb13f1
261c6e89fdaaa52f90b08b8058266769df7ff456
07c84ae55e25f03ec85ddd3a1957a273594f4ea5e4d733783e2b9d4580458c90
GET /embed.js?pname=wordpress&pver=2.66 HTTP/1.1
Host: talansbs.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25635
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Tue, 14 Mar 2023 02:53:38 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
192.229.233.25200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (7891), with no line terminators
Hash 50af2557985d9ae5ef0bb111a4066237
b164d515f502d950df3ba208cc32bbe74e70d3d2
a3b6dbbc4e57c65eb23f84b312095c86a69ff47fc57fc745f464394158bda9af
GET /js/button.e7f9415a2e000feaab02c86dd5802747.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4165823
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:38 GMT
Etag: "506673dbdb9085e7201e137e893cc152+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:06 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FE)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2618
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
192.229.233.25200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32037)
Hash 59524bd7f5584433bb77a21f1431db47
5be6f11aa7a378e597235668f5ec6819e9722c9a
80c4c77841bb8b9c561fb0ed2816c1e32288fda1178130d920b6830f287a9fea
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4165820
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:39 GMT
Etag: "28919252629e2fa1d4ed52f48cb66ac0+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:10 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FE)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13592
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
192.229.233.25200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32037)
Hash 59524bd7f5584433bb77a21f1431db47
5be6f11aa7a378e597235668f5ec6819e9722c9a
80c4c77841bb8b9c561fb0ed2816c1e32288fda1178130d920b6830f287a9fea
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4165820
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 14 Mar 2023 02:53:39 GMT
Etag: "28919252629e2fa1d4ed52f48cb66ac0+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:10 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FE)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13592
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419077%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419077%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419077%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 14 Mar 2023 02:53:39 GMT
content-length: 43
x-transaction-id: 1dd25a2d33bc44f1
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 837fa555372714c09db3352b114623f8ababca4b241401b62246b0153e4525f0
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419075%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419075%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1678762419075%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ae083d0bd6c93517af4ecf5ce4c97228922dbeee HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 14 Mar 2023 02:53:39 GMT
content-length: 43
x-transaction-id: 507bc46fc3da2048
strict-transport-security: max-age=631138519
x-response-time: 118
x-connection-hash: 837fa555372714c09db3352b114623f8ababca4b241401b62246b0153e4525f0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1ab1166f7bff55b1cdb91995994a1bc5
ef8a50c62d70d195fcca8c3a4e2905b97a9b41c5
fc8701a961e1c852a157cdf72915c968d7768b8f4273839bec64d3265147b745
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/611095756-postmessagerelay.js
142.250.74.163200 OK 10 kB URL HTTP/2 ssl.gstatic.com/accounts/o/611095756-postmessagerelay.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2708)
Hash ef4abe80a6ebec095bcff46a62e56a60
fe9b4dc7d21298af3ca9041efa2d0fb60369e7ce
f173bffef77f251b9bea649b2ac1ce118c9b1daf0fc812bf22cba42a3a7bc293
GET /accounts/o/611095756-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 10487
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 Mar 2023 21:30:05 GMT
expires: Sat, 09 Mar 2024 21:30:05 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 10 Mar 2023 07:10:28 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 278614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1ab1166f7bff55b1cdb91995994a1bc5
ef8a50c62d70d195fcca8c3a4e2905b97a9b41c5
fc8701a961e1c852a157cdf72915c968d7768b8f4273839bec64d3265147b745
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.disquscdn.com/next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js
143.204.55.14200 OK 496 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js
IP 143.204.55.14:0
File type ASCII text, with very long lines (958), with no line terminators
Hash 7f2d0fca9ed6b9bbbb6bf359f1402360
53e2be5c5dd7399a0650c543f32f2366fed8bd0f
ffdba86ea9261bcdb38983056f2baa71b5b5ad2016b0afa89b8a470d4395eae1
GET /next/embed/lounge.load.94f22ba62af084852428f342c37a2a17.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 496
