click.2gohealth.com/?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ==
170.187.185.18301 Moved Permanently 344 B URL HTTP/1.1 click.2gohealth.com/?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ==
IP 170.187.185.18:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c26f6048b9972476e59e6536486595ff
a4d344eed4a7d028a165eb47222d3329c8882f72
76874d8540bf5c5583eafe4b1d5fa8d2e1ca46679f1e046b9ba6220ca5211195
GET /?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ== HTTP/1.1
Host: click.2gohealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 27 Oct 2022 23:39:00 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 344
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Security-Policy: upgrade-insecure-requests
Location: https://click.2gohealth.com/?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ==
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e997bec759570aa0db03e31bf013cc2
948fd8263ab0b40f75eaf9495f76a7f39f39d5f9
853f97990fe10ccb34066b1e73e93dac45794f42fb745b266b6a46b9e26d52e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "853F97990FE10CCB34066B1E73E93DAC45794F42FB745B266B6A46B9E26D52E9"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4126
Expires: Fri, 28 Oct 2022 00:47:46 GMT
Date: Thu, 27 Oct 2022 23:39:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3853
Cache-Control: max-age=125782
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:00 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 10:35:22 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3853
Cache-Control: max-age=125782
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:00 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 10:35:22 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22eebb819dc140cc288474d9891526b4
45c18772664e9e3efb6a44d7da93699c81f71827
ce6a96e470dbfb48ff42fdaf5eaa464a87dc60b495e3e2767086ec0b6564fdd7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE6A96E470DBFB48FF42FDAF5EAA464A87DC60B495E3E2767086EC0B6564FDD7"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14318
Expires: Fri, 28 Oct 2022 03:37:38 GMT
Date: Thu, 27 Oct 2022 23:39:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: I4luLw9wApKm+DMDbTa9UfwOlZsV0PrDzteUl2lZOHM8zK61sIo7IFWdBHu37nndm6ojOC7ar/o=
x-amz-request-id: CAH60SWVY2BQSH0S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 22:39:49 GMT
age: 3551
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 23:39:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d1ca904d46d4c660225504c53f37c5a
38be0f61c9c052ff92bec6892d9a0f89156aa32b
fdc4056a8ba6edd913151a8cbde559f2184168cb3e00631547f68fb72604dc40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDC4056A8BA6EDD913151A8CBDE559F2184168CB3E00631547F68FB72604DC40"
Last-Modified: Thu, 27 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Fri, 28 Oct 2022 05:38:31 GMT
Date: Thu, 27 Oct 2022 23:39:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d72d2f5d05f03753594e43fd34398221
ac6795c1c33f3fa2139e7f8dc601c3e6de6029a5
036c965156cf07faecc342cb2e30b7a20def68ad4a10423951ce871a7a3a6777
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5756
Cache-Control: max-age=122623
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:01 GMT
Etag: "635a3c19-1d7"
Expires: Sat, 29 Oct 2022 09:42:44 GMT
Last-Modified: Thu, 27 Oct 2022 08:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 739d7fbf604724d2d0e55239608e347b
344427ec69126f792679a03726c0c8d620928e5a
9a17a875f59b80916236fecc7116742ff2524c6e7f79594792395df748499e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=89488
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:01 GMT
Etag: "6359d125-116"
Expires: Sat, 29 Oct 2022 00:30:29 GMT
Last-Modified: Thu, 27 Oct 2022 00:30:29 GMT
Server: nginx
Content-Length: 278
push.services.mozilla.com/
35.163.147.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.147.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0xFInNvNYPx6pl3kl8NVWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YF7ig4J7V03nycQGSYS1zYJNYeE=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 739d7fbf604724d2d0e55239608e347b
344427ec69126f792679a03726c0c8d620928e5a
