Report - getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354

Report Overview

Submitted URL
getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
IP
67.227.198.234
ASN
#32244 LIQUIDWEB
Submitted
2022-12-09 05:43:51
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
quick.vidalytics.com	193746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.1 kB	5.5 MB	151.139.128.10
tracking.buygoods.com	303552	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	3.3 kB	172.66.43.22
licensing.bitmovin.com	19299	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	935 B	1.0 kB	35.227.229.24
analytics-ingress-global.bitmovin.com	47119	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	3.2 kB	35.190.27.197
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	847 B	1.5 kB	142.250.74.106
display.buygoods.com	389768	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	437 B	172.66.40.141
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	78 kB	151.101.65.229
lizswannmiller.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	858 B	3.1 kB	67.227.198.234
ipapi.co	195030	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	1.3 kB	104.26.8.44
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	46 kB	34.120.237.76
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	172.64.155.188
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.5 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.210.150.237
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	4.6 kB	192.124.249.23
stats.vidalytics.com	153185	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	1.6 kB	107.178.211.97
getglucotrust.me	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	1.0 MB	67.227.198.234
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.36.76.226
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	216.58.211.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	52 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	getglucotrust.me/js/bounceback.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js	56 kB	2023-03-07	2024-04-19
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2024-04-19 11:28:16 Times Seen2278 Hash 6895e8cd60b62646ce12426015888f58 de908c9ed184d74eb525fa7a30449b67fc3a1c14 eb795deda8983fa5310627c9584cf3f3b95d272567113500059018b3941cb267 Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	7.1 kB	2023-03-07	2023-03-12
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-03-12 15:02:10 Times Seen1 Hash 451cdef3cd1b0bb749a8c71e0dc15475 5d57122dc1a4eccb29fa06062fd2da51f97f68b4 d8832e78143c736a5e1bed57ec05ec80460811c3850058fdd4a6e5509a55cddd Loading...

	tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=	555 B	2023-03-07	2023-06-13
Pretty URL tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2= IP 172.66.43.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-06-13 14:36:16 Times Seen22 Hash 1ace9431299bb54fe2191d79b7f037f9 fe8c787dba931d4af0da6739990256f5fef1c780 eadfc02f063266dddab3dcb81e7494ba795252c5c02fe6012ed1d12202242a9e Loading...

	tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354	7.4 kB	2023-03-08	2023-03-08
Pretty URL tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354 IP 172.66.43.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:29:02 Last Seen2023-03-08 23:29:02 Times Seen1 Hash 9d1f87895cc193c7fecf609a37b5808e 9c4cbc12a80ddab2feaaaf9e9e2666aac2b2ce29 2355f48deb48a3f350bb916a159358c5c44878fe525974ae9c3f8fd4d06f2a22 Loading...

	getglucotrust.me/js/bounceback.min.js	2.8 kB	2023-03-07	2024-02-29
Pretty URL getglucotrust.me/js/bounceback.min.js IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:47 Last Seen2024-02-29 04:29:09 Times Seen186 Hash 928ec014586629db7d8b4ad49c4bc93c b436801b50738cca53b78e5c9e459495f26da5c9 1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282 Loading...

	quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js	42 kB	2023-03-08	2023-03-11
Pretty URL quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:29:02 Last Seen2023-03-11 23:24:45 Times Seen1 Hash c6e1ea4fd3ee61e8624359603f72d2ab 52c93d55a7ba29fdac0c7f4d43a2d4669590876c 72c3d7cf3db6c8db0aa5d243bd2cd522b29b2919a46d0b8de4ac71d72b6612ec Loading...

	cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 10:48:57 Times Seen60851 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	339 B	2023-03-08	2023-03-12
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:41 Last Seen2023-03-12 15:02:10 Times Seen1 Hash e6485d4d6cf7cdddbfdde09b5b79ae69 e9b5aed8cd84aa80798ac78c5bec74e8cdfacc94 281d377d9389be476426de02db50f10ea581c01ddbf8ab11a6b6c6e64a870ebb Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	746 B	2023-03-07	2024-02-05
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2024-02-05 00:51:10 Times Seen16 Hash ce0804a194c2eeff2cc63122abd644e3 7405db18545862b9b269ac19d3aaecd461a285fc 6cb8d150532d31f243d9331d1e43e5524fcf1e207fd32b543d311291ef2faee1 Loading...