date: Thu, 23 Feb 2023 19:13:47 GMT
server: nginx
last-modified: Thu, 23 Feb 2023 18:52:58 GMT
etag: "63f7b60a-1f0"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 23 Feb 2024 19:13:47 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ig_IFAjQIbLxQfWlxeLGU89Sf-5qwVXzYblJMUp-3WXEjLIsDBi2vA==
age: 1582791
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js
143.204.55.14200 OK 94 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js
IP 143.204.55.14:0
File type ASCII text, with very long lines (32023)
Hash bf4a0b5b88f74f7ef0476bf5f18d26b6
7f5b902779d8379c2790a6d07c49c7c25d30f1d5
05ff45a6562c6c33d76dd0c58498dcf5dba43d6e2240b94b05091d3e47c2d635
GET /next/embed/common.bundle.4ba4d839a8c58443b0a3c9c44262d3b7.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94186
date: Wed, 18 Jan 2023 17:45:34 GMT
server: nginx
last-modified: Wed, 18 Jan 2023 17:40:51 GMT
etag: "63c82f23-16fea"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 18 Jan 2024 17:45:34 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m3cBk4U25rSZulXu5AA6FDQ3Gu183lsH1h7LC_kfkho3rZ7WZTkkog==
age: 4698484
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
143.204.55.14200 OK 33 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
IP 143.204.55.14:0
File type ASCII text, with very long lines (65469)
Hash b1abfb9db5e807b98ed65ce8623d7dc5
445a4767c22e08ba896b756d215d29d8888f1d4e
19fab4127c2a939ec51c122dd03bbb28c4d3146794e982889c7ed617ef23417c
GET /next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 33270
date: Wed, 15 Feb 2023 19:09:53 GMT
server: nginx
last-modified: Wed, 15 Feb 2023 18:40:44 GMT
etag: "63ed272c-81f6"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 15 Feb 2024 19:09:53 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JYIm8OpigmN22F4efHpUVFFhbX7oSCMFT4K8VhTPET7S1vFUEZEJRw==
age: 2274226
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js
143.204.55.14200 OK 130 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js
IP 143.204.55.14:0
File type ASCII text, with very long lines (32018)
Size 130 kB (129739 bytes)
Hash 3d77971e869a0324d344d0977bcb5d89
0fccc448477f353e16a77b3c75e544936797156f
5929ac6b285678bfece5402dab180695c9841bc0cc37e079fe4fc2b310498da2
GET /next/embed/lounge.bundle.944405f46b741461538725b083516e4d.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 129739
date: Thu, 23 Feb 2023 19:13:47 GMT
server: nginx
last-modified: Thu, 23 Feb 2023 18:52:58 GMT
etag: "63f7b60a-1facb"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 23 Feb 2024 19:13:47 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -3tkW6Dw3Fdeysl_6Bh3kobEaZ-EuXl2-TrfYLvEYzVsIF2iF53ApA==
age: 1582792
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=talansbs&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.0.134200 OK 3.0 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=talansbs&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.0.134:0
File type JSON data\012- , ASCII text, with very long lines (3038), with no line terminators
Hash 093d8a5bc121ec76d02aa6bc0a95852c
86f5bf6feab597b217b37d5d597a65c349170080
d255958b7cf65da14db5ae5dd1c7d63f7932c669a0f69c6b1d862134b8bd476b
GET /api/3.0/forums/details?forum=talansbs&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3038
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 14 Mar 2023 02:53:40 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.14200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.14:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Sun, 15 Jan 2023 02:16:14 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-3317"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 15 Jan 2024 02:16:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: peqNm-nSJcg4P0z-RYpTq3pdogeRB8RvylLfSkwm2TpnO_MMt7Tjgw==
age: 5013446
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
143.204.55.14200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 143.204.55.14:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Thu, 12 Jan 2023 03:03:01 GMT
server: nginx
last-modified: Fri, 06 Jan 2023 19:06:43 GMT
etag: "63b87143-b9b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 12 Jan 2024 03:03:01 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dbwh7alIAYbHZUEogYz_Olvwf8EojHRx3Lq9DFxjpz6MyNkxgXU6Nw==
age: 5269839
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg
143.204.55.14200 OK 840 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg
IP 143.204.55.14:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (736)
Hash 727e30eb9b6c1e85cb010b9c8eb04c7e
5b7ed3f88c4d25d1d9e15bbd15af68daf5c573b4
0589c5845288117448d7aa710af60618b151d78efd1a2653f89a0b57f7eb3de8
GET /next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 840
date: Wed, 25 Jan 2023 03:23:40 GMT
server: nginx
last-modified: Fri, 20 Jan 2023 22:02:55 GMT
etag: "63cb0f8f-348"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 25 Jan 2024 03:23:40 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dQxpMQNTuAxpLjZc2TDJaNuWrMW6bZYTwUeC54du515yLlYdOEfWvw==