9a17a875f59b80916236fecc7116742ff2524c6e7f79594792395df748499e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=89488
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:01 GMT
Etag: "6359d125-116"
Expires: Sat, 29 Oct 2022 00:30:29 GMT
Last-Modified: Thu, 27 Oct 2022 00:30:29 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
emdlvr.com/wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6
104.21.51.219200 OK 420 B URL HTTP/2 emdlvr.com/wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6
IP 104.21.51.219:0
Hash 46d55c5d4ecdbb7c8ee81195fcd1585c
160ebd47ad884ab825c026a01feaf3bf2bd05ab4
a6986091547f1747f09885fe9eb30674260583c0b7d4188b1ef96681e049c806
GET /wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6 HTTP/1.1
Host: emdlvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://emdlvr.com/bgri
Cookie: prli_click_17=bgri; prli_visitor=635b16956f4c0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:01 GMT
content-type: application/javascript
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
last-modified: Sun, 23 Oct 2022 08:36:36 GMT
expires: Tue, 22 Nov 2022 10:10:24 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
cf-cache-status: HIT
age: 394117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a76UjfyzVx17%2FCCx%2B5ohFItMoqO5%2FOeS%2BxA1oQEfWL5%2BRO8Ak2NyYZ9FhRNpNq6rmth9ApvTRh4aVFcdzSoKYYqpsA2KaWMUT6nNYriDvBkEOC%2FEDPERTa0UD6BL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44c68873b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5f52b3c35790a1c981d7f895e7f1abe8
4766210b18b49786a337716b1d4357410f35edbe
f6839efc8ba530a3866c840f598833c3cb157c77091a83a177f19ebc3b7e8a0f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F6839EFC8BA530A3866C840F598833C3CB157C77091A83A177F19EBC3B7E8A0F"
Last-Modified: Thu, 27 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21513
Expires: Fri, 28 Oct 2022 05:37:35 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 22d8fa6fd643af9f099e519e1a816ff0
f77e788ff19549ac77d0ddb70af4e4615a668a0b
3e5119e3205c18eb533ec40fe91130712c92fba102349ecc3fa1f33f0d1f2836
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Cache-Control: max-age=143254
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Etag: "635a8982-117"
Expires: Sat, 29 Oct 2022 15:26:36 GMT
Last-Modified: Thu, 27 Oct 2022 13:37:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 22d8fa6fd643af9f099e519e1a816ff0
f77e788ff19549ac77d0ddb70af4e4615a668a0b
3e5119e3205c18eb533ec40fe91130712c92fba102349ecc3fa1f33f0d1f2836
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Cache-Control: max-age=143254
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Etag: "635a8982-117"
Expires: Sat, 29 Oct 2022 15:26:36 GMT
Last-Modified: Thu, 27 Oct 2022 13:37:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 22d8fa6fd643af9f099e519e1a816ff0
f77e788ff19549ac77d0ddb70af4e4615a668a0b
3e5119e3205c18eb533ec40fe91130712c92fba102349ecc3fa1f33f0d1f2836
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Cache-Control: max-age=143254
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Etag: "635a8982-117"
Expires: Sat, 29 Oct 2022 15:26:36 GMT
Last-Modified: Thu, 27 Oct 2022 13:37:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NHTTCMM
142.250.74.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NHTTCMM
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash cdf0b3c957c3e81691adde73a4e269c0
ed6690f32e1367db0623300ee64569828c1b56cd
04864ee4dd520dec5dc6fb36ac93fdeb4c590f698265585c727d9ff573b547ea
GET /gtm.js?id=GTM-NHTTCMM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 23:39:02 GMT
expires: Thu, 27 Oct 2022 23:39:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 27 Oct 2022 21:13:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46240
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-PFLCC3W
142.250.74.78200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PFLCC3W
IP 142.250.74.78:0
File type ASCII text, with very long lines (1588)
Hash 3db8ad80e4afddd88900db03bdba955b
e1c93e26a0663f30101c9bbb0ade3ba727174149
1d040f8c95900a002ed33e14d116528637fe04ebd002f9bad9a789f3afd8f4ab