	display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX	1.3 kB	2023-03-07	2024-04-18
Pretty URL display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX IP 172.66.40.141 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2024-04-18 14:35:45 Times Seen723 Hash 40fc17a9bd2cd46c66a3efbdd13327cd a778267e7bce25b36c2e86cb7003331ffd1ecf44 b13361361dead3e8f8e37c273ea784761ba62008f9a6775fa36ff671302a3236 Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	2.1 MB	2023-03-08	2023-03-11
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:29:02 Last Seen2023-03-11 23:24:45 Times Seen1 Hash a9d42480969ff4c9a9ef88fc40fdb64f 0aea0e3c44e149ca3b85e0c7fa1b65de2c7574a7 b176318095941750920640d72004efa34f425de59e25d13437e77eeb131359e4 Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	632 B	2023-03-07	2023-03-12
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-03-12 15:02:10 Times Seen1 Hash b92adf34d4a7f9839c69195e814f5c4b 1b2165017da5532fb8a63fb34906a214178b31e6 12e4e37b2098f6da567cbf4a54c1587f9973d3d7cad120554a31bb5b1f7448ad Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	868 B	2023-03-07	2023-03-12
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-03-12 15:02:10 Times Seen1 Hash 0a0eec76e34af96a95e36abf1dfdd463 077f5f8366003af7676fc0edb3a22ae8be12eed8 43cf0f89c652f784d9373d6f0b62844b89ec384bf414e431c4bcb303180bb9d5 Loading...

	lizswannmiller.com/social-proof/gluco-trust/3bottle.js	2.4 kB	2023-03-07	2023-03-29
Pretty URL lizswannmiller.com/social-proof/gluco-trust/3bottle.js IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-03-29 23:50:54 Times Seen2 Hash d02e366eab353ba3c5dad95d29486770 e2826c4c48b50a5492a738df2d2206dc75d5e1ad bfc7c4c521716b2a7101cdd97b532c543f1445b5792da0d805e64fe77a63a46a Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	64 B	2023-03-07	2024-02-05
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2024-02-05 00:51:10 Times Seen112 Hash 87b0a08c827101d7afba7c49bb71e689 0b1aa0c15df7e1ee9f2ee942890d50c10a76308b c8b059bf27bec7d51a8695eaebc73563914dca74c9a2ded19b04634bb85470cc Loading...

	getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354	2.3 kB	2023-03-07	2023-09-20
Pretty URL getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2023-09-20 16:42:06 Times Seen21 Hash 46debfaf74260ccf6d7c7c6e72b75bc1 f0e9a5309f99c993847f52350dce9310c955fb02 8d8ca34f4e5dcbf5160a83824e98c07f0a866e0ea0398e76b334a8bf99b4d315 Loading...

HTTP Transactions (104)

URL IP Response Size

getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354

67.227.198.234

301 Moved Permanently

315 B

URL HTTP/1.1
getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
3b288544f40f593f14139ab8069a31d0
f0fcbe872f0b42c516e0f9ac624ffccdc9861c15
7b275d5653f5523735882f81c6079f35899f43334df5c33efeb41ef401e3e991

HTTP Headers

GET /discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 05:43:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Location: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2178
Expires: Fri, 09 Dec 2022 06:19:57 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18122
Expires: Fri, 09 Dec 2022 10:45:41 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 05:08:17 GMT
content-type: application/json
age: 2122
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17688
Expires: Fri, 09 Dec 2022 10:38:27 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: X3AJSqteC37BfgScS3ad0QxIA8fC5E/sdLCetQxidR/UQSRC09JIM/4NztG5P0WJg6uvzuF/3NU=
x-amz-request-id: WJVDR21FJVHFVNW8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 04:48:11 GMT
age: 3328
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 05:43:39 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 05:07:59 GMT
age: 2140
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js