age: 4145400
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg
143.204.55.14200 OK 891 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg
IP 143.204.55.14:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (787)
Hash 8c96be6b50de1c3fab838c5f050e0be5
d0eb4a80710c083c77020cc3b6cd6756cf0bca60
068753b8f09b32ad8a3283199c7252090d0076a56924df724dda72828ae31b95
GET /next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 891
date: Sat, 28 Jan 2023 10:59:15 GMT
server: nginx
last-modified: Fri, 20 Jan 2023 22:02:55 GMT
etag: "63cb0f8f-37b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 28 Jan 2024 10:59:15 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mUPipMTs9KAky-oseAII3MadABwfWK_RfvybJNBcJwoVM13ejHfh0A==
age: 3858865
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg
143.204.55.14200 OK 605 B URL HTTP/2 c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg
IP 143.204.55.14:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (503)
Hash 3bc0b4bff6c268a4ceaf404014b9be42
d8f61dc82cbbd889b66505bb3e9c7711b9bb8cb5
a657bedd3bc0c106f7cfa5fe6556a0b7e175870d33bd7da9ef67ffcffbafda69
GET /next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 605
date: Tue, 17 Jan 2023 07:05:35 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-25d"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jan 2024 07:05:35 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ngIe-s9rL5FdiE_XgOK9anX3u-ebG6qo58cRLDXRde5h8t46Fk8o2w==
age: 4823285
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.14200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.14:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.2330dfe9833fc6fa82fa0ffee36e8c21.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Tue, 17 Jan 2023 06:16:10 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-6e3"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jan 2024 06:16:10 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v2wsTMQmyB-TWof3kwU_VMYEXFm8DXOItBqBlsW8K25cnDxTQt_0Jg==
age: 4826250
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da1c71ebaa9b47c2152bfd09c8906233
6a59f9eb7d15bcb6a23448c2c1b0e3d5fc834c6c
678690297e67d412845e35343d3caca656775876764ec0ca10dd7b2e53f59421
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.14200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.14:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Wed, 18 Jan 2023 06:17:27 GMT
server: nginx
last-modified: Thu, 12 Jan 2023 21:51:05 GMT
etag: "63c080c9-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 18 Jan 2024 06:17:27 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hBreAAfLWSPfDFuvDj7cDlkB4LRkAo-1615NmdqAkkWwwDvHSghmZA==
age: 4739773
X-Firefox-Spdy: h2
developers.google.com/
216.58.207.206200 OK 12 kB IP 216.58.207.206:0
Hash b9980d7e41f43f16608f656bef0e405f
adf31d88a313b472759a6e6d73f4f37d23190131
00b2d5d9847ac3d3078c10fa2fc1612640c3846a10a6ac26be42a53d4b6659c8
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Mar 2023 21:37:57 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.2535716247.1678762419; Expires=Thu, 13 Mar 2025 02:53:39 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-ry/0eKtly6W11+rpYLKrSU4dmRUAqx' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 86f348ba26bbd6158198a33b2e1f06ce
vary: Accept-Encoding
date: Tue, 14 Mar 2023 02:53:39 GMT
server: Google Frontend
content-length: 25750
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
talansbs.com/wp-content/plugins/greybox-integrator/greybox/w_close.gif
23.229.220.229200 OK 74 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/w_close.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 11 x 11\012- data
Hash 910dd85634d6c0c6b3bd9a081ca4b09b
9ea94f1d7c68b7317f7c8a4f7881d58bfa1bbdce
7a2730e63aee037949864ea19477701b096c00310ba32e44e22f2124a9c72367
GET /wp-content/plugins/greybox-integrator/greybox/w_close.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1029587020.1678762419.1678762419.1678762419.1; __utmb=69761045.1.10.1678762419; __utmc=69761045; __utmz=69761045.1678762419.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:40 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "730683e-4a-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 74
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/plugins/greybox-integrator/greybox/g_close.gif
23.229.220.229200 OK 541 B URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/g_close.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 25 x 30\012- data
Hash ae7187edec916ea7b4aa2f77dff1b091
016aafa05c05c382cb6f87989bd4d8261141bf2a
3e7f0e56964b201b30b49fb975290614ac8b9ed8ec7b4849b519a33f0c847aa5