GET /optimize.js?id=OPT-PFLCC3W HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 23:39:02 GMT
expires: Thu, 27 Oct 2022 23:39:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 27 Oct 2022 21:13:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43837
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 09bceae2700934aebce5970dc4a5a56d
722f196ebcf3a28ea6430a9f6565d909ef9764b3
20c040c0fa97dc7e50e38e928575100be84a2ff50a288ed7ead1c0a5d92b4134
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=94215
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:02 GMT
Etag: "6359e39d-117"
Expires: Sat, 29 Oct 2022 01:49:17 GMT
Last-Modified: Thu, 27 Oct 2022 01:49:17 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13114
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13114
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13114
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13114
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13114
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Thu, 27 Oct 2022 23:39:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2193431d88baf9af6829421cd13743ff
a192ab139ad0dc5cf206986eb06028ddad224e46
c535e09fb4a53ca580f5f5926d1494c50b6ad6c7c9ec78df6b7015213852b737
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9720
x-amzn-requestid: 6b4749ca-bcb9-4274-a309-e6d463851a6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_n6FOSIAMFroA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524632-56186f1f2a0bf68f6dba843b;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:11:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: awGcZ7hlJqQCVCFg5Xf_UnpmIlGPQrziJaMIzu5iB4kDTnAcxABX9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 17:28:58 GMT
age: 22204
etag: "a192ab139ad0dc5cf206986eb06028ddad224e46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13bafc15fa2fe97e27115e17bce8b22f
9d0fc7b50cbb96a3e85ccb501ed1d60a39a164d3
734419d9f9c28185501c25db3e0df01f2dc901a1a87bcdd066028392c8c82cf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14602
x-amzn-requestid: f3e186c6-4734-4c1b-a432-aa799a12ed4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv9yGaMoAMFZ4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9f1-05c8bdc2153acd8915e04826;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e0e64aPEo628l4wM0ZSZ7U2envwnHBLt6S1bpy204t1ipgKU0qsyNg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:37:37 GMT
age: 3685
etag: "9d0fc7b50cbb96a3e85ccb501ed1d60a39a164d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4510a3cc-dfbb-45ed-b8d6-9bb45a47cad9.jpeg
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4510a3cc-dfbb-45ed-b8d6-9bb45a47cad9.jpeg
IP 34.120.237.76:0
Hash 9570931132c01518078be3057003bf68
328fc3e4ed7a07f71790758dc6ece9a28ddad770
27e106798e2f2bb952eb7f54f011d0bf36f989c00d37d83a4730a3a15a672cf4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4510a3cc-dfbb-45ed-b8d6-9bb45a47cad9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11395
x-amzn-requestid: 74d92b9c-c8c2-43d3-b084-4a0503a2ce2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arxL5H2mIAMFfFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afbe5-396fc42b1c1365791d6889bf;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:45:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NZD9FAe3wcJyD-d_EaNs9GQdz_MxgxuXklWUeQO4cbRc6DMhxOLmCg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 23:13:31 GMT
age: 1531
etag: "88e5606d51d034ff9865bfd363c6a1721ccc9904"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26576d68b60104eef7a7c7a1e92f2ef2
e111ba254d84ab1d05eac51b8cc15af9b388e6fe
bf68e56fd052d9d3507b3b940b9f40dfa5f4589f391aa69ed3c64be2efe9d731
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10328
x-amzn-requestid: b6c88321-f3f2-4ff2-a264-7ea22196e9ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv3OF_LIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9c7-072c1c6871641ded27c5a4d0;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:07 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: x2h76H-VQY-HD2VoDNapxw46pFcO2Y0_5i8vnnUzKiIK69iZUYEPfg==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:49:30 GMT
age: 6572
