r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5206
Expires: Thu, 23 Mar 2023 06:28:59 GMT
Date: Thu, 23 Mar 2023 05:02:13 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5186
Expires: Thu, 23 Mar 2023 06:28:39 GMT
Date: Thu, 23 Mar 2023 05:02:13 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18041
Expires: Thu, 23 Mar 2023 10:02:54 GMT
Date: Thu, 23 Mar 2023 05:02:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 04:15:05 GMT
content-type: application/json
age: 2828
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: p6B4+FvQ+mTn/7U4bQ/7mE5Vm3gcXrb+0T+K7NX5UsyU4lkGBRPNu6ZWsYCS3M7R8E7Hl8l0ZKa6grVsrf0bwg==
x-amz-request-id: 28GVRKX1YDNCMYBH
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 04:59:48 GMT
age: 145
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:13 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
jessroberts.biz/
151.101.130.159301 Moved Permanently 162 B IP 151.101.130.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://jessroberts.biz/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 34p91kgtkx
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 05:02:13 GMT
X-Served-By: cache-bma1645-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679547733.406300,VS0,VE479
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 04:14:33 GMT
age: 2861
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11775
Expires: Thu, 23 Mar 2023 08:18:29 GMT
Date: Thu, 23 Mar 2023 05:02:14 GMT
Connection: keep-alive
push.services.mozilla.com/
34.212.1.171101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.1.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9915yVILZBO+BnUlg6r+hA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +DHdGFLiyWyoldsmxqeradK97ms=
jessroberts.biz/
151.101.130.159200 OK 17 kB IP 151.101.130.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 79c78388840ef4d170060bcbae8f782d
325103839fcb33f3b99a5a1236079b61a13acfdc
4be4f5c18d9f802940cfab4fafa73594accffe3587a8f0598caf9f42e05522f4
GET / HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://jessroberts.biz/wp-json/>; rel="https://api.w.org/", <https://jessroberts.biz/wp-json/wp/v2/pages/103>; rel="alternate"; type="application/json", <https://jessroberts.biz/>; rel=shortlink
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:14 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547734.929461,VS0,VE789
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 17436
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jessroberts.biz/wp-content/plugins/bb-plugin/css/yui3.css?ver=2.6.1.4
151.101.130.159200 OK 278 B URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/css/yui3.css?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (320)
Hash ff1149825ff154d9bcee89172f7b937c
b566d6a08d892af59a08777fc89650198a7d0479
b33ffe01f4dcabd147414b294f8ecb520dc30b9cbec17075cb72135f495b0ec4
GET /wp-content/plugins/bb-plugin/css/yui3.css?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:30 GMT
etag: W/"63acad06-1ca"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:14 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.803785,VS0,VE127
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 278
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/bb-plugin/cache/103-layout.css?ver=23897d19bcc6a0b7bcda04327f40fce5
151.101.130.159200 OK 6.9 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/bb-plugin/cache/103-layout.css?ver=23897d19bcc6a0b7bcda04327f40fce5
IP 151.101.130.159:0
File type ASCII text, with very long lines (38777), with no line terminators
Hash 72e6abb25b35f863ef64a86eb14faf5d
a2c04820337ea1136927569d64a30bd4a86dac6f
993ed79e4df054f6c4510ee03ffe18d983222d842581856566f5626e3d27a14e
GET /wp-content/uploads/bb-plugin/cache/103-layout.css?ver=23897d19bcc6a0b7bcda04327f40fce5 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:39 GMT
etag: W/"63acad0f-9779"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:14 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.806815,VS0,VE131
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6892
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jessroberts.biz/wp-includes/js/imagesloaded.min.js?ver=6.1.1
151.101.130.159200 OK 1.9 kB URL HTTP/2 jessroberts.biz/wp-includes/js/imagesloaded.min.js?ver=6.1.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (5477)
Hash fcf12c7d3f5778470877aff26bdb3040
b8cc6b30eb49ef014651e6f22e4a33b74a3fde1e
2b6a1c6d97acd8b8f1460d8e4acbac8f911aa950c482ab794888f40c63fb2d6f
GET /wp-includes/js/imagesloaded.min.js?ver=6.1.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-15fd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.811536,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1946
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.css?ver=2.6.1.4
151.101.130.159200 OK 1.8 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.css?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (5788), with no line terminators
Hash f71e7ce04683e8557167234843265fa0
5d3b6af3ede405c3c78ae8c020b7ff087fd5ce3f
e338380debcc979feba250af09c15fcff9b0e7a58b3670bd4d738b1eb87af86b
GET /wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.css?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:30 GMT
etag: W/"63acad06-169c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.805512,VS0,VE366
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1770
X-Firefox-Spdy: h2
jessroberts.biz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
151.101.130.159200 OK 4.4 kB URL HTTP/2 jessroberts.biz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 151.101.130.159:0
File type ASCII text, with very long lines (11126)
Hash 24957bc8161f979c6e661f46fdc3974f
fa1237ffe8b3745baa78ac481239038e133fcc17
46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.810881,VS0,VE370
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 4142ecbe4aa55fc6a53a0d8109305273
936f53add5cecaf8c44863addd266560fd537174
c2921917c5c3df97271326a4370b08a002d6266e80177ef0f90b195b7add192c
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167987
Date: Thu, 23 Mar 2023 05:02:15 GMT
Etag: "641bca8a-1d7"
Expires: Sat, 25 Mar 2023 03:42:02 GMT
Last-Modified: Thu, 23 Mar 2023 03:42:02 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NElEYZACt1lSCENWSoWEOISP0KEKQj103cYRQ5CFOy4QDF50avHkrQ==
jessroberts.biz/wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.10
151.101.130.159200 OK 12 kB URL HTTP/2 jessroberts.biz/wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.10
IP 151.101.130.159:0
File type ASCII text, with very long lines (39553)
Hash 3ca06003790c90f0694264b3e249811b
baf6f28dfd42dbebd6308a0ff6e4593cb0245c65
d2151ef4b1e1b4c10b1a567e56ff242a6cb1ce3b57383f8d30940db939bfc5a3
GET /wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.10 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Feb 2022 19:32:51 GMT
etag: W/"62153a63-9b01"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.822505,VS0,VE374
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 12327
X-Firefox-Spdy: h2
jessroberts.biz/wp-includes/css/classic-themes.min.css?ver=1
151.101.130.159200 OK 189 B URL HTTP/2 jessroberts.biz/wp-includes/css/classic-themes.min.css?ver=1
IP 151.101.130.159:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-d9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.803241,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 189
X-Firefox-Spdy: h2
640421.17hats.com/vendor/iframeSizer.min.js
52.1.169.86200 OK 3.0 kB URL HTTP/2 640421.17hats.com/vendor/iframeSizer.min.js
IP 52.1.169.86:0
File type ASCII text, with very long lines (7273)
Hash 853d1206abbdce6b2c0f1e72bce3b8b6
2edba847c7681ac7a867b778d05cd2de9ecb57dd
0990c16abcda04ef9a153bfd6d5278661ecbb903ab228e9398181738ce206a0d
GET /vendor/iframeSizer.min.js HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: application/javascript
content-length: 3041
set-cookie: AWSALB=EuQcNPfFeIm9V3LtiaILPxa4hR1qQ/QlWHPQdoO6VZ4sWuxt6zhZU8Ahhe1h+F4oA9c/kab31wd+jolF9umCS40cLYdoV7KSZkQyzlN+Qzx0OPncmSF4Qd01Jscd; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=EuQcNPfFeIm9V3LtiaILPxa4hR1qQ/QlWHPQdoO6VZ4sWuxt6zhZU8Ahhe1h+F4oA9c/kab31wd+jolF9umCS40cLYdoV7KSZkQyzlN+Qzx0OPncmSF4Qd01Jscd; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:41 GMT
vary: Accept-Encoding
etag: "641b0e7d-be1"
content-encoding: gzip
expires: Sat, 22 Apr 2023 05:02:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/css/fl-slideshow.min.css?ver=2.6.1.4
151.101.130.159200 OK 2.1 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/css/fl-slideshow.min.css?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (9840), with no line terminators
Hash 7a345739202532405fa1dfdcf914e56d
8580a296a4773f9adc9741822ee8416c45ef77e0
2666d54dee981f634f710c75a0813a8a3a11bb92edac943bafbbab056a6af104
GET /wp-content/plugins/bb-plugin/css/fl-slideshow.min.css?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:30 GMT
etag: W/"63acad06-2670"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.804415,VS0,VE483
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2090
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
151.101.130.159200 OK 3.8 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (21597)
Hash 5d94e9dfe684d8939b2f38b7c2abf59f
e1904fc25bba9064f96fa5ae1ce08d60d2b5b572
76d520984098e60a0bef8c0d336ca057cce7185d11cedf18c2ec2a10ccea3c2e
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:38 GMT
etag: W/"63acad0e-545e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.801869,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3802
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.10
151.101.130.159200 OK 23 kB URL HTTP/2 jessroberts.biz/wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.10
IP 151.101.130.159:0
File type ASCII text, with very long lines (65369)
Hash 51845f410fb1b0eeef58da80c2d44470
9183b6ec9fe49b1f2645940687c557c36448c379
5748dff062f32a83685d0ffde90ab383b77f9ca0f17c0234876c866b6b938371
GET /wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.10 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 22 Feb 2022 19:32:51 GMT
etag: W/"62153a63-1da44"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.807455,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 23191
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.magnificpopup.min.js?ver=2.6.1.4
151.101.130.159200 OK 7.7 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.magnificpopup.min.js?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (19875), with no line terminators
Hash 66b22edbd74025f18a6925a7f0d21f8f
132886b083e78eb4057bb8c35f5ab72411455f1d
8662072c37ebdfaa846eb41b96158e882e71e1849ffa53014b9a3cd0c1769c95