GET /wp-content/plugins/greybox-integrator/greybox/g_close.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1029587020.1678762419.1678762419.1678762419.1; __utmb=69761045.1.10.1678762419; __utmc=69761045; __utmz=69761045.1678762419.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:40 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306812-21d-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 541
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
talansbs.com/wp-content/plugins/greybox-integrator/greybox/indicator.gif
23.229.220.229200 OK 8.2 kB URL HTTP/1.1 talansbs.com/wp-content/plugins/greybox-integrator/greybox/indicator.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 100 x 100\012- data
Hash f64b6f735c03431a65c7b211f55f5522
4d9a0c9e8d7aa20d6e6e3ea7881a41503028a7da
325c9abd3a010d95544f93d94a8ae5b9fae2a70affb4bfa260dd161cbf2e295b
GET /wp-content/plugins/greybox-integrator/greybox/indicator.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1029587020.1678762419.1678762419.1678762419.1; __utmb=69761045.1.10.1678762419; __utmc=69761045; __utmz=69761045.1678762419.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:40 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:59:41 GMT
ETag: "7306827-202e-5ce4314398d40"
Accept-Ranges: bytes
Content-Length: 8238
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da1c71ebaa9b47c2152bfd09c8906233
6a59f9eb7d15bcb6a23448c2c1b0e3d5fc834c6c
678690297e67d412845e35343d3caca656775876764ec0ca10dd7b2e53f59421
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Mar 2023 02:53:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Mar 2023 13:09:06 GMT
expires: Wed, 06 Mar 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 567874
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 Mar 2023 13:15:37 GMT
expires: Thu, 07 Mar 2024 13:15:37 GMT
cache-control: public, max-age=31536000
age: 481083
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 11 Mar 2023 12:49:39 GMT
expires: Sun, 10 Mar 2024 12:49:39 GMT
cache-control: public, max-age=31536000
age: 223441
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
142.250.74.106200 OK 17 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
IP 142.250.74.106:0
Hash bfdd4abeabe682f49fc16d9b1ddcddbe
093668c2dfe244fb36e2ee7b36987cadb6c1d9cc
e319f5564b97e71aca8754b86aca43b480fd78f5bdea79ba724039e80a070e5a
GET /css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 14 Mar 2023 02:53:40 GMT
date: Tue, 14 Mar 2023 02:53:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Hash 05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Mar 2023 17:30:28 GMT
expires: Fri, 08 Mar 2024 17:30:28 GMT
cache-control: public, max-age=31536000
age: 379392
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=356&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=845talkvu835i&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=356&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=845talkvu835i&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=356&event=init_embed&thread=274977158&forum=talansbs&forum_id=723630&imp=845talkvu835i&thread_slug=is_overfunding_holding_you_back_talan_sbs&user_type=anon&referrer=http%3A%2F%2Ftalansbs.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=talansbs&t_i=92%20http%3A%2F%2Ftalansbs.com%2F%3Fp%3D92&t_u=http%3A%2F%2Ftalansbs.com%2Fsmall-business%2Fis-overfunding-holding-you-back%2F&t_e=Is%20Overfunding%20Holding%20You%20Back&t_d=Is%20Overfunding%20Holding%20You%20Back%20%7C%20Talan%20SBS&t_t=Is%20Overfunding%20Holding%20You%20Back&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 14 Mar 2023 02:53:40 GMT
Cross-Origin-Resource-Policy: cross-origin
talansbs.com/small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92
23.229.220.229200 OK 37 B URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash 4d6e96cca45089cbf8cee6628831eca1
345ec56d8b648374b12f2d36b2b9041b7400e2c9
e89ec2b2cccb346ec4bc303eda6a08c5f23223db2a893b4bb0db2ef31d1b4d18
GET /small-business/is-overfunding-holding-you-back/?cf_action=sync_comments&post_id=92 HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
Cookie: __utma=69761045.1029587020.1678762419.1678762419.1678762419.1; __utmb=69761045.1.10.1678762419; __utmc=69761045; __utmz=69761045.1678762419.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Tue, 14 Mar 2023 02:53:40 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 37
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 0a8c3fb3b86addb1c325ee1a539fa43b
deaaaaf09e8577191fe807a350812aee73e397f6
7a463b7454434fcf88bd8688458c488d8e2e196f7e4218cefa38e75092cd5a0f
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Mar 2023 02:53:40 GMT
Last-Modified: Tue, 14 Mar 2023 01:04:38 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uXqFHyeU3uZ4ptosHfwcxfn8jSZqxAqxLMSXdde2c3oh3cpuMOrp1A==
Age: 6542
api.viglink.com/api/ping
52.17.236.17200 OK 233 B IP 52.17.236.17:0
File type ASCII text, with no line terminators
Hash 37c5c953c60dd7cdcaf7f1ef439aa581
04b8bf477290f365a0426cc9e3be162c8b458b65
8fbbf3e0096fe6f583acd546c896f066e0376001076b5cbfa8e667a0e9895746