etag: "e111ba254d84ab1d05eac51b8cc15af9b388e6fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fc8f8f0-162f-412f-aae9-5d8f363b48af.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fc8f8f0-162f-412f-aae9-5d8f363b48af.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46deaa111c196a313a563af1e22921a1
c5d29e8859c7d885c5f4829a1fb64e144267ab13
6776e0f75644cc543388587de52bbb78f39cd058cb751e7e84cdd3ca8baa0c9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fc8f8f0-162f-412f-aae9-5d8f363b48af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2987
x-amzn-requestid: 14097870-fb20-4362-b281-4244cf558033
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv19Fb4IAMFuoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9bf-6c59ff2a3f54af5b675696cf;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:35:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y40sQj_48ooSy11Vzp_--G8hkBQ2yNWJglQyK9Jw74VwpCNa0amJMw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:42:46 GMT
age: 6976
etag: "c5d29e8859c7d885c5f4829a1fb64e144267ab13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee9a743-41f5-42f0-855e-53c4f9175a44.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee9a743-41f5-42f0-855e-53c4f9175a44.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 348e4d5f46d652d497f9ad078d1dea3e
7ab34ed8ae4e7048edd25f8b533d5237dea83688
dd02da6461e36a128579a3fb26da4c7f303b5683b27a7bd7a50309d4101cba3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee9a743-41f5-42f0-855e-53c4f9175a44.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8323
x-amzn-requestid: 4b90019d-6e8c-498d-8627-e4f0c9dda30e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arw0gGYKoAMFRBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afb4f-620a4264143fc3fd207acc5e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:42:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NPWfRW5iNN1bcEzJGGlGa8kBWq-t_cOrbImZBUTaFi7QjGhjAj0GZQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:32:34 GMT
age: 3988
etag: "7ab34ed8ae4e7048edd25f8b533d5237dea83688"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
vjs.zencdn.net/7.11.4/video-js.css
151.101.86.217200 OK 11 kB URL HTTP/2 vjs.zencdn.net/7.11.4/video-js.css
IP 151.101.86.217:0
File type Unicode text, UTF-8 text, with very long lines (5844)
Hash 3fd817fc07f52461f5f7f6e69459f40c
da1a9b7b851c32b1b43f7e6becbf0ffbd32758af
a17514bd5d84a5e6460a4fd12ca61635135b8ca7915ff341fc3d49825b510ab5
GET /7.11.4/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 04 Feb 2021 16:37:52 GMT
etag: "13cc2ed05f4f7b5730bffafc2b2e4eb3"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Thu, 27 Oct 2022 23:39:02 GMT
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 331
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10745
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 27 Oct 2022 22:41:09 GMT
expires: Fri, 28 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 3473
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c4a31ad86379f4c67fab74c5f0ffdfb4
9f15d306993e568bda889d2284fe428654fc9a34
db554f8434f2c356f83b72566b2b61e78373fb1f351586dfecfac71791150340
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4721
Cache-Control: max-age=159730
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Etag: "635ad118-117"
Expires: Sat, 29 Oct 2022 20:01:13 GMT
Last-Modified: Thu, 27 Oct 2022 18:42:32 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
region1.google-analytics.com/g/collect?v=2&tid=G-0EL83TKX6M>m=2oeaq0&_p=1967763681&cid=829302002.1666913941&ul=en-us&sr=1280x1024&_s=1&sid=1666913940&sct=1&seg=0&dl=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower&dr=https%3A%2F%2Femdlvr.com%2F&dt=Aizen%20Power%20-%20Video%20Presentation&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 440 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-0EL83TKX6M>m=2oeaq0&_p=1967763681&cid=829302002.1666913941&ul=en-us&sr=1280x1024&_s=1&sid=1666913940&sct=1&seg=0&dl=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower&dr=https%3A%2F%2Femdlvr.com%2F&dt=Aizen%20Power%20-%20Video%20Presentation&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash 5509f09e8329527e5e0cadb54e1b529a