GET /wp-content/plugins/bb-plugin/js/jquery.magnificpopup.min.js?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:33 GMT
etag: W/"63acad09-4da3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.817147,VS0,VE480
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7740
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/instagram-feed/img/placeholder.png
151.101.130.159200 OK 128 B URL HTTP/2 jessroberts.biz/wp-content/plugins/instagram-feed/img/placeholder.png
IP 151.101.130.159:0
File type PNG image data, 1000 x 560, 1-bit colormap, non-interlaced\012- data
Hash df582c0e7603dd0dd951a8c7c43b5b67
f98ca6ef133dbbba533e6a9bd6b2c47e20d0221e
729b6d856232e28f9f26f8a17b33b46833b1b5e3a1e7316f9ac3ad96946d57c4
GET /wp-content/plugins/instagram-feed/img/placeholder.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 28 Dec 2022 20:54:38 GMT
etag: W/"63acad0e-b0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.814004,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 128
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/bb-theme/skin-63ac9750b0625.css?ver=1.7.10
151.101.130.159200 OK 8.9 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/bb-theme/skin-63ac9750b0625.css?ver=1.7.10
IP 151.101.130.159:0
File type ASCII text, with very long lines (49330), with no line terminators
Hash c5a9c65eea21a55f3c1c2649542cdcd8
f12c32d371f337a0ec62d813287f653bcf9a30bf
4cdf4e8849b04965fefbbdbcc048f71eb1c194d42b838f71d3a8a674a8af5e30
GET /wp-content/uploads/bb-theme/skin-63ac9750b0625.css?ver=1.7.10 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 19:21:53 GMT
etag: W/"63ac9751-c0b2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.809804,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 8894
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.1.4
151.101.130.159200 OK 14 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (59119)
Hash 0a194885188e9a881b32f2ec5fc89862
de618328e6cd1b899f8d9fcb87ac1ea0079690f3
acd1a177d91bcea2dc4d71764e5771d12532d24d6211a9d91897cb44776f9c47
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: W/"63acad07-e7a9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.805013,VS0,VE496
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14273
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/themes/bb-theme-child/style.css?ver=6.1.1
151.101.130.159200 OK 228 B URL HTTP/2 jessroberts.biz/wp-content/themes/bb-theme-child/style.css?ver=6.1.1
IP 151.101.130.159:0
Hash 6f47efebebdd6fc5d7a064d97e96e9e2
d138f9d1ac443806514626ccbf0a3e99a94c1db6
776791082ce219f5e28b192f498735a482e493e307b65d7be1a8935c67b68956
GET /wp-content/themes/bb-theme-child/style.css?ver=6.1.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 22 Jul 2017 02:00:37 GMT
etag: W/"5972b1c5-147"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.809780,VS0,VE492
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 228
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/v4-shims.min.css?ver=2.6.1.4
151.101.130.159200 OK 4.6 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/v4-shims.min.css?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (26516)
Hash 9c78e889181a2b969b18d6e388094e6c
50f8d0d019d9fc18713624eb283736a32c621d1c
716ceac0cfc0b6dffcf1dbfdbd5e51414ffcb5783ba29a12a58afb452e238d86
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/v4-shims.min.css?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: W/"63acad07-684e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.806386,VS0,VE495
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4632
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce.min.js?ver=2.6.1.4
151.101.130.159200 OK 462 B URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce.min.js?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (479)
Hash 1801cbd5f162b6cfff17b576b9e1790e
a124a5c928059065b1062024ff55240284e6a0cb
66dc9e93d476201c0069d92a5a019bb1812ddebc87bfa9eaa93d0da39e3d3feb
GET /wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce.min.js?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:33 GMT
etag: W/"63acad09-2db"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.819614,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 462
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.10
151.101.130.159200 OK 6.2 kB URL HTTP/2 jessroberts.biz/wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.10
IP 151.101.130.159:0
File type ASCII text, with very long lines (22766), with no line terminators
Hash 29af55138080b68571d9ae2587ece603
ac4ac5209a996313330badc6dfc90f263bc78996
63d20d8a6318d49e8e40c2ffb578b778eeea949007c41d5120fb77914d2cd782
GET /wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.10 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Feb 2022 19:32:51 GMT
etag: W/"62153a63-58ee"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.822697,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6183
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/bb-plugin/cache/103-layout.js?ver=6e5c3449f10e6a8d1710e19a90c6f9fd
151.101.130.159200 OK 7.3 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/bb-plugin/cache/103-layout.js?ver=6e5c3449f10e6a8d1710e19a90c6f9fd
IP 151.101.130.159:0
File type Unicode text, UTF-8 text, with very long lines (1938)
Hash 7f1690cf67fde84909153fddd4b5fd39
5499771221bdfe2e5a23cd18e18b408a7d231efc
2fe3f4126515c7c56f856593120b18cd985e7652ca2b1c2110930a84303fd1dd
GET /wp-content/uploads/bb-plugin/cache/103-layout.js?ver=6e5c3449f10e6a8d1710e19a90c6f9fd HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:39 GMT
etag: W/"63acad0f-62ef"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.818727,VS0,VE493
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7313
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.1
151.101.130.159200 OK 8.4 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (27578)
Hash 1f389fbc464dd48ed657fc765583cdef
f3acc58fbb6a02a0c5266f8f1a5802eadf0c7629
731cc3c2c82e8259ea6b20ab036259a5d91f287cd9988eed4d618669fc95298b
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:38 GMT
etag: W/"63acad0e-6bbb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.822901,VS0,VE490
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 8360
X-Firefox-Spdy: h2
jessroberts.biz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
151.101.130.159200 OK 5.5 kB URL HTTP/2 jessroberts.biz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (15660)
Hash 17db16eba9de064a60b18a592b36634a
82fc955209623803111e48d5be3cf345315be6f5
1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.834837,VS0,VE480
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.waypoints.min.js?ver=2.6.1.4
151.101.130.159200 OK 2.9 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/js/jquery.waypoints.min.js?ver=2.6.1.4
IP 151.101.130.159:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash b9c21d81e5638490e0ac92728dbddc3a
8627eba6f5a2a5973007b0451e5883ce742d1a0f
76c046f7622946633ac721a2955b1476c28dff6c2dea65f20e0a2ca803f5ea3e
GET /wp-content/plugins/bb-plugin/js/jquery.waypoints.min.js?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:33 GMT
etag: W/"63acad09-2281"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.817010,VS0,VE520
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2892
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/js/fl-slideshow.min.js?ver=2.6.1.4
151.101.130.159200 OK 27 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/js/fl-slideshow.min.js?ver=2.6.1.4
IP 151.101.130.159:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash bc9724970ba2ab660eefa26c6ba4d8bc
b3895b12d3d605fef49b6ec6040e1fc2da55f703
cde60b769ff00646159f9d88cbbb07d2cde70d798244a7dfb6d96de606062e10
GET /wp-content/plugins/bb-plugin/js/fl-slideshow.min.js?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:33 GMT
etag: W/"63acad09-18ac2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.815633,VS0,VE611
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 27125
X-Firefox-Spdy: h2
jessroberts.biz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
151.101.130.159200 OK 34 kB URL HTTP/2 jessroberts.biz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (65447)
Hash 0f9984c60ff89c58395cad7c309f7baf
5f44ff87ee19e1427a7dfcfb079ab88273e2af1f
0dddffc97ab66c2cf2dd615f7f6ca217b8f8eadaa4e8224c2c7d4447878444e7
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-15e54"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.810214,VS0,VE630
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34161
X-Firefox-Spdy: h2
jessroberts.biz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
151.101.130.159200 OK 15 kB URL HTTP/2 jessroberts.biz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 151.101.130.159:0
File type ASCII text, with very long lines (47826)
Hash 494d5da4270464f0f04720e2d2274891
aa632853200ab33d1ac163033782a89b35ab74a5
4db474d81bc40165336350d9d3de98277cc7c49aa4d9096d451255749e99595b
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-172a9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.802622,VS0,VE639
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14912
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/js/yui3.min.js?ver=2.6.1.4
151.101.130.159200 OK 78 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/js/yui3.min.js?ver=2.6.1.4
IP 151.101.130.159:0
File type ASCII text, with very long lines (9257)
Hash 9d57cd27ece675a6c9df16d47c4a94ad
a52e7a2d0da08b6f240353e67d0b92081f8e022e
f8eb32c12e9f7f6ff437b2250f50be7c1b048b92049c9235018f1c83d6fe3cc8
GET /wp-content/plugins/bb-plugin/js/yui3.min.js?ver=2.6.1.4 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:33 GMT
etag: W/"63acad09-3670e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547735.814529,VS0,VE731
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 78467
X-Firefox-Spdy: h2
assets.flodesk.com/universal.js?v=1679547742713
54.230.111.72200 OK 37 kB URL HTTP/1.1 assets.flodesk.com/universal.js?v=1679547742713
IP 54.230.111.72:0
File type Unicode text, UTF-8 text, with very long lines (38931), with LF, NEL line terminators
Hash 6e51442734453c72e112bc560abec0c4
95498633ef3d06b440dc15b666e9e60d83a506bf
73a52c38c027d5073ec69e2634869f6c7f4b9a45005fcd1689665f9cc766c93d
GET /universal.js?v=1679547742713 HTTP/1.1
Host: assets.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2023 09:08:37 GMT
Last-Modified: Tue, 21 Mar 2023 09:08:30 GMT
ETag: W/"2afad91403208f75843a8f47973929c4"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KzZ_M8RnrLD0lR4ZBq5R6AQ22-wwpak0sR0b7Rr4TWtuLjpTQUPvSA==
Age: 158019
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78815ec28cdd11dab4f66f2eaab35658