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 171
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://talansbs.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Tue, 14 Mar 2023 02:53:40 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 233
Connection: keep-alive
api.viglink.com/api/sync.js?key=034153a8f6f990b64f375d12e1cc4572
52.17.236.17200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.js?key=034153a8f6f990b64f375d12e1cc4572
IP 52.17.236.17:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.js?key=034153a8f6f990b64f375d12e1cc4572 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Tue, 14 Mar 2023 02:53:41 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
api.viglink.com/api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572
52.17.236.17200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572
IP 52.17.236.17:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.gif?key=034153a8f6f990b64f375d12e1cc4572 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Tue, 14 Mar 2023 02:53:41 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
api.viglink.com/api/domains
52.17.236.17200 OK 41 B URL HTTP/1.1 api.viglink.com/api/domains
IP 52.17.236.17:0
File type ASCII text, with no line terminators
Hash af687ecaa0264a2f029e8e662ab3e450
a57f2dc4f478df366e5b8d3f02f108bd55a30fb8
3c3a4d447017f124e0a0a2e3c42cee17be024dcdf7a328ac8b773384a07a754a
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 269
Origin: http://talansbs.com
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://talansbs.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Tue, 14 Mar 2023 02:53:41 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive
api.viglink.com/api/time.gif?libId=lf7nsu9f01000nv1000DL1qvk8a6okncza&nocache=167876242412210&key=034153a8f6f990b64f375d12e1cc4572&e=%5B%7B%22event%22%3A%22png%22%2C%22time%22%3A296%2C%22total%22%3A2405%7D%2C%7B%22event%22%3A%22load%22%2C%22time%22%3A402%2C%22total%22%3A402%7D%5D&v=2
52.17.236.17200 OK 43 B URL HTTP/1.1 api.viglink.com/api/time.gif?libId=lf7nsu9f01000nv1000DL1qvk8a6okncza&nocache=167876242412210&key=034153a8f6f990b64f375d12e1cc4572&e=%5B%7B%22event%22%3A%22png%22%2C%22time%22%3A296%2C%22total%22%3A2405%7D%2C%7B%22event%22%3A%22load%22%2C%22time%22%3A402%2C%22total%22%3A402%7D%5D&v=2
IP 52.17.236.17:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/time.gif?libId=lf7nsu9f01000nv1000DL1qvk8a6okncza&nocache=167876242412210&key=034153a8f6f990b64f375d12e1cc4572&e=%5B%7B%22event%22%3A%22png%22%2C%22time%22%3A296%2C%22total%22%3A2405%7D%2C%7B%22event%22%3A%22load%22%2C%22time%22%3A402%2C%22total%22%3A402%7D%5D&v=2 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Tue, 14 Mar 2023 02:53:43 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
104.244.42.65200 OK 0 B URL HTTP/2 twitter.com/statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4
IP 104.244.42.65:0
GET /statuses/user_timeline/talansbs.json?callback=twitterCallback2&count=4 HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:36 GMT
perf: 7626143928
expiry: Tue, 31 Mar 1981 05:00:00 GMT
pragma: no-cache
server: tsa_o
set-cookie: guest_id=v1%3A167876241695729724; Max-Age=34214400; Expires=Sat, 13 Apr 2024 02:53:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
ct0=; Max-Age=-1678762415; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=Lax
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Tue, 14 Mar 2023 02:53:36 GMT
x-frame-options: DENY
x-transaction-id: 8f2fa548d13e0204
x-xss-protection: 0
x-content-type-options: nosniff
content-security-policy: connect-src 'self' blob: https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api-stream.twitter.com https://ads-api.twitter.com https://aa.twitter.com https://caps.twitter.com https://pay.twitter.com https://sentry.io https://ton.twitter.com https://twitter.com https://upload.twitter.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://app.link https://api2.branch.io https://bnc.lt wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://mobile.twitter.com https://pay.twitter.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://ton.twitter.com https://*.twimg.com https://analytics.twitter.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://app.link https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js 'nonce-ZGU4ODY3NzEtNTUyNC00ZDIwLThkYzEtYzlhYzQyMjBjYTlh'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://twitter.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false
strict-transport-security: max-age=631138519
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
content-encoding: gzip
x-response-time: 138
x-connection-hash: c29d78e6cab5342ae66a8e11904bb10cf0b31aae9fc01f3f2c7e2bc33ef6c4a0
X-Firefox-Spdy: h2
talansbs.com/Additems/twittericon.png
23.229.220.229404 Not Found 0 B URL HTTP/1.1 talansbs.com/Additems/twittericon.png
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