9357654168f9e64d0b966532c822e785c9427e60
802b4cf3744dda8db2a43f4a72eee4b9a279907ddae526d0ef9fbf4b30d6410f
POST /g/collect?v=2&tid=G-0EL83TKX6M>m=2oeaq0&_p=1967763681&cid=829302002.1666913941&ul=en-us&sr=1280x1024&_s=1&sid=1666913940&sct=1&seg=0&dl=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower&dr=https%3A%2F%2Femdlvr.com%2F&dt=Aizen%20Power%20-%20Video%20Presentation&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aizenpower101.com
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://aizenpower101.com
date: Thu, 27 Oct 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
videodelivery.net/56c9c7bebe05995654196cd9f901d153/audio/132/seg_1.ts?p=eyJ0eXBlIjoidHJhbnNtdXgiLCJ2aWRlb0lEIjoiNTZjOWM3YmViZTA1OTk1NjU0MTk2Y2Q5ZjkwMWQxNTMiLCJvd25lcklEIjoxNDQ1NTU4MCwiY3JlYXRvcklEIjoiIiwic2VnbWVudER1cmF0aW9uU2VjcyI6NC4wMTA2NjY2NjY2NjY2NywidHJhY2siOiIyMjE5MzI5ZTI2YzQ4ZjFiN2YxNDRkM2QyNWFhNDlkZCIsInJlbmRpdGlvbiI6Ijg4OTk2MjMwIiwibXV4aW5nIjoiMTM5NTI2NjA0In0&s=OsOzFGoQwrccXgbDpEsTwqNdDsOCwqDCoDbDtMO4w7Acf8O1wq_Cnl3Cpj3CjwA
104.16.202.35200 OK 59 kB URL HTTP/2 videodelivery.net/56c9c7bebe05995654196cd9f901d153/audio/132/seg_1.ts?p=eyJ0eXBlIjoidHJhbnNtdXgiLCJ2aWRlb0lEIjoiNTZjOWM3YmViZTA1OTk1NjU0MTk2Y2Q5ZjkwMWQxNTMiLCJvd25lcklEIjoxNDQ1NTU4MCwiY3JlYXRvcklEIjoiIiwic2VnbWVudER1cmF0aW9uU2VjcyI6NC4wMTA2NjY2NjY2NjY2NywidHJhY2siOiIyMjE5MzI5ZTI2YzQ4ZjFiN2YxNDRkM2QyNWFhNDlkZCIsInJlbmRpdGlvbiI6Ijg4OTk2MjMwIiwibXV4aW5nIjoiMTM5NTI2NjA0In0&s=OsOzFGoQwrccXgbDpEsTwqNdDsOCwqDCoDbDtMO4w7Acf8O1wq_Cnl3Cpj3CjwA
IP 104.16.202.35:0
Hash 2ed25a71db945a0c84c0ca878d97f236
ffdc2445c382b811b95488f8236d27ff1e5219df
1c22566924d402e781b60dedcd082bee6f9aafbd92aa39f049ebd64d98bcca2e
GET /56c9c7bebe05995654196cd9f901d153/audio/132/seg_1.ts?p=eyJ0eXBlIjoidHJhbnNtdXgiLCJ2aWRlb0lEIjoiNTZjOWM3YmViZTA1OTk1NjU0MTk2Y2Q5ZjkwMWQxNTMiLCJvd25lcklEIjoxNDQ1NTU4MCwiY3JlYXRvcklEIjoiIiwic2VnbWVudER1cmF0aW9uU2VjcyI6NC4wMTA2NjY2NjY2NjY2NywidHJhY2siOiIyMjE5MzI5ZTI2YzQ4ZjFiN2YxNDRkM2QyNWFhNDlkZCIsInJlbmRpdGlvbiI6Ijg4OTk2MjMwIiwibXV4aW5nIjoiMTM5NTI2NjA0In0&s=OsOzFGoQwrccXgbDpEsTwqNdDsOCwqDCoDbDtMO4w7Acf8O1wq_Cnl3Cpj3CjwA HTTP/1.1
Host: videodelivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aizenpower101.com
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:03 GMT
content-type: video/mp4
content-length: 52452
cf-ray: 760f44d1dc99b4ff-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 10457
cache-control: public, max-age=864000
last-modified: Thu, 27 Oct 2022 20:44:46 GMT
strict-transport-security: max-age=15552000
vary: origin, referer, Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: range
access-control-expose-header: cf-ray
cf-transmux: 3
stream-dw-version: 2022.10.12
timing-allow-origin: embed.cloudflarestream.com,embed.videodelivery.net,iframe.videodelivery.net,iframe.cloudflarestream.com
server: cloudflare
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6686&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=aip1,aip3,aip6&sessid2=&caller_url=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower
172.66.40.234200 OK 70 kB URL HTTP/2 tracking.buygoods.com/track/?a=6686&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=aip1,aip3,aip6&sessid2=&caller_url=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower
IP 172.66.40.234:0
File type ASCII text, with very long lines (578), with CRLF line terminators
Hash 57c504cdbe9399837e3e9163de02d0e0
e8d013016a2d70efbde8488fbc796de7c05aa7eb
3b3fab29b70ab6fdc1d471a57a0d68ceae80df8a77aa753e327cb7ae8c23324a
GET /track/?a=6686&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=aip1,aip3,aip6&sessid2=&caller_url=https%3A%2F%2Faizenpower101.com%2Fvideo.php%3Faff_id%3D7546%26subid%3D1aoat1027aizenpower HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_6686=7546; expires=Wed, 25-Jan-2023 23:39:02 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_6686=1aoat1027aizenpower; expires=Wed, 25-Jan-2023 23:39:02 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_6686=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6686=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6686=91.90.42.154:emdlvr.com:aizenpower101.com%2Fvideo; expires=Wed, 25-Jan-2023 23:39:02 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_6686=sessid20221027233911194; expires=Wed, 25-Jan-2023 23:39:02 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_6686=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 760f44cc38310b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