c6fd7f2a657d87c6e7641be6fc69913c427cd26a
f99b9d279c7ddfe7916dde9c7390be1f225e330ffa662bd7ae603ceed76e44c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
640421.17hats.com/ruby/embed/lead/form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg
52.1.169.86301 Moved Permanently 178 B URL HTTP/2 640421.17hats.com/ruby/embed/lead/form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg
IP 52.1.169.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /ruby/embed/lead/form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Cookie: AWSALBCORS=EuQcNPfFeIm9V3LtiaILPxa4hR1qQ/QlWHPQdoO6VZ4sWuxt6zhZU8Ahhe1h+F4oA9c/kab31wd+jolF9umCS40cLYdoV7KSZkQyzlN+Qzx0OPncmSF4Qd01Jscd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: text/html
content-length: 178
location: https://640421.17hats.com/p#/embed/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg
set-cookie: AWSALB=ARKA4a0stzKoO98zXkD0F5q0haqNWWprwdBRGP7eWciDuAWyNRj5TD7IbGglBpH0H+D5XJET4RgJQwXUxuosdoMEt93hetcFroLIYiWvl5850+mhmxiXgdNyvuL7; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=ARKA4a0stzKoO98zXkD0F5q0haqNWWprwdBRGP7eWciDuAWyNRj5TD7IbGglBpH0H+D5XJET4RgJQwXUxuosdoMEt93hetcFroLIYiWvl5850+mhmxiXgdNyvuL7; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v32/0QIvMX1D_JOuMwr7Iw.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/lora/v32/0QIvMX1D_JOuMwr7Iw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35888, version 1.0\012- data
Hash 78be9c1daeadb1ae4f8d1e622d7b2011
60923c3b5dfe1a5a07b9092ec9c5583d004d0c5b
9f46649ea544819982ea288c6f386dd67d46da0f453f95da542196372b79731e
GET /s/lora/v32/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35888
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:12 GMT
expires: Thu, 21 Mar 2024 18:05:12 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 21 Feb 2023 21:45:58 GMT
content-type: font/woff2
age: 39423
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v25/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/josefinsans/v25/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10892, version 1.0\012- data
Hash 9d350f6f6942c8861d13dfad74adfc29
cfe029cfd2d9f6ea109675421474bbb4920bf5bf
4a79b18e7744f210f2400940cbd7e4b7767391e833645f761b759e9a1a365af7
GET /s/josefinsans/v25/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:23 GMT
expires: Thu, 21 Mar 2024 18:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:22 GMT
content-type: font/woff2
age: 39412
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13982
Expires: Thu, 23 Mar 2023 08:55:17 GMT
Date: Thu, 23 Mar 2023 05:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13982
Expires: Thu, 23 Mar 2023 08:55:17 GMT
Date: Thu, 23 Mar 2023 05:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13982
Expires: Thu, 23 Mar 2023 08:55:17 GMT
Date: Thu, 23 Mar 2023 05:02:15 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Lora%3A400%2C700%2C300%7CJosefin+Sans%3A400&ver=6.1.1
172.217.21.170200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Lora%3A400%2C700%2C300%7CJosefin+Sans%3A400&ver=6.1.1
IP 172.217.21.170:0
Hash 0189792937e97029c0cd9c3585f635db
0ffd4b97487264a0ee3903938f88c614da82237b
d761b051a22319cd3ab189ea45d308db738cce6cef9a999de7ddaa33ffe0aa0b
GET /css?family=Lora%3A400%2C700%2C300%7CJosefin+Sans%3A400&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 05:02:14 GMT
date: Thu, 23 Mar 2023 05:02:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13982
Expires: Thu, 23 Mar 2023 08:55:17 GMT
Date: Thu, 23 Mar 2023 05:02:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cff797b-5560-422b-9907-7a2fbe8dd123.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cff797b-5560-422b-9907-7a2fbe8dd123.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05c7970e81559904d05b6e8cf693f085
709b01a360624eceafb1876f56378824aa4936b3
a4fd80c9bdce27961560d7c31e216706e9e32d42d1edd883e283c149505b3db0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cff797b-5560-422b-9907-7a2fbe8dd123.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7424
x-amzn-requestid: 9a2bd57a-40d2-4bc0-b4ca-183e9a928bdc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM-3aGPzoAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b782f-0dc56e4a7c4aaeb45b45c75b;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:50:39 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8mTKClr9GKzzrm1TtEmMeBnOQfMLTO4dBuAO-fE4UEfV-SwrFbkjZQ==
via: 1.1 ec27e2bbc77d9805bead471453d2094c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 02:54:31 GMT
age: 7664
etag: "709b01a360624eceafb1876f56378824aa4936b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: dd5a8417-ddd5-469d-aa84-e880f4b84464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CHqKFGRsoAMFTGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6419570d-3f28a7502b56eda47dd82ba7;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 07:04:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: JImqyag05jmvEwsJSvKFVuisuS5KNKfr7xRuN0YPyneNXvVxKkFMzg==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 05:35:55 GMT
age: 84380
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae396653-384e-48e4-9824-4bf9d53f211b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae396653-384e-48e4-9824-4bf9d53f211b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90be67fd11de3a169f4de942f6418f3f
55bd99cc5490b60e7a653ffa5f2a8c288ef66e87
b07e34257bbaa41c941650a839adad82d4999d92ee62402dbec969d9464c89b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae396653-384e-48e4-9824-4bf9d53f211b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10959
x-amzn-requestid: a7e3f891-6f0e-48af-9a37-3cb8f9cae223
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xD8G-pIAMFagQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64156218-3334d770691739b77f855b0b;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:02:48 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RmTQewe6KB0ictxZUj2umye1wlB6l5FkLEoXfGsR2adHPRU9KyXxWQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 03:55:26 GMT
age: 4009
etag: "55bd99cc5490b60e7a653ffa5f2a8c288ef66e87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340c6dd8-fc2f-45fc-9318-44a28c249325.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340c6dd8-fc2f-45fc-9318-44a28c249325.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6de676f6856031e5c1baebe9166a8269
d81a4852f956999fa28a5f667ed73506843d0731
71f282ba594e454a2abf1c3700ade4d9461d6d48ac2726f746f3da5a63e29c38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340c6dd8-fc2f-45fc-9318-44a28c249325.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9687
x-amzn-requestid: b7c8cd8c-6103-4aa4-9016-f02cf368908d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8JGHyEoAMFzJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73d3-2fb1fd1b5be3289047f8aed4;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:32:03 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pwTgv5KbsBUYyFFmAaQkVuceVkWmy6S5-JrC5QptjI6eZYMu23hopg==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:47:44 GMT
age: 26071
etag: "d81a4852f956999fa28a5f667ed73506843d0731"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31ad983ec21e3dee7b6083bc04742aee
a98933e2845c02158175a54d9648f12086a96569
8cb18730db03dd8727b2ff42ecfa7885b9e8dbe3c37c08b1ad0c67e629338b95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5915
x-amzn-requestid: 1c6acb42-48cc-4113-a8d0-6a811cd16613
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xXaGUVoAMFwIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64156295-0edcaad90df031882fa7457c;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:04:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6f6NSPPmIBAP_pxmZuHRz6WJJjnp3NIO26SNyKYhq2FikQkP5hOe7w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:58:52 GMT
age: 25403
etag: "a98933e2845c02158175a54d9648f12086a96569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bd3d66-c15a-489f-a066-7fc0aaa2f508.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bd3d66-c15a-489f-a066-7fc0aaa2f508.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6e44089e37d1db52bccdaa78bf9dc30
b5ba66ebc4e07d83bb698736a81a2b7316a0e178
91e722a8374fafc556911cf9767eb67107de540d96b3eb0f0932e131d99f2893
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bd3d66-c15a-489f-a066-7fc0aaa2f508.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10034
x-amzn-requestid: 7975aeb0-15ce-45a7-a088-9bed5af69fc4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8v9FAmoAMFjHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b74cc-401b308c459c247e76ab5643;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:36:12 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: mQBKW2-nNlrm1gXBZG4V7rhteAvKjpeCmHIUQEabNmXV2HfMgijWaQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 23:07:18 GMT
age: 21297
etag: "b5ba66ebc4e07d83bb698736a81a2b7316a0e178"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
640421.17hats.com/p
52.1.169.86200 OK 2.3 kB IP 52.1.169.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d56db5523c7fa8cd3a3ae131a82a5f7f
4c56607324a7160e23bffdc01219f6265691c4d6
c050654768ef7856b2096b93137bf4a1ec4786b5fceabfb562c7538d6b0da0cf
GET /p HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Cookie: AWSALBCORS=ARKA4a0stzKoO98zXkD0F5q0haqNWWprwdBRGP7eWciDuAWyNRj5TD7IbGglBpH0H+D5XJET4RgJQwXUxuosdoMEt93hetcFroLIYiWvl5850+mhmxiXgdNyvuL7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: text/html
content-length: 2304
set-cookie: AWSALB=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:41 GMT
vary: Accept-Encoding
etag: "641b0e7d-900"
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/img/slideshow/arrows-prev.png
151.101.130.159200 OK 1.5 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/img/slideshow/arrows-prev.png
IP 151.101.130.159:0
File type PNG image data, 140 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash a04b26f2c265f4de69a4117fc267907b
9100fa5d968a249d800ec0fb64c8469dbd66fae4
01cec9bb5ba12cac9beddb71302be07efc130b0026dbb14e931a8510e33ec422
GET /wp-content/plugins/bb-plugin/img/slideshow/arrows-prev.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/wp-content/plugins/bb-plugin/css/fl-slideshow.min.css?ver=2.6.1.4
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: W/"63acad07-5a2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.777159,VS0,VE129
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1470
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/img/slideshow/arrows-next.png
151.101.130.159200 OK 1.4 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/img/slideshow/arrows-next.png