151.101.65.229

200 OK

15 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (55494)
Size
15 kB (14551 bytes)
Hash
3a23cd494f2294febc5ab709de787492
b304fe0fa818fe19621c3f7e03378907a631b17e
2283c0ea76acf6f96c40bf272fa4143a564ca2d4d7b47bf97cf86526b275a3ba

HTTP Headers

GET /npm/bootstrap@4.2.1/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"d9df-3pCMntGE1061Jfp6MESbZ/w6HBQ"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 694646
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14551
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css

151.101.65.229

200 OK

23 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65324)
Size
23 kB (22966 bytes)
Hash
f861342796feb5c1a463b5097ac9c57b
edb9ccd611b1763c4b432c68c510b9e3d9a07c33
36844fca25837b632c2a35cb10ecb41a3d4d169bb6b90d508adc7ced9586b01e

HTTP Headers

GET /npm/bootstrap@4.2.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"2565e-Oum7DnkpSJq9I3Nq6JKTnI/phkU"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 2097227
x-served-by: cache-fra-eddf8230119-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22966
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js

151.101.65.229

200 OK

30 kB

URL HTTP/2
cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32058)
Size
30 kB (30180 bytes)
Hash
20532f68850fbf98301ee064978fe500
baa841180e3a637eec908fbe16446a1d3270c6f8
421607c7298f63a23569c71a3269c5ae3cfe15a36290039735c3ae3533de2c68

HTTP Headers

GET /npm/jquery@3.2.1/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.2.1
x-jsd-version-type: version
etag: W/"15283-EFUBjCirQQh++czv5BFgaJPavqI"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 3904727
x-served-by: cache-fra-eddf8230126-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30180
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css

151.101.65.229

200 OK

7.1 kB

URL HTTP/2
cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7055 bytes)
Hash
c68c38b6f53bfc3bee6b736afa488757
871df21572c702142a7c237259326013ec2df26a
e2100c6e7b6f0d358ac92d33b11278661c9a80e4c62c056677e24bc572d6da34

HTTP Headers

GET /npm/font-awesome@4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"7918-USx9eQM+MCipvmG1QM8aaHDIlvg"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 7372936
x-served-by: cache-fra19165-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7055
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
416ef392cc62fdec5445f323ab634739
a56dfac62375baef490c6ba0335d93b59c57a456
2e3cbc1321aa4b49d51076a62ca3297de8ee3fb1045b8571021045f51e9a13f9

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:39 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9EFB7C37E92ADBC6BD1C060FEC0E4D2017B3FE45"
Expires: Fri, 09 Dec 2022 16:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 04:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2269
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776b6caa5b14b51d-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3679
Cache-Control: max-age=102272
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:08:11 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354

67.227.198.234

200 OK

99 kB

URL HTTP/1.1
getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (899), with CRLF, LF line terminators
Size
99 kB (98591 bytes)
Hash
4cbaab3db257f2aad96676ab8b3d7b61
160e7a101c715656bff61ddd3c4b75c603f389d9
036b86fd18581fb0aefede6c2994508c9fed2699f3d99cd20002bd723daa06a3

HTTP Headers

GET /discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

getglucotrust.me/js/bounceback.min.js

67.227.198.234

200 OK

2.8 kB

URL HTTP/1.1
getglucotrust.me/js/bounceback.min.js
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (2756), with CRLF line terminators
Size
2.8 kB (2848 bytes)
Hash
928ec014586629db7d8b4ad49c4bc93c
b436801b50738cca53b78e5c9e459495f26da5c9
1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bounceback.min.js HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Wed, 08 Sep 2021 15:39:06 GMT
ETag: "51ce9a-b20-5cb7daeb4fa80"
Accept-Ranges: bytes
Content-Length: 2848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

getglucotrust.me/style.css

67.227.198.234

200 OK

11 kB

URL HTTP/1.1
getglucotrust.me/style.css
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text
Size
11 kB (11056 bytes)
Hash
4600a875cbd599ba9f4c28222ef98065
3e3f9ea19b715aad333403e7bb46974b06355cf4
99647928529588b7e22232a06a4f3b90b8f7f6dbfc8b591445ba7fd91af797fe