GET /Additems/twittericon.png HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://talansbs.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
stats.wordpress.com/e-202311.js
192.0.78.27200 OK 0 B URL HTTP/2 stats.wordpress.com/e-202311.js
IP 192.0.78.27:0
GET /e-202311.js HTTP/1.1
Host: stats.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Mar 2023 02:53:36 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
expires: Wed, 13 Mar 2024 02:53:36 GMT
cache-control: max-age=31536000
content-encoding: br
x-ac: 3.arn _dca MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
76.76.21.241404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
IP 76.76.21.241:0
GET /hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 15211
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 14 Mar 2023 02:53:36 GMT
etag: W/"246c93d65bc9223d56662b520a39292c"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::vhfsj-1678762416675-1b985ffe724a
X-Firefox-Spdy: h2
static.addtoany.com/menu/sm.24.html
188.114.98.234200 OK 0 B URL HTTP/2 static.addtoany.com/menu/sm.24.html
IP 188.114.98.234:0
GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:38 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 18 Nov 2022 00:47:55 GMT
etag: W/"2a5-5edb40e6d10d8"
cache-control: max-age=315360000, immutable
vary: Accept-Encoding
via: e2s
cf-cache-status: HIT
age: 2269014
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7a793a3c08040b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
23.229.220.229404 Not Found 0 B URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
GET /small-business/is-overfunding-holding-you-back/TalanPopupMenu_m1_3.gif HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
talansbs.com/small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf
23.229.220.229404 Not Found 0 B URL HTTP/1.1 talansbs.com/small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf
IP 23.229.220.229:0
ASN #398101 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Malware
GET /small-business/is-overfunding-holding-you-back/AddItems/flashbannerVer3.swf HTTP/1.1
Host: talansbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/small-business/is-overfunding-holding-you-back/
HTTP/1.1 404 Not Found
Date: Tue, 14 Mar 2023 02:53:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Pingback: http://talansbs.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
76.76.21.241308 Permanent Redirect 0 B URL HTTP/1.0 www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
IP 76.76.21.241:0
GET /hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/ HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://talansbs.com/
HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
Refresh: 0;url=https://www.stumbleupon.com/hostedbadge.php?s=5&r=http://talansbs.com/small-business/is-overfunding-holding-you-back/
server: Vercel
developers.google.com/
216.58.207.206200 OK 0 B IP 216.58.207.206:0
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 13 Mar 2023 21:37:57 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.2227098362.1678762419; Expires=Thu, 13 Mar 2025 02:53:39 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-ucCtdGJf2mWIfvPL1ufNrVVqJ4ig7/' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: e7c35f41a366f463425ac98567368712
vary: Accept-Encoding
date: Tue, 14 Mar 2023 02:53:39 GMT
server: Google Frontend
content-length: 23180
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tealdit.com/toolbar/v1.js
104.21.72.39200 OK 0 B URL HTTP/2 www.tealdit.com/toolbar/v1.js
IP 104.21.72.39:0
GET /toolbar/v1.js HTTP/1.1
Host: www.tealdit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://talansbs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Mar 2023 02:53:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 25 Oct 2019 01:09:08 GMT
access-control-allow-origin: *
etag: W/"5db24b34-1f65"
expires: Mon, 13 Mar 2023 13:42:53 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: BDBC:2F89:2496B26:25A6F8B:60BF3F92
via: 1.1 varnish
x-served-by: cache-osl6526-OSL
x-cache: MISS
x-cache-hits: 0
x-timer: S1623146386.195318,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: e47c2109ef8ff41ba1c17aa8a904b2f084884b21
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OkNKWGIKOPjj4r8iLIE5UFVglADXyhOI4T8k4RNNiax2wwM67A3UsJRrNewT7xkqpfKP4yOLJYeHBvm2IW6zGu1RoJaPQS0wv2TSkUbcXd1XRC0cRJARx6cJYNK%2FQX7dT3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a793a325ffcb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
142.250.74.109200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__
IP 142.250.74.109:0
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Ftalansbs.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://talansbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 14 Mar 2023 02:53:39 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-vKy3t7BXQH1-SyuK1uci2g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2