IP 151.101.130.159:0
File type PNG image data, 140 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 94e923050014b5462fe16c968d0fba0b
f4887efc98ed0ae233d6353c15bf16c682605168
67b9bbdac1fc0fb380f755c261929dcb5987e3a1a0d887604ea72ec90ddb2ed9
GET /wp-content/plugins/bb-plugin/img/slideshow/arrows-next.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/wp-content/plugins/bb-plugin/css/fl-slideshow.min.css?ver=2.6.1.4
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: W/"63acad07-589"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:15 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.777372,VS0,VE142
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1445
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f6cd.svg
192.0.77.48200 OK 476 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f6cd.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (476), with no line terminators
Hash a2ba6861bf663df7158a5699cae07c1c
ee2a1bddfb480778c4dd885a9331fdc9a8a5d071
abdefd43489ff1d6efb48eefcb9e16366319aaaa17ac330cd5c71eafe8b0f879
GET /images/core/emoji/14.0.0/svg/1f6cd.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
content-length: 476
last-modified: Tue, 12 Apr 2022 03:53:44 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f461.svg
192.0.77.48200 OK 729 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f461.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (729), with no line terminators
Hash 88c6d18631a6faeff7ad175f18afa209
1ded3e64009ff1a8e885ac7a0d00fb3a8cf2c4e9
00469a7d44acbc8c78c9fc2d7b30207ca59e353ac8d6852f74a8c3ca8ecf2187
GET /images/core/emoji/14.0.0/svg/1f461.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
content-length: 729
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f48b.svg
192.0.77.48200 OK 701 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f48b.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (701), with no line terminators
Hash 1f47248f358622a7398c81207142239b
c72dfb2f08498d876edce2602dbcdfe3d6933b4e
a8b89a9cf527dda297f2f59c8bfbb5b9166f7c6a823ece83f1b60bb916f46572
GET /images/core/emoji/14.0.0/svg/1f48b.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
content-length: 701
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f484.svg
192.0.77.48200 OK 857 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f484.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (759), with no line terminators
Hash 0e1403878010cc7f30a8c9280a7fa4f0
c788890beb893d8c7a31c88d30b759932cfbd3c6
0d89f17fd62233c91c70c0cd4c15fcc8a8e68d998912b9ebff8c375bdf9edf68
GET /images/core/emoji/14.0.0/svg/1f484.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 3f342e766a60f735d4b2e2e64f814427
fec8fdf853aa30ee9d0ada908f96248856912f4e
f5952958739dbf7951d223af3f2077de30724746d157b49d6d634596ddd2c3c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4289
Cache-Control: max-age=160127
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Etag: "641b9b15-1d7"
Expires: Sat, 25 Mar 2023 01:31:02 GMT
Last-Modified: Thu, 23 Mar 2023 00:19:33 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash ae4e9eff4647dbe4dc4f85f225f41def
a347cf4455c687e28bd91aaeb3b87105673955df
96bedb011a247068a707ac3636ea8d6c96c151dbb5f68b54d1a323733cf92ac9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:15 GMT
Last-Modified: Thu, 23 Mar 2023 04:52:57 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
www.google.com/maps/embed/v1/place?q=Opelousas%2C+LA+70570&key=AIzaSyD09zQ9PNDNNy9TadMuzRV_UsPUoWKntt8
216.58.207.228200 OK 968 B URL HTTP/2 www.google.com/maps/embed/v1/place?q=Opelousas%2C+LA+70570&key=AIzaSyD09zQ9PNDNNy9TadMuzRV_UsPUoWKntt8
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1575)
Hash d23450dd3b1a60f026cdc7fe44960b02
cb89d8a2c35bf24e6590ccfba387c80cb9abb37d
52f8034c5a1fd8cdc64f95fa34679e8b3f9e6d3c91653fa7fd713f4e838db9b2
GET /maps/embed/v1/place?q=Opelousas%2C+LA+70570&key=AIzaSyD09zQ9PNDNNy9TadMuzRV_UsPUoWKntt8 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-AdxPO_6h9ETCeCspjjICqw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
vary: Accept-Language, Origin, X-Origin, Referer
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 23 Mar 2023 05:02:15 GMT
server: scaffolding on HTTPServer2
content-length: 968
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paypalobjects.com/api/checkout.js
192.229.221.25200 OK 240 kB URL HTTP/2 www.paypalobjects.com/api/checkout.js
IP 192.229.221.25:0
Size 240 kB (239948 bytes)
Hash 1a79f774e86cef470e40f60a7573f57c
04dfedfead801ead6998d693940d937acdbb7142
452c8b8b984b8a666fda43e2ee92f9ac4836a5db0e1a031bb4cb7577b5713725
GET /api/checkout.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 05:02:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6266d4b0-16d23e"
expires: Fri, 24 Mar 2023 05:02:16 GMT
last-modified: Mon, 25 Apr 2022 17:04:48 GMT
paypal-debug-id: b1ee0c211b6e9
server: ECAcc (ska/F770)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 239948
X-Firefox-Spdy: h2
cdn.plaid.com/link/v2/stable/link-initialize.js
54.230.111.13200 OK 42 kB URL HTTP/2 cdn.plaid.com/link/v2/stable/link-initialize.js
IP 54.230.111.13:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 6abb0f08244ee922acb5af2a442fac67
c5f6fb029abad8da30739747deef296f174bb1b4
611b4a1a9ba3bfd02e3d62c67a2e88fdd6ca1123b01408c5b8c111b138e67431
GET /link/v2/stable/link-initialize.js HTTP/1.1
Host: cdn.plaid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: Jzfbuq5veWMbb1if6i5WO8zLJQZVg6MAPX5h+FHL5ytYxdQFbg7j7lM1kg/zcXE+vdSag9jJzOc=
x-amz-request-id: BAFSNCFV6F0C27Y3
date: Wed, 22 Mar 2023 05:05:35 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Mar 2023 02:01:34 GMT
etag: W/"3c02eb2133698a1883cc6c48e2a17eed"
x-amz-server-side-encryption: AES256
cache-control: no-cache,must-revalidate,max-age=0
x-amz-version-id: txNnlc09ke9BF34X4xPj51sUXOcRiHQ2
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vZanvKcv10ucOAlDj1VrGhZVLj39XeZD9iOfTj5BO5PjvC-kzgkspA==
age: 86202
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 66 kB IP 142.250.74.131:0
Hash 3ef6dfbf3b57ddb1cffb291af4dffe5f
0dab8207dfa5a5fedeaa7a959028d574f0773542
15ca67d70d885130a772bff2c7dbc797d48f657e745871d8acedba5e46b12e59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
form.flodesk.com/forms/5eb5e513df06e70026d09698
54.230.111.9404 Not Found 57 B URL HTTP/2 form.flodesk.com/forms/5eb5e513df06e70026d09698
IP 54.230.111.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f7fccb2a919e065c9d35b52a8868074d
c96f20fd6da5d7e5e7ab0ecbeb0394a44d7d06de
5c80b449c409844b646774f68b983543fa7ed0ddb8905538db3406fa548ee54c
GET /forms/5eb5e513df06e70026d09698 HTTP/1.1
Host: form.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: application/json; charset=utf-8
content-length: 57
date: Thu, 23 Mar 2023 05:02:16 GMT
access-control-allow-origin: *
vary: Origin
x-cache: Error from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dxGto0kX2YznGtsfdSP3xlYZQKncJGgJoid7heQVsePGAeFC4JaTGQ==
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/2022/07/1-800x800.png
151.101.130.159301 Moved Permanently 162 B URL HTTP/1.1 jessroberts.biz/wp-content/uploads/2022/07/1-800x800.png
IP 151.101.130.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2022/07/1-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://jessroberts.biz/wp-content/uploads/2022/07/1-800x800.png
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 34p91kgtkx
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 05:02:16 GMT
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679547736.819251,VS0,VE478
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
640421.17hats.com/images/logo-17hats-white.png
52.1.169.86200 OK 3.5 kB URL HTTP/2 640421.17hats.com/images/logo-17hats-white.png
IP 52.1.169.86:0
File type PNG image data, 140 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash f539130fafb47a82094d4b929347d042
02f2c41733bceeaaaf7a7589f9aec1902d04d0e6
88db6b078b30ba64ec4ac4fda7821cade6ba1062a438883b0a2a3fba86ac2d2e
GET /images/logo-17hats-white.png HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
Connection: keep-alive
Cookie: AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/png
content-length: 3470
set-cookie: AWSALB=i2KfxpPg49yQx1bECh28Vdt9njnhl47qGqFZ7CrRbBV9UCkb0LBzVdmrriFfsytKeeaN/3q45MU7CrG0bz14PBsF+VmOOJudkm/LQT636w00pt5Zj+UbY871zGNS; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=i2KfxpPg49yQx1bECh28Vdt9njnhl47qGqFZ7CrRbBV9UCkb0LBzVdmrriFfsytKeeaN/3q45MU7CrG0bz14PBsF+VmOOJudkm/LQT636w00pt5Zj+UbY871zGNS; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:39 GMT
etag: "641b0e7b-d8e"
expires: Sat, 22 Apr 2023 05:02:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
accept-ranges: bytes
X-Firefox-Spdy: h2
form.flodesk.com/forms/5eb5e731b9c153002b5ac51c
54.230.111.9404 Not Found 57 B URL HTTP/2 form.flodesk.com/forms/5eb5e731b9c153002b5ac51c
IP 54.230.111.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f7fccb2a919e065c9d35b52a8868074d
c96f20fd6da5d7e5e7ab0ecbeb0394a44d7d06de
5c80b449c409844b646774f68b983543fa7ed0ddb8905538db3406fa548ee54c
GET /forms/5eb5e731b9c153002b5ac51c HTTP/1.1
Host: form.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: application/json; charset=utf-8
content-length: 57
date: Thu, 23 Mar 2023 05:02:16 GMT
access-control-allow-origin: *
vary: Origin
x-cache: Error from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ks9SV0SfO0-DfeNs5PSkXUoOEnDhrGnT6AAztpVlBDfbsNC9iaeg6w==
X-Firefox-Spdy: h2
640421.17hats.com/client_pages.d6becd7fa4d5d1a94e93.css
52.1.169.86200 OK 163 kB URL HTTP/2 640421.17hats.com/client_pages.d6becd7fa4d5d1a94e93.css
IP 52.1.169.86:0
File type Unicode text, UTF-8 text, with very long lines (51389)
Size 163 kB (162850 bytes)
Hash c7b48ef29a016c4c3e6bf1ede57f53a8
661ed2c2987762cf8b18d3d21ba7272215402ccd
f6ccb4b9f428ab8b3e143e92a27ef12602949b4a28c0d588d76e4dbb3ed6ca62
GET /client_pages.d6becd7fa4d5d1a94e93.css HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
Connection: keep-alive
Cookie: AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: text/css
content-length: 162850
set-cookie: AWSALB=4IRBM1hNA//B+86ixO1ZgB+ccNaVogOAlq7hqDR0ZOVVgAcg7MidLg8TzlJotjH/L5ySbaBlUsYs4aoTgMYv4LTJC2khF3tRnRp7di/ZrwgRu0+Ib8GjJJk32BKW; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=4IRBM1hNA//B+86ixO1ZgB+ccNaVogOAlq7hqDR0ZOVVgAcg7MidLg8TzlJotjH/L5ySbaBlUsYs4aoTgMYv4LTJC2khF3tRnRp7di/ZrwgRu0+Ib8GjJJk32BKW; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:41 GMT
vary: Accept-Encoding
etag: "641b0e7d-27c22"
content-encoding: gzip
expires: Sat, 22 Apr 2023 05:02:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2