videodelivery.net/56c9c7bebe05995654196cd9f901d153/manifest/video.m3u8
104.16.202.35200 OK 378 kB URL HTTP/2 videodelivery.net/56c9c7bebe05995654196cd9f901d153/manifest/video.m3u8
IP 104.16.202.35:0
Size 378 kB (378002 bytes)
Hash 39a29ecde58fe1bfe096892d33c289be
b429b74b559be010fbbfa29086cd9542e3eb6327
4de57eabba6c43e70a5e0d2e94f73929fcf52c4693f1391e879dad01148f3a46
GET /56c9c7bebe05995654196cd9f901d153/manifest/video.m3u8 HTTP/1.1
Host: videodelivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aizenpower101.com
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:03 GMT
content-type: application/x-mpegURL
access-control-allow-origin: *
cache-control: public, max-age=600
vary: origin, referer, Accept-Encoding
access-control-allow-headers: range
access-control-expose-header: cf-ray
stream-dw-version: 2022.10.12
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 760f44cffb76b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5e83a28b4cf3704ed7ee9b5b209caec6
9da8bd6baa00c240f5fe8511be7ebdc5166c18cf
021e6992122fcdc5803bd23e45f2fbb7b26f2c7d1d027dd5f9163d90f9fd6a36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&gjid=37696094&_gid=1667538442.1666913942&_u=YADAAEAAQAAAACAAI~&z=1573559047
173.194.222.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&gjid=37696094&_gid=1667538442.1666913942&_u=YADAAEAAQAAAACAAI~&z=1573559047
IP 173.194.222.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&gjid=37696094&_gid=1667538442.1666913942&_u=YADAAEAAQAAAACAAI~&z=1573559047 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://aizenpower101.com
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://aizenpower101.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 27 Oct 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5e83a28b4cf3704ed7ee9b5b209caec6
9da8bd6baa00c240f5fe8511be7ebdc5166c18cf
021e6992122fcdc5803bd23e45f2fbb7b26f2c7d1d027dd5f9163d90f9fd6a36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a63ea2903767bb46326d85331e42e34e
b113b248df6025ed117551b7baa1960316122415
4ba54e12a06237d2c396d93e1cf9513b066074df9993ee408ee2bfb365c5f3c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4310918d6232571380ecdee01460a00
fde570a320de2d68089611ea286d8638d55dcb31
fc0209573f8bc2b00eadf4c750f336102d4d34cc4ea65fe60dfeb789970fcba1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664
142.250.74.164200 OK 198 kB URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664
IP 142.250.74.164:0
Size 198 kB (197806 bytes)
Hash b0c53d065c1a192b5faa6bf0e185f3c5
ce6844ec999d3d57addf845d5bc7c3566ca3397e
7b345e82262406203446c106e30869f911b1c0c23d31f053e3e4763a5a399b94
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158851103-10&cid=829302002.1666913941&jid=329183776&_u=YADAAEAAQAAAACAAI~&z=1803765664 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c14c3f7d8817b44fda85ba769cc83062
bf41520c5a807058748db49621e7d6ee4ecf5729
eb15bf461ab810e1487ece424600f22d33bebc4f438ef6a10927df18dda0d216
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4310918d6232571380ecdee01460a00
fde570a320de2d68089611ea286d8638d55dcb31
fc0209573f8bc2b00eadf4c750f336102d4d34cc4ea65fe60dfeb789970fcba1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aizenpower101.com/statics/css/webfont.css
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/statics/css/webfont.css
IP 104.21.13.38:0
GET /statics/css/webfont.css HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/css
x-amz-id-2: GizWGPo9F/Hdu94PSb+82Vxu5wHJNWVslUA2by4sU0WZ/+grjBKMBsivtU/auffusAf7T+HgP1U=
x-amz-request-id: 2HZKK501JVH8N842
last-modified: Tue, 18 Oct 2022 14:49:24 GMT