151.101.130.159200 OK 13 kB URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2
IP 151.101.130.159:0
File type Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Hash b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.1.4
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: "63acad07-33a8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:16 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.672177,VS0,VE787
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13224
X-Firefox-Spdy: h2
640421.17hats.com/client_pages_vendor.d6becd7fa4d5d1a94e93.js
52.1.169.86200 OK 294 kB URL HTTP/2 640421.17hats.com/client_pages_vendor.d6becd7fa4d5d1a94e93.js
IP 52.1.169.86:0
File type Unicode text, UTF-8 text, with very long lines (65242)
Size 294 kB (294275 bytes)
Hash 486233aec5eeb2ff1e4a0a8cbc9e9249
336179184b7a3bf524738f93edcf60f9d906c234
b4e3a00e0758c0ac38d6676455cc171bb2dfe6a02b3193318cc875556ac28b2b
GET /client_pages_vendor.d6becd7fa4d5d1a94e93.js HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
Connection: keep-alive
Cookie: AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: application/javascript
content-length: 294275
set-cookie: AWSALB=ax8VrWFR4C5TYftoy6V6XGXg7cYHVfiUYciN6621lrnNW5ltzSrJU39T55c3UYmyejPgQvmTPUzwI7QHbUSHDJ2/meCcKu9xoB155//c4jAINx0TFtpHMq+zhM/V; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=ax8VrWFR4C5TYftoy6V6XGXg7cYHVfiUYciN6621lrnNW5ltzSrJU39T55c3UYmyejPgQvmTPUzwI7QHbUSHDJ2/meCcKu9xoB155//c4jAINx0TFtpHMq+zhM/V; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:41 GMT
vary: Accept-Encoding
etag: "641b0e7d-47d83"
content-encoding: gzip
expires: Sat, 22 Apr 2023 05:02:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
640421.17hats.com/client_pages.d6becd7fa4d5d1a94e93.js
52.1.169.86200 OK 385 kB URL HTTP/2 640421.17hats.com/client_pages.d6becd7fa4d5d1a94e93.js
IP 52.1.169.86:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 385 kB (385273 bytes)
Hash f0e7da1a8b5f619a21d76b8b4e3d3272
129e4565a0facedfb437ab7690d7d01930f3dfbf
c07976bc99170ac5ae016f8e7f3d4e2150497a4e632ed505b9c6ab47d200ae01
GET /client_pages.d6becd7fa4d5d1a94e93.js HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
Connection: keep-alive
Cookie: AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: application/javascript
content-length: 385273
set-cookie: AWSALB=N2p45yCfAoC+yw1SePLgUPfTcvYtv7dmFzFj6otAjS24aHh8X5kFZZyviXUWgEqGrgx8+LCGXDRakbXmxwIvgCRgpBLcVaLPfo67yFUOoIJT4N9Tt8vQPWlKrJXm; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=N2p45yCfAoC+yw1SePLgUPfTcvYtv7dmFzFj6otAjS24aHh8X5kFZZyviXUWgEqGrgx8+LCGXDRakbXmxwIvgCRgpBLcVaLPfo67yFUOoIJT4N9Tt8vQPWlKrJXm; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 22 Mar 2023 14:19:41 GMT
vary: Accept-Encoding
etag: "641b0e7d-5e0f9"
content-encoding: gzip
expires: Sat, 22 Apr 2023 05:02:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
640421.17hats.com/perl/reseller/0/config
52.1.169.86200 OK 5.0 kB URL HTTP/2 640421.17hats.com/perl/reseller/0/config
IP 52.1.169.86:0
Hash 16ea610c6cc363f0d4c168cbb9e8b5cd
3af6044ceac95c897b2a648a7d38b50aafee6bb3
64b497b3ea29d916cb93febb1a942b3d278429aebb28aff2edb305fd727607eb
GET /perl/reseller/0/config HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
Connection: keep-alive
Cookie: AWSALBCORS=9Wc8BOwO0ILLFDxkdF1HfIv3D/S+fAqTcYKO5RP3cxX5QVmAaJZO6zDqE5aRT4jKpTFqpE2do7+74zSyzDBFuk70wL9K/xTL6/dLR+g5vQEG9V4LGl6gNx2xFmqW
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: text/javascript; charset=ISO-8859-1
set-cookie: AWSALB=L12IIOa+A+/QFdbfLVJB7vfwuIrrfwzYrBYSWNLTFnF/+efiBDd2506oQD86AxHnKhg1lghKAayw1OepoS80XwZFIJA46PYFHDmz01RDLv+/95E30J51AV7Xp6iK; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/
AWSALBCORS=L12IIOa+A+/QFdbfLVJB7vfwuIrrfwzYrBYSWNLTFnF/+efiBDd2506oQD86AxHnKhg1lghKAayw1OepoS80XwZFIJA46PYFHDmz01RDLv+/95E30J51AV7Xp6iK; Expires=Thu, 30 Mar 2023 05:02:15 GMT; Path=/; SameSite=None; Secure
plack_session=ac50ad490ea6adafff0b3defa62952b9fefc5bd4; path=/; expires=Thu, 30-Mar-2023 05:02:15 GMT; SameSite=Lax; secure; HttpOnly
server: nginx
access-control-allow-credentials: true
access-control-allow-headers: Cookie, Origin, X-Requested-With, Content-Type, Accept
access-control-allow-origin: https://www.17hats.com
vary: Origin
x-17hats-update-threshold: 1
x-17hats-updated: 2021-04-16 13:00:00
x-backend-server: sh21appserver2
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
X-Firefox-Spdy: h2
web.squarecdn.com/v1/square.js
52.222.214.78200 OK 106 kB URL HTTP/2 web.squarecdn.com/v1/square.js
IP 52.222.214.78:0
File type Unicode text, UTF-8 text, with very long lines (34131), with NEL line terminators
Size 106 kB (106404 bytes)
Hash 84de42a8065d484f9484eb1caff54932
37c577a7f7f9d9cb3838b31588a370f2caed457f
54a5a5342f36c891ec12d76e8805cb4edd1d05ade6b6ff8efc44d4f263ff6a55
GET /v1/square.js HTTP/1.1
Host: web.squarecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 300
last-modified: Tue, 21 Mar 2023 18:01:48 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-websdk-version: 1.47.0
x-amz-meta-md5checksum: xucDqvD3qvjZ01YmsiFJMQ==
x-amz-version-id: ABfmspPp5iqrqYx7ica1ctrAhD_xvFWW
server: AmazonS3
content-encoding: gzip
date: Wed, 22 Mar 2023 18:59:25 GMT
cache-control: public, max-age=300
etag: W/"c6e703aaf0f7aaf8d9d35626b2214931"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6851af5c4f6d355fa4ec39cc8cc0c358.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P3
x-amz-cf-id: e3Mr7_N2W1MJ5GtTDKNjrwJrom4AbAqwf7QeNp0DgQVibiEWP8oUiQ==
age: 36171
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
54.230.111.108200 OK 200 B URL HTTP/2 js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP 54.230.111.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 93afeeb17bc37e711759584dbfc50d47
bbbc9e5d68854172c90b993064df560996a2a433
f22005da41e15b7adb453814b37a794f7c6b955f086a6c5fc9980e3c3f6c8bca
GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 200
last-modified: Fri, 17 Mar 2023 17:07:38 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
timing-allow-origin: *
date: Thu, 23 Mar 2023 04:24:18 GMT
cache-control: max-age=31536000
etag: "93afeeb17bc37e711759584dbfc50d47"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rA5Ynche8eGFe_zdUYgyUCU5ZGeMbY7KkFPxoDYoFdK5gAT_hw1Kqg==
age: 2370
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
54.230.111.108200 OK 631 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP 54.230.111.108:0
File type ASCII text, with very long lines (526)
Hash f8f6a4584135f737b26927596ce6e0a7
609ea9e9c46563fb1dc78a7967c926394e73ffab
250a0782da875705bd206ee23c2a46abf90656645a81e084126c5e8c53eeb9d6
GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 631
last-modified: Tue, 21 Mar 2023 20:10:40 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
date: Thu, 23 Mar 2023 04:31:36 GMT
cache-control: max-age=31536000
etag: "f8f6a4584135f737b26927596ce6e0a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SxXjh5n-dMtKGY2HL91YcIbq0sbSyNhqm7aO-F5uivBEaMBjCvedHA==
age: 1841
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 23c054d3aee551b6fdc42a5a472a7040
b1a46c12ac7d65c979fd1998bdb243f3dba8f956
9e8b91ab91da9ea20dfb5f90c1c06239d2872b0eb80785534d0c59c3b51de404
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
142.250.74.67200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
IP 142.250.74.67:0
File type ASCII text, with very long lines (576)
Size 165 kB (164678 bytes)
Hash f22f07ee02fbeed3958345c90b52b818
2aa44ea19d580589c06c2170103b4d0505e18cdb
dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84
GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Origin: https://640421.17hats.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164678
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 08:21:26 GMT
expires: Thu, 21 Mar 2024 08:21:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Mar 2023 02:02:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 74451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 23 Mar 2023 04:05:11 GMT
expires: Thu, 23 Mar 2023 06:05:11 GMT
cache-control: public, max-age=7200
age: 3426
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.stripe.network/inner.html
151.101.0.176200 OK 527 B URL HTTP/2 m.stripe.network/inner.html
IP 151.101.0.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash e02352ef72e8a9563463c07174b0e50f
7a41613f7eae0819d1a4785eae3617fdbb33b9b3
2275fff71f8cbf1f25a1af7f7bbe5ecbc868ed0b16d345a8ce31770f66fc8ea5
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:17 GMT
via: 1.1 varnish
age: 55
x-request-id: acf19266-e73d-484b-b708-b871738f2441
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 17
x-timer: S1679547737.244923,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 527
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
151.101.0.176200 OK 16 kB URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 151.101.0.176:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 0b880c6e7a381ef1f81263cf34c54e79
af46e0111cb22576b07084f4b49be7b41b5fc3ca
115ea79f002c0c2e3405178f66ce92ecb5173e7678f692ab65d6bbf526880b7b
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:17 GMT
via: 1.1 varnish
age: 227
x-request-id: 22eda536-4faa-499e-a966-ca7a03551b56
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 40
x-timer: S1679547737.270413,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 16031
X-Firefox-Spdy: h2
api.privy.com/businesses/F07B83DD76D51A5980926CD9/campaigns.json?s=j&l=https%3A%2F%2Fjessroberts.biz%2F&user_uuid=db98d720-8391-4534-bc3a-bfdef3fcfcdf&fence=1
172.67.36.106200 OK 538 B URL HTTP/2 api.privy.com/businesses/F07B83DD76D51A5980926CD9/campaigns.json?s=j&l=https%3A%2F%2Fjessroberts.biz%2F&user_uuid=db98d720-8391-4534-bc3a-bfdef3fcfcdf&fence=1
IP 172.67.36.106:0
Hash 5a546cc94db31d032075e7a2943f66b2
98ef45d743fe9a8a0622704bc9d26e7d8a663256
78d291f8c60ad6bd372110af507092e0f0031c61d3e5d489916800715674c263
GET /businesses/F07B83DD76D51A5980926CD9/campaigns.json?s=j&l=https%3A%2F%2Fjessroberts.biz%2F&user_uuid=db98d720-8391-4534-bc3a-bfdef3fcfcdf&fence=1 HTTP/1.1
Host: api.privy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:16 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
access-control-request-method: *
access-control-expose-headers: X-IPCountry, X-IPRegion, X-IPPostalCode
x-ipcountry: NO
x-ipregion: NO_
x-ippostalcode:
etag: W/"085775193a3438660321ef433979fcf5"
cache-control: max-age=0, private, must-revalidate
x-request-id: e20df9f9-eb74-4e95-ae74-381aedcc49f0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac41f05defdb51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