etag: W/"0ed54ffb85742447db89d2d88750f102"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qT%2FUd7WZl265OYLXJS7v8HqiXBZWepr8zpyMz0%2FWGJPgezg1wd5uHnmJHpRXXIWqOgHTvU3fsuwxEu8A4frpQ%2B7D3oQSxeYzNHUVAJ8%2Bc8tcmHPK%2F1eo7f7mwHvTK3iso4%2BXHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44c9dc600b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aizenpower101.com/statics/css/bootstrap.min.css
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/statics/css/bootstrap.min.css
IP 104.21.13.38:0
GET /statics/css/bootstrap.min.css HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/css
x-amz-id-2: 1D8zLJNUTKiEBo92quiX4/DXYWWbncclDW7MlwsJDNOfCRpCgRt9/VYkRvNugSP7eOQLbY+3igc=
x-amz-request-id: DYNFTFPBSZZ1VEQ4
last-modified: Tue, 18 Oct 2022 14:49:24 GMT
etag: W/"3afe15e976734d9daac26310110c4594"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kI1jIfPqT%2BMmkavdI6Ed3TrcCTyKt2DdlZxlBrnm6NKA%2FzA1aUuqcXpQtkTRzrM4isr90jtz7XUDwtKVA8iMjp%2B32pYOOWRuZKPfD8eEyMdylCpn8xTJeBNyIfF5YVmUyFcnvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44c9dc5d0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
videodelivery.net/56c9c7bebe05995654196cd9f901d153/manifest/stream_taa82c14ae3887db1703446704f667eec_r88996023.m3u8
104.16.202.35200 OK 0 B URL HTTP/2 videodelivery.net/56c9c7bebe05995654196cd9f901d153/manifest/stream_taa82c14ae3887db1703446704f667eec_r88996023.m3u8
IP 104.16.202.35:0
GET /56c9c7bebe05995654196cd9f901d153/manifest/stream_taa82c14ae3887db1703446704f667eec_r88996023.m3u8 HTTP/1.1
Host: videodelivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aizenpower101.com
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:03 GMT
content-type: application/x-mpegURL
access-control-allow-origin: *
cache-control: public, max-age=600
vary: origin, referer, Accept-Encoding
access-control-allow-headers: range
access-control-expose-header: cf-ray
stream-dw-version: 2022.10.12
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 760f44d0cc22b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
click.2gohealth.com/?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ==
170.187.185.18200 OK 0 B URL HTTP/2 click.2gohealth.com/?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ==
IP 170.187.185.18:0
GET /?t=c&ids=MTgwMjEzODA2__NDQzNQ==__NDM4ODIzNw==__Mzgy&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGYmdyaQ== HTTP/1.1
Host: click.2gohealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 23:39:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: EXPIRED
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
IP 104.21.13.38:0
GET /video.php?aff_id=7546&subid=1aoat1027aizenpower HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://emdlvr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/html
x-amz-id-2: Gbp6+5IKtQZFwMYN09+mwrxuZvMhq0vXABud9NE1EGW/Iaskbo2hKM0bUXpHLyS8BsYVzVpxvuo=
x-amz-request-id: 0PDAWVNK5MR6JYT5
last-modified: Tue, 18 Oct 2022 14:49:36 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EYvNfZWsgLypt9HbF3b0o6Il1pR0frq2BFl0JbPZ3VGVMYvdXdo5azIgexUCmak0pgLu8Gskm5HfpXmSLG76C2ioyw2poETXE%2BOcJnNir%2Fp1TWq6qQblkwgLHO8hibZaDUz3FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760f44c7fb740b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vdlvry.com/statics/statics.js
172.67.131.53200 OK 0 B URL HTTP/2 vdlvry.com/statics/statics.js
IP 172.67.131.53:0
GET /statics/statics.js HTTP/1.1
Host: vdlvry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=34994
etag: W/"520abd189704ccbf3325468b7556fdf5"
last-modified: Tue, 25 Oct 2022 11:16:13 GMT
x-amz-id-2: HPJGkNuJOpuweBnnlZnmzJyDP32o3srYTHnRB/iB+K0PchTgJu6JX/W1e3eUHAd6E7sm/CajNUA=
x-amz-request-id: J989QVAG4FKJPPWR
cache-control: max-age=14400
cf-cache-status: HIT
age: 217158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cwgBoJt9GKsDlAe1oquR%2BXpxfRnvZ8DF9M8%2BxEKd%2BqTFlN2anZvW2r0HDGsRC4xHV9AsPTtT1puCyFPMrLFqybznX7VDdFlH9KkF%2BEtnil1Dn0%2FeZJyzq0pY98rl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44ca1a21b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aizenpower101.com/statics/css/font-awesome.min.css
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/statics/css/font-awesome.min.css
IP 104.21.13.38:0
GET /statics/css/font-awesome.min.css HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/css