scripts.kissmetrics.com/9a5ef53f1759d5142653d35c105e37287d602dd4.2.js
54.230.80.66200 OK 11 kB URL HTTP/1.1 scripts.kissmetrics.com/9a5ef53f1759d5142653d35c105e37287d602dd4.2.js
IP 54.230.80.66:0
File type ASCII text, with very long lines (1432)
Hash 87a9aaf13caa600b81d7ca3f11e58b36
903cb79d11360b161fcb728db720b36e6d373a01
01e8d321725dd2ba5448e1af7638f07b0e541f1964e4030b5c29ba0f42510dcd
GET /9a5ef53f1759d5142653d35c105e37287d602dd4.2.js HTTP/1.1
Host: scripts.kissmetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:01:48 GMT
Server: nginx/1.6.2
Last-Modified: Thu, 13 Aug 2020 13:15:30 GMT
Cache-Control: max-age=60
P3P: CP="NOI CURa ADMa DEVa TAIa OUR IND UNI NAV INT"
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EAQlRtOUuzKdP_p8szMxgC-MjWc0hqSAQMDGrObgA8eC3RU9hFOQMg==
Age: 29
jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2
151.101.130.159200 OK 42 B URL HTTP/2 jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2
IP 151.101.130.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jessroberts.biz/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.1.4
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 28 Dec 2022 20:54:31 GMT
etag: "63acad07-131bc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:16 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.659422,VS0,VE763
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 78268
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f607.svg
192.0.77.48200 OK 3.7 MB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f607.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2126), with no line terminators
Size 3.7 MB (3713617 bytes)
Hash 2c4514cbe3e8e2aded3c7c8c1b841ac6
c18fb7f90349322b2ca9cbf0b68abf15be5e3ee2
c7b90562468958198f1e6e672634110a0be6ec3f7aabc58243fbc7050a5c5066
GET /images/core/emoji/14.0.0/svg/1f607.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-32x32.jpg
151.101.130.159200 OK 650 B URL HTTP/2 jessroberts.biz/wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-32x32.jpg
IP 151.101.130.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 42fd487fd7613cb5ccee5bb7463c0d1a
32ea386e530b41c85539790b3475af5a0f636cc4
0b2445cb6065a534a87c81156306b66221b0724a4a49e787152da90c52574497
GET /wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-32x32.jpg HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 29 Jun 2020 21:04:51 GMT
etag: W/"5efa5773-2be"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:17 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1679547738.757856,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 650
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 5306abb10738a61323705ea2fcf272d5
42ce374cabd1e2e2304b9ce723e71a3f5b7abd0e
09ee85910b5f1968d266f0582a805c240cc4912c9c6f9ccd6053a2fd78b603b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1220
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:17 GMT
Last-Modified: Thu, 23 Mar 2023 04:41:57 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 6e965ba75b84abf96ca0d83da48d2fbb
4c2eb4c06cabee4d0f0606e88e9e074e2f767168
4b39bfe671df590e9c5baf75008d76f4272d8ffbafd7108e7592f8165b6806c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1225
Cache-Control: max-age=120660
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:17 GMT
Etag: "641b0ce4-1d7"
Expires: Fri, 24 Mar 2023 14:33:17 GMT
Last-Modified: Wed, 22 Mar 2023 14:12:52 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e5f5bf796d91f271e383cf1ff3ee5af4
70ead02da19095ca752d55e89a48fcdf59d44d33
247f023e282f1556e668df0033858196d682f31f659d1b53ea6dcaeff56c401a
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: +5b0d/aOVsPCkoED2ISXCnwN/l1rm6WSAqAMeBsP7YTpXlJQ0Mv/LoVflqN9xfGGDop/7K8wcdXER0hzFBm4kQ==
content-length: 27907
x-fb-trip-id: 1679558926
date: Thu, 23 Mar 2023 05:02:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.kissmetrics.com/i.js
34.231.187.28200 OK 39 B IP 34.231.187.28:0
File type ASCII text, with no line terminators
Hash b1ca97940743ae11772cd5117d4cc0f1
bb43ec4b616225219997b3326e273e12086cc8c5
2bc18c5e40b439c202bfa5d0a973c2a8c30ccdb6a83c85c5d0b55cd2abcad8b9
GET /i.js HTTP/1.1
Host: i.kissmetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:17 GMT
content-type: application/x-javascript
content-length: 39
server: nginx
expires: Sat, 22 Apr 2023 04:46:26 GMT
cache-control: max-age=2592000
p3p: CP="NOI CURa ADMa DEVa TAIa OUR IND UNI NAV INT"
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 6e965ba75b84abf96ca0d83da48d2fbb
4c2eb4c06cabee4d0f0606e88e9e074e2f767168
4b39bfe671df590e9c5baf75008d76f4272d8ffbafd7108e7592f8165b6806c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1225
Cache-Control: max-age=120660
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 05:02:17 GMT
Etag: "641b0ce4-1d7"
Expires: Fri, 24 Mar 2023 14:33:17 GMT
Last-Modified: Wed, 22 Mar 2023 14:12:52 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
trk.kissmetrics.io/e
34.238.181.251200 OK 43 B IP 34.238.181.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
POST /e HTTP/1.1
Host: trk.kissmetrics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 274
Origin: https://640421.17hats.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 05:02:17 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Expires: Thu, 23 Mar 2023 05:02:16 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
assets.flodesk.com/752.ef04906239c6f2c2f0d5.js
54.230.111.72200 OK 11 kB URL HTTP/1.1 assets.flodesk.com/752.ef04906239c6f2c2f0d5.js
IP 54.230.111.72:0
File type ASCII text, with very long lines (32974), with no line terminators
Hash 633d52728767a6f8b8d810d03ec48901
7ebf3a383fa0297518ce61f8bf676a189913292d
bcc443c46a9650a5532aa6e8b3d36e20a78c6171203abb555943c68e9f0d9d70
GET /752.ef04906239c6f2c2f0d5.js HTTP/1.1
Host: assets.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2023 09:08:39 GMT
Last-Modified: Tue, 21 Mar 2023 09:08:04 GMT
ETag: W/"3ba541affccf5ceb9f8b62c8eb5bf05c"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ihWzkj4ThW-TG8c_MW5PdzVHF4yaLc9gKBCYGAfnD-AWcsIIda4x2g==
Age: 158019
assets.flodesk.com/54.59a1110999bb4f5be4df.js
54.230.111.72200 OK 6.3 kB URL HTTP/1.1 assets.flodesk.com/54.59a1110999bb4f5be4df.js
IP 54.230.111.72:0
File type ASCII text, with very long lines (20517), with no line terminators
Hash bbdb1deb30558a8ccb69c3355d4b2407
136f4f23f2fe9ef32958a7fdc00bdd84492c7860
5aaf26266f14118c1a2cb99b1ff53d09d07a81635d2fa6e58131f7c50c018f9a
GET /54.59a1110999bb4f5be4df.js HTTP/1.1
Host: assets.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2023 09:08:38 GMT
Last-Modified: Tue, 21 Mar 2023 09:08:04 GMT
ETag: W/"dce89f43a52852e3b6c1109d3bb27932"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ytYCykg9DV8sj-Vxr10-HgjxO6USYbJKwxo2e2CMXjoO65TLVZh93g==
Age: 158020
jessroberts.biz/wp-content/uploads/2022/07/1-800x800.png
151.101.130.159200 OK 156 B URL HTTP/2 jessroberts.biz/wp-content/uploads/2022/07/1-800x800.png
IP 151.101.130.159:0
Hash 7787adefe43f862ab1087cc0e6df06ce
3986a526a2a1a416c86118c1e761bf3103c60bb0
741f454af44f6886d4874b685f7adfc6cd66128b4e1d8d0c8b3732087928e3fe
GET /wp-content/uploads/2022/07/1-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 06 Jul 2022 22:24:58 GMT
etag: W/"62c60bba-3723b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:17 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.318489,VS0,VE893
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 219627
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f608.svg
192.0.77.48200 OK 765 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f608.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1417), with no line terminators
Hash ef19c212a6118df79dc18e9037dafd6a
e56ffd4966222a5b1b42ac0bc69005a51470b1d7
10ff6214fd48f7b6ce7ed8c1f4a4a13ef23b985acc2860d18a2c6f46bff0af08
GET /images/core/emoji/14.0.0/svg/1f608.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f393.svg
192.0.77.48200 OK 1.2 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f393.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (958), with no line terminators
Hash e3918017b3bde08a2cb9425893b81ab4
857ee3912a6843118245f23342e2f661d3dcb846
e7adc3cbc65bfb39f4eb4886e2f62f56b5f3e1a2f8be0f394b51c9730907d02c
GET /images/core/emoji/14.0.0/svg/1f393.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-192x192.jpg
151.101.130.159200 OK 6.5 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-192x192.jpg
IP 151.101.130.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 4d309d8125714e0364c96f076bf5f116
d480e3d6e4dc8591bfaff2dfcd90e9ac72c693ef
ef69816af67b5ac744d1d331f00781975aa3276232888f70ea4cac7d56ca8d46
GET /wp-content/uploads/2020/05/cropped-Marcella_9-28-18_051-scaled-2-192x192.jpg HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 29 Jun 2020 21:04:51 GMT
etag: W/"5efa5773-1974"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:18 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547738.757392,VS0,VE487
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6506
X-Firefox-Spdy: h2
usercontent.flodesk.com/forms/5eb5e513df06e70026d09698/data.json?v=839773860
54.230.111.24200 OK 0 B URL HTTP/1.1 usercontent.flodesk.com/forms/5eb5e513df06e70026d09698/data.json?v=839773860
IP 54.230.111.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /forms/5eb5e513df06e70026d09698/data.json?v=839773860 HTTP/1.1
Host: usercontent.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://jessroberts.biz/
Origin: https://jessroberts.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 0
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:02:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, PUT, POST, DELETE
Access-Control-Allow-Headers: content-type
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Server: AmazonS3
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
Cache-Control: max-age=31536000
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K7eMcDSz3nj_Tm3yTB1QnGJcSHJl7-shvDPyf6KMm4AMIcOuXT_C3w==
usercontent.flodesk.com/forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860
54.230.111.24200 OK 0 B URL HTTP/1.1 usercontent.flodesk.com/forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860
IP 54.230.111.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860 HTTP/1.1
Host: usercontent.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://jessroberts.biz/
Origin: https://jessroberts.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 0
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:02:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, PUT, POST, DELETE
Access-Control-Allow-Headers: content-type