x-amz-id-2: SOltM+LloVBYw8KZ0ldatYeprSQphtsvQyUzG5mTftafhuRPLq4MfXhiHnc7CAr6PLp1IxGyCNA=
x-amz-request-id: 2HZXTKJTBTRDFXXX
last-modified: Tue, 18 Oct 2022 14:49:24 GMT
etag: W/"269550530cc127b6aa5a35925a7de6ce"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQVofyu2mSZk4f8hG3mFfKJBcgQuZ6gz8un%2BnkE5U9FXo9Wbscufz3aN5BXkwnUuOI7cHVZM4eoGrj8mPN%2FW%2BwFYZecwvPlthHQAQU3wattMzQlsxZkTMoqrbozA8BBekZ25bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44c9ec620b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
emdlvr.com/bgri
104.21.51.219200 OK 0 B IP 104.21.51.219:0
GET /bgri HTTP/1.1
Host: emdlvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:01 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Executive 3.2.6 http://prettylink.com
set-cookie: prli_click_17=bgri; expires=Sat, 26-Nov-2022 23:39:01 GMT; Max-Age=2592000; path=/
prli_visitor=635b16956f4c0; expires=Fri, 27-Oct-2023 23:39:01 GMT; Max-Age=31536000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfeI8H1hdhtkuLPxLnrZlSe35y0JdF9uXMGLVlV9gmkB22eL2pdq2NyiuoWYFsOkyNHu%2FrPOt0mFikm%2FsMUDhxxtZK8D6KOLz9DSx%2BUcR1Cf9b27mnbjN%2FlS%2FoJG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760f44c50faab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aizenpower101.com/statics/css/style.css
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/statics/css/style.css
IP 104.21.13.38:0
GET /statics/css/style.css HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/css
x-amz-id-2: wWYLvvMnqMd+S5cVKV4d4UXmp1xiRO4EGRKVUg0+MpLw/SGWq+BZEKXIiihKWtP+VvU8lnnPnf0=
x-amz-request-id: 2HZRMA1VJNZ26DMM
last-modified: Tue, 18 Oct 2022 14:49:24 GMT
etag: W/"abed55dec2efe1556d602b31aae3792b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DdR3V1P2pTP8Z1f0XNuRTfc9yWL1QarUMq6bxz65J3kGQiANfPu2fyN3Hl3VIdvLGTfk5LcldJ6rhjzMqcQF5dajWF8ei%2BL6xflpf%2FDhNeAIFFWG7SKVvM%2FZjgdhxeIFrzagbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44c9dc5e0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6686
172.66.40.141200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6686
IP 172.66.40.141:0
GET /v1/disclaimer?id=disclaimer&account_id=6686 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 760f44cad9280b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vdlvry.com/videoboxes/universal_player/player.js
172.67.131.53200 OK 0 B URL HTTP/2 vdlvry.com/videoboxes/universal_player/player.js
IP 172.67.131.53:0
GET /videoboxes/universal_player/player.js HTTP/1.1
Host: vdlvry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=26691
etag: W/"3570c3555099bb1eb33b3a5e9578fdb7"
last-modified: Tue, 25 Oct 2022 11:16:14 GMT
x-amz-id-2: t122sCIi2bZOntsfhZZ4SUkKNYujpaL67LhxXf9qPNFltf4cwRjBZ/+B11TuuPlGG6LeIHNoy2A=
x-amz-request-id: KJYYZB3SADXA4WTG
cache-control: max-age=14400
cf-cache-status: HIT
age: 217268
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pq9qE7FtJuJ83ztDJrASkBG4foAef3yjARzgMDNG7aC58CMFgGROAD5lm4jfrQ2cHkydnM%2FO%2BujvjCp2Viw1FAAardcqnmKkbb39mQ8Xox5wB3G65Jbk2ah67r4s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760f44ca3a2eb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aizenpower101.com/statics/js/statics_js.php?static=https://aizenpower101.com
104.21.13.38200 OK 0 B URL HTTP/2 aizenpower101.com/statics/js/statics_js.php?static=https://aizenpower101.com
IP 104.21.13.38:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/js/statics_js.php?static=https://aizenpower101.com HTTP/1.1
Host: aizenpower101.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aizenpower101.com/video.php?aff_id=7546&subid=1aoat1027aizenpower
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 23:39:02 GMT
content-type: text/html
x-amz-id-2: RVNJPinmVOW122+uDy3mik4iS+ptuYMhOjyyj7s3RnJaWYsAtat61//CL+L2kKmPSXM+NxKNmvg=
x-amz-request-id: SWS1X366X530814V
last-modified: Tue, 18 Oct 2022 14:49:36 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4Vpg0qxa4dP3U%2FEeALYj8EZJW9JS9uvp3B7Nl%2FmHw1MOVCIrkeajV4GrXf4Oz0cBjAdWcfa4QaUzKIY3gXjAYpYdeXn%2FRS7swdpWw9dYxSRLpv6bSkCan185JHGPKT4nLFT1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760f44c9ec630b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2