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Server: AmazonS3
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Cache-Control: max-age=31536000
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FcgCgfu8dpr1vqT2XuYRmArT4qxUf91TVeaNYe5bEmYgeOAS461vMQ==
trk.kissmetrics.io/e
34.238.181.251200 OK 43 B IP 34.238.181.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
POST /e HTTP/1.1
Host: trk.kissmetrics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 99
Origin: https://640421.17hats.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 05:02:18 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Expires: Thu, 23 Mar 2023 05:02:17 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
jessroberts.biz/wp-content/uploads/2022/07/2-800x800.png
151.101.130.159301 Moved Permanently 162 B URL HTTP/1.1 jessroberts.biz/wp-content/uploads/2022/07/2-800x800.png
IP 151.101.130.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2022/07/2-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://jessroberts.biz/wp-content/uploads/2022/07/2-800x800.png
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 34p91kgtkx
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 05:02:18 GMT
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679547737.260527,VS0,VE1204
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
s.w.org/images/core/emoji/14.0.0/svg/2728.svg
192.0.77.48200 OK 13 MB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2728.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1052), with no line terminators
Size 13 MB (13095143 bytes)
Hash 753d8bf8b304c3f4c7101d482479f6ea
154a051709e8bda344a603d680cdbcefacade380
be2144cbb6fdf6411217947040c54f162313eee5e38a9f48e9855b6d5081596c
GET /images/core/emoji/14.0.0/svg/2728.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:53:44 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/2022/07/2-800x800.png
151.101.130.159200 OK 154 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/2022/07/2-800x800.png
IP 151.101.130.159:0
Size 154 kB (153555 bytes)
Hash 2b800e3149cbaad3896f29a7bf8b97ea
4e9da781ed98d4ffded1b90c145cc0990cb9db97
3495adc4934ddc9e01961bd1907be45ee5e82a91aa2292cd6689ecaa683d0ef9
GET /wp-content/uploads/2022/07/2-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 06 Jul 2022 22:25:01 GMT
etag: W/"62c60bbd-270d2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:18 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547738.487468,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 152952
X-Firefox-Spdy: h2
usercontent.flodesk.com/forms/5eb5e513df06e70026d09698/data.json?v=839773860
54.230.111.24200 OK 4.1 kB URL HTTP/1.1 usercontent.flodesk.com/forms/5eb5e513df06e70026d09698/data.json?v=839773860
IP 54.230.111.24:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18425), with no line terminators
Hash b8e31f0047c2b74422f6e1ea9b0bbaf0
32a26363ade8057dc01565692146285f73493406
c76405e6ae039e5dbfe8df8337bb29daad33196262b1a483a69b574402086bc2
GET /forms/5eb5e513df06e70026d09698/data.json?v=839773860 HTTP/1.1
Host: usercontent.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:02:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, PUT, POST, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Fri, 08 May 2020 23:07:26 GMT
Etag: W/"88a5cdc7ffc1937d4625537212acc513"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
Cache-Control: max-age=31536000
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fg09pnnXzdX6f3k8VJBMkPC4VoyTvTIii1J5Dv8kmOrG4MgUMYCLdg==
usercontent.flodesk.com/forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860
54.230.111.24200 OK 3.4 kB URL HTTP/1.1 usercontent.flodesk.com/forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860
IP 54.230.111.24:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (14784), with no line terminators
Hash 1b66ab2a54c5884a641a90ddda9739cf
907c6bea0420f048bbde527dd2b0786f5bc1a720
d1bfba362c2163181a67683bb830ff98784415c9aef825fb69561b9221416136
GET /forms/5eb5e731b9c153002b5ac51c/data.json?v=839773860 HTTP/1.1
Host: usercontent.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:02:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, PUT, POST, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Fri, 08 May 2020 23:15:12 GMT
Etag: W/"ec22374f785f2666f4853c437069fcd6"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
Cache-Control: max-age=31536000
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WoBDXHNrG3mQrMmYheaGNeklPwWAWDpUsQyc-gup-vzdDEj0-PUm1Q==
assets.flodesk.com/form.js?v=1679547747062
54.230.111.72200 OK 49 kB URL HTTP/1.1 assets.flodesk.com/form.js?v=1679547747062
IP 54.230.111.72:0
File type Unicode text, UTF-8 text, with very long lines (34496), with LF, NEL line terminators
Hash 525c7c7d9f1f4eba6a50c0236e65a2c3
b6ccea38955d1a167920378d1907267f8bd1cd88
780db2c9c19c9134070274e893e8c6545a3c122cbb34e964c631505d1a35950e
GET /form.js?v=1679547747062 HTTP/1.1
Host: assets.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2023 09:08:38 GMT
Last-Modified: Tue, 21 Mar 2023 09:08:29 GMT
ETag: W/"fef7f8ac441745e0ae8d6cb86d12c127"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VkIqhQwWcULC3eIFybYYL-_e0SWmq4HgRj9GZdV0nTlcUUEivKz14A==
Age: 158022
use.typekit.net/fau7jsf.css
23.36.76.186200 OK 634 B URL HTTP/2 use.typekit.net/fau7jsf.css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash e4b556970823b6b7baa7c4105f6681fa
da246671a45b1a912d8923f177119e9ec29f31fa
0589a167baf6cb5e25b26d27804ae005c7b9fde7e34ecda4c08cca4723d7f72f
GET /fau7jsf.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 634
date: Thu, 23 Mar 2023 05:02:19 GMT
X-Firefox-Spdy: h2
assets.flodesk.com/form.js?v=1679547747025
54.230.111.72200 OK 49 kB URL HTTP/1.1 assets.flodesk.com/form.js?v=1679547747025
IP 54.230.111.72:0
File type Unicode text, UTF-8 text, with very long lines (34496), with LF, NEL line terminators
Hash 525c7c7d9f1f4eba6a50c0236e65a2c3
b6ccea38955d1a167920378d1907267f8bd1cd88
780db2c9c19c9134070274e893e8c6545a3c122cbb34e964c631505d1a35950e
GET /form.js?v=1679547747025 HTTP/1.1
Host: assets.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2023 09:08:38 GMT
Last-Modified: Tue, 21 Mar 2023 09:08:29 GMT
ETag: W/"fef7f8ac441745e0ae8d6cb86d12c127"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BiZeVV__4aq_-9mMq_zPjj5blIXELl_D4bAwxkJVP1EkJXfvkt8ojw==
Age: 158022
use.typekit.net/anh0idy.css
23.36.76.186200 OK 730 B URL HTTP/2 use.typekit.net/anh0idy.css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 35675362f79244bbd7ab2eeff017b1a6
d4ba55bb2fb23ab9f0e5d04da50f1c1289f5f64c
d526de15fde147109f5ed38419185d97cb031065fb1f5cecf049a3ec402d235b
GET /anh0idy.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 730
date: Thu, 23 Mar 2023 05:02:19 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=fau7jsf&ht=tk&f=22004.22005&a=12822158&app=typekit&e=css
23.36.76.186200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=fau7jsf&ht=tk&f=22004.22005&a=12822158&app=typekit&e=css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=fau7jsf&ht=tk&f=22004.22005&a=12822158&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:20 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=anh0idy&ht=tk&f=28483.28484.28485.28486&a=12822158&app=typekit&e=css
23.36.76.186200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=anh0idy&ht=tk&f=28483.28484.28485.28486&a=12822158&app=typekit&e=css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=anh0idy&ht=tk&f=28483.28484.28485.28486&a=12822158&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:20 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/777bed/00000000000000007735ddc7/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.186200 OK 45 kB URL HTTP/2 use.typekit.net/af/777bed/00000000000000007735ddc7/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 45264, version 1.0\012- data
Hash 80163685ae19b6c3088b706d97637508
d1eb8300c5536ed0de97e36391dccabf944519b9
41e87b5670e1d9e44e15646dc95a8a243e43b58e82dce0c3cac71e221479cf73
GET /af/777bed/00000000000000007735ddc7/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 45264
etag: "d6d41f71aa80e75b3fc4272d86d6496b5f1af5f6"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 23 Mar 2023 05:02:20 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/23ea79/00000000000000007735b2ff/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.186200 OK 77 kB URL HTTP/2 use.typekit.net/af/23ea79/00000000000000007735b2ff/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 76644, version 1.0\012- data
Hash 540a781b3092378088aa7e5392ee796e
3252d4e4ffcce30f9b0607442503b2f1ef429a94
a14da484e2ec003510c050ddb2870c9995fc4ebc6c8bc9ec67364fb6f89173b0
GET /af/23ea79/00000000000000007735b2ff/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jessroberts.biz
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 76644
etag: "23826d6d7440386316f7a1dc7a11585db30b66ad"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 23 Mar 2023 05:02:20 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=846032898840689&ev=PageView&dl=https%3A%2F%2Fjessroberts.biz%2F&rl=&if=false&ts=1679547747323&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679547747322.392955913&it=1679547745070&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=846032898840689&ev=PageView&dl=https%3A%2F%2Fjessroberts.biz%2F&rl=&if=false&ts=1679547747323&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679547747322.392955913&it=1679547745070&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=846032898840689&ev=PageView&dl=https%3A%2F%2Fjessroberts.biz%2F&rl=&if=false&ts=1679547747323&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679547747322.392955913&it=1679547745070&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 23 Mar 2023 05:02:20 GMT
X-Firefox-Spdy: h2
usercontent.flodesk.com/282eb7ab-8d62-43fb-9562-618d5d12f085/upload/dsc-3531_d6e84b2c-8a03-44d9-aae8-9160a0e4f1ca.jpg
54.230.111.24200 OK 229 kB URL HTTP/1.1 usercontent.flodesk.com/282eb7ab-8d62-43fb-9562-618d5d12f085/upload/dsc-3531_d6e84b2c-8a03-44d9-aae8-9160a0e4f1ca.jpg
IP 54.230.111.24:0
File type JPEG image data, baseline, precision 8, 1367x2048, components 3\012- data
Size 229 kB (229334 bytes)
Hash 9b979fecf0579bb4fad93242eb5faaa3
f61ba8ed4d32e1318cf174d8d7a393f887e44889
7e8c06dbfc323504e4424a821d74ccd84a182a8d951a0ad2cadbd2a200584f47
GET /282eb7ab-8d62-43fb-9562-618d5d12f085/upload/dsc-3531_d6e84b2c-8a03-44d9-aae8-9160a0e4f1ca.jpg HTTP/1.1
Host: usercontent.flodesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 229334
Connection: keep-alive
Date: Thu, 23 Mar 2023 05:02:21 GMT
Last-Modified: Fri, 08 May 2020 23:06:45 GMT
Etag: "9b979fecf0579bb4fad93242eb5faaa3"
Accept-Ranges: bytes
Server: AmazonS3
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
Cache-Control: max-age=31536000
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xbBQnEETDmNna6ru6dVYdh4ffXisDRDnAh5YEExrCmjlICVJXy0hBg==
jessroberts.biz/wp-content/uploads/2022/07/3-800x800.png
151.101.130.159301 Moved Permanently 162 B URL HTTP/1.1 jessroberts.biz/wp-content/uploads/2022/07/3-800x800.png
IP 151.101.130.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2022/07/3-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://jessroberts.biz/wp-content/uploads/2022/07/3-800x800.png
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 34p91kgtkx
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 05:02:21 GMT
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679547741.391516,VS0,VE120
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
jessroberts.biz/wp-content/uploads/2022/07/3-800x800.png
151.101.130.159200 OK 169 kB URL HTTP/2 jessroberts.biz/wp-content/uploads/2022/07/3-800x800.png
IP 151.101.130.159:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 169 kB (169008 bytes)
Hash e30b139d241d24878b8caf887ae2095d
2391d93504bd67ee24ac3463af581fb30165fa48
3be926824733800e09f420220ce35cbc06f58532f1dfb3994c64d5b7c573ec63
GET /wp-content/uploads/2022/07/3-800x800.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D; _fbp=fb.1.1679547747322.392955913
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 06 Jul 2022 22:25:03 GMT
etag: W/"62c60bbf-2b05f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:21 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547742.532590,VS0,VE135
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 169008
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc53a798-a34a-42ab-8422-1c44bdb2eb10.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc53a798-a34a-42ab-8422-1c44bdb2eb10.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7698afd0a4ca88c4243fc3aa2dd9a73d
53196f685136a144065ec98e3e14d0a7f43ceb8f
5afee347cacdbf5eedee36e2724daa66593d683cd8fb229e1f0630bbe69654ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc53a798-a34a-42ab-8422-1c44bdb2eb10.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8627
x-amzn-requestid: 80010893-2a19-4aba-840e-1f0ddf1a7ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xYBHN7oAMFltQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64156299-627689412a2fd5ee55261a59;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:04:57 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DGi_Ac31LwjHE7_dHXLLgCJ7MxsdAjj5tr6t1jXZffKbGKQOOy1M7Q==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 20:21:35 GMT
age: 31247
etag: "53196f685136a144065ec98e3e14d0a7f43ceb8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.stripe.com/v3/
54.230.111.108200 OK 0 B IP 54.230.111.108:0
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Wed, 22 Mar 2023 20:30:15 GMT
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
content-encoding: br
date: Thu, 23 Mar 2023 05:02:09 GMT
cache-control: max-age=60
etag: W/"ab10b922b051d6a383d69c10082d0675"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d5lE4xEv2Zojiy7KKzAkB0ycFavY90J79z1BP9-ecagiN7i91NxupA==
age: 10
X-Firefox-Spdy: h2
jessroberts.biz/wp-admin/admin-ajax.php
151.101.130.159200 OK 0 B URL HTTP/2 jessroberts.biz/wp-admin/admin-ajax.php
IP 151.101.130.159:0
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 485
Origin: https://jessroberts.biz
Connection: keep-alive
Cookie: _privy_F07B83DD76D51A5980926CD9=%7B%22uuid%22%3A%22db98d720-8391-4534-bc3a-bfdef3fcfcdf%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: https://jessroberts.biz
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 34p91kgtkx
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:18 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.154540,VS0,VE2751
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
X-Firefox-Spdy: h2
640421.17hats.com/perl/client/account/0/styles?format=json&_=1679547744091
52.1.169.86200 OK 0 B URL HTTP/2 640421.17hats.com/perl/client/account/0/styles?format=json&_=1679547744091
IP 52.1.169.86:0
GET /perl/client/account/0/styles?format=json&_=1679547744091 HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: AWSALBCORS=jW8r7qzOoCaKQ3XSPd6qo6XusnE4Lwp2tv8pW1KgoYJl2tS/8LqegBaJm1oLKHwBhD3oYksc72k4QPagurhbUThdjJR4fD6dre722D4J5iW+pyHvgPFQXcxFNgN7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:18 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=GEOZdSKntWOG7qt2U4IA9skQWugXYF/ntJPzIhr9CtC9uVR+mfxM4l2ofAiRDravsprNRH9mwYKIzyGZ8pG/O2FlesMIHaN2ckRzTa7GY3GjRJ9OwEaLDSsD+6OJ; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/
AWSALBCORS=GEOZdSKntWOG7qt2U4IA9skQWugXYF/ntJPzIhr9CtC9uVR+mfxM4l2ofAiRDravsprNRH9mwYKIzyGZ8pG/O2FlesMIHaN2ckRzTa7GY3GjRJ9OwEaLDSsD+6OJ; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/; SameSite=None; Secure
plack_session=52a51a108af85ad8981b7912608c9c06b16c4d06; path=/; expires=Thu, 30-Mar-2023 05:02:18 GMT; SameSite=Lax; secure; HttpOnly
server: nginx
access-control-allow-credentials: true
access-control-allow-headers: Cookie, Origin, X-Requested-With, Content-Type, Accept
access-control-allow-origin: https://www.17hats.com
vary: Accept-Encoding, Origin
x-17hats-update-threshold: 1
x-17hats-updated: 2021-04-16 13:00:00
x-backend-server: sh21appserver1
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
content-encoding: gzip
X-Firefox-Spdy: h2
widget.privy.com/assets/widget.js
104.22.20.108200 OK 0 B URL HTTP/2 widget.privy.com/assets/widget.js
IP 104.22.20.108:0
GET /assets/widget.js HTTP/1.1
Host: widget.privy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:14 GMT
content-type: application/javascript
last-modified: Wed, 22 Mar 2023 21:23:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 da4de4427d18bee1d3254f1bbdad25f2.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2
x-amz-cf-id: XvUFaHUqy8BD8u9egLA8frEiFTnjVM3uVlvFefFaHIyMecBgx4_U5w==
age: 915
cache-control: max-age=1800
cf-cache-status: HIT
server: cloudflare
cf-ray: 7ac41efec883b509-OSL
X-Firefox-Spdy: h2
640421.17hats.com/perl/client/account/0/brand_customization?format=json&_=1679547744089
52.1.169.86200 OK 0 B URL HTTP/2 640421.17hats.com/perl/client/account/0/brand_customization?format=json&_=1679547744089
IP 52.1.169.86:0
GET /perl/client/account/0/brand_customization?format=json&_=1679547744089 HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: AWSALBCORS=jW8r7qzOoCaKQ3XSPd6qo6XusnE4Lwp2tv8pW1KgoYJl2tS/8LqegBaJm1oLKHwBhD3oYksc72k4QPagurhbUThdjJR4fD6dre722D4J5iW+pyHvgPFQXcxFNgN7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:18 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=pI3fzM7WZzaeRvLl51mvjn2KkkctEm6zv2Ui6aOCq2DZPsaP8PwF2oiXE4Qin/kX+ZJLw3K9FbCsuvjR+1C0yXKWu7aXd50ceHf5m5fPn3jiy8BkuQ3kcj5HCpwB; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/
AWSALBCORS=pI3fzM7WZzaeRvLl51mvjn2KkkctEm6zv2Ui6aOCq2DZPsaP8PwF2oiXE4Qin/kX+ZJLw3K9FbCsuvjR+1C0yXKWu7aXd50ceHf5m5fPn3jiy8BkuQ3kcj5HCpwB; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/; SameSite=None; Secure
plack_session=139c92a20076325788d1aaf52aebbe44f49fc88c; path=/; expires=Thu, 30-Mar-2023 05:02:18 GMT; SameSite=Lax; secure; HttpOnly
server: nginx
access-control-allow-credentials: true
access-control-allow-headers: Cookie, Origin, X-Requested-With, Content-Type, Accept
access-control-allow-origin: https://www.17hats.com
vary: Accept-Encoding, Origin
x-17hats-update-threshold: 1
x-17hats-updated: 2021-04-16 13:00:00
x-backend-server: sh21appserver22-temp
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
content-encoding: gzip
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f4bb.svg
192.0.77.48200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f4bb.svg
IP 192.0.77.48:0
GET /images/core/emoji/14.0.0/svg/1f4bb.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jessroberts.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 05:02:15 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
jessroberts.biz/wp-content/uploads/2020/05/oh-hey.png
151.101.130.159200 OK 0 B URL HTTP/2 jessroberts.biz/wp-content/uploads/2020/05/oh-hey.png
IP 151.101.130.159:0
GET /wp-content/uploads/2020/05/oh-hey.png HTTP/1.1
Host: jessroberts.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jessroberts.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Fri, 08 May 2020 15:37:36 GMT
etag: W/"5eb57cc0-1792cd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 34p91kgtkx
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Thu, 23 Mar 2023 05:02:16 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679547736.826814,VS0,VE1101
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1544829
X-Firefox-Spdy: h2
640421.17hats.com/perl/client/lead-capture-form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg?format=json&_=1679547744090
52.1.169.86200 OK 0 B URL HTTP/2 640421.17hats.com/perl/client/lead-capture-form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg?format=json&_=1679547744090
IP 52.1.169.86:0
GET /perl/client/lead-capture-form/cssvpbcvnzcwzxxkfxcvvbdfzbdwtfwg?format=json&_=1679547744090 HTTP/1.1
Host: 640421.17hats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://640421.17hats.com/p
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: AWSALBCORS=jW8r7qzOoCaKQ3XSPd6qo6XusnE4Lwp2tv8pW1KgoYJl2tS/8LqegBaJm1oLKHwBhD3oYksc72k4QPagurhbUThdjJR4fD6dre722D4J5iW+pyHvgPFQXcxFNgN7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 05:02:18 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=rP8vLa2XIF5aHGdlOFvMNCSaYeNTNhRr5ZARsn7dYCILthhPq3iIxf2JFoRxmBmsRwkezZcoruui5PEussLCxkTsNwnE74Q26EBDqUkKLIMt/4txHwE1oVmzdIWE; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/
AWSALBCORS=rP8vLa2XIF5aHGdlOFvMNCSaYeNTNhRr5ZARsn7dYCILthhPq3iIxf2JFoRxmBmsRwkezZcoruui5PEussLCxkTsNwnE74Q26EBDqUkKLIMt/4txHwE1oVmzdIWE; Expires=Thu, 30 Mar 2023 05:02:18 GMT; Path=/; SameSite=None; Secure
plack_session=8e0a7934a7701d79f89f4e840af26abc1205b592; path=/; expires=Thu, 30-Mar-2023 05:02:18 GMT; SameSite=Lax; secure; HttpOnly
server: nginx
access-control-allow-credentials: true
access-control-allow-headers: Cookie, Origin, X-Requested-With, Content-Type, Accept
access-control-allow-origin: https://www.17hats.com
vary: Accept-Encoding, Origin
x-17hats-update-threshold: 1
x-17hats-updated: 2021-04-16 13:00:00
x-backend-server: sh21appserver22-temp
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: midi: 'self'
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors *
content-encoding: gzip
X-Firefox-Spdy: h2