HTTP Headers

GET /style.css HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 06:02:17 GMT
ETag: "51cebb-2b30-5d16e7bca0c40"
Accept-Ranges: bytes
Content-Length: 11056
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

push.services.mozilla.com/

34.210.150.237

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.210.150.237:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aq43jUsL4d/EPkUYCf2dnQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M0tJeWy3eljEBS5feRQZ6eL3O/o=

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152971
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: nginx
Content-Length: 279

getglucotrust.me/images/tina.jpg

67.227.198.234

200 OK

25 kB

URL HTTP/1.1
getglucotrust.me/images/tina.jpg
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size
25 kB (24959 bytes)
Hash
611ab6a42b1abf4848720bb5eea5b47a
080db01d0fbcfbe83213556fe2eeb74be37511cc
c29401fa52410bd8ba4c24531051e85b0bcac7885725304fb3c296924a5230a9

HTTP Headers

GET /images/tina.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc3-617f-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 24959
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

getglucotrust.me/glucotrust/payment-icons.png

67.227.198.234

200 OK

3.7 kB

URL HTTP/1.1
getglucotrust.me/glucotrust/payment-icons.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 315 x 76, 8-bit colormap, non-interlaced\012- data
Size
3.7 kB (3670 bytes)
Hash
abec110a199f93c621dd12d5b8a3b6cf
9c96f6366ee3acfcafb84cde07b3ead09894d5fe
7a9bb60c6e2c926f9d1277648f551538a2df88eaf83342b293074cd3ac9c1fc2

HTTP Headers

GET /glucotrust/payment-icons.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:12 GMT
ETag: "519c21-e56-5ddafa942a630"
Accept-Ranges: bytes
Content-Length: 3670
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/great-value.png

67.227.198.234

200 OK

11 kB

URL HTTP/1.1
getglucotrust.me/images/great-value.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 122 x 122, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10825 bytes)
Hash
12d7087196d3440fa24b36ae34bae649
ef955a957ac4323298d3123b9ad4e18f7789c55a
96f38f779f71616743f605c20a839096b02eb80611694cfdcc02dde9c5fb4aae

HTTP Headers

GET /images/great-value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc1-2a49-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 10825
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 12:29:21 GMT
expires: Fri, 08 Dec 2023 12:29:21 GMT
cache-control: public, max-age=31536000
age: 62059
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:42:34 GMT
expires: Thu, 07 Dec 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 122466
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.35

200 OK

7.7 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152971
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: nginx
Content-Length: 279

getglucotrust.me/images/dave.png

67.227.198.234

200 OK

33 kB

URL HTTP/1.1
getglucotrust.me/images/dave.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Size
33 kB (32743 bytes)
Hash
3e117397121639f822f1920bbfec4d60
4f4a0cc6a43a4e27fb19bca23e597b1a6baf3f86
ec6b2c2607c54a8a4cf050664356ca3aa7bcb592ae46567641cddb3d04903135

HTTP Headers

GET /images/dave.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:24 GMT
ETag: "51cd87-7fe7-5d17228c48d00"
Accept-Ranges: bytes
Content-Length: 32743
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

getglucotrust.me/images/lesslie.jpg

67.227.198.234

200 OK

27 kB

URL HTTP/1.1
getglucotrust.me/images/lesslie.jpg
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size
27 kB (27127 bytes)
Hash
158c17c07a5e54fde7cf9d65de12dc9a
d33cf6ac8b1683acd31052a30f556ddba0b90c22
8d71208abab5f29dbc6d689dedab30d1bff9e99c7bbf83b8cec8b65dec2e6a2d

HTTP Headers

GET /images/lesslie.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cded-69f7-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 27127
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

getglucotrust.me/images/icon-man.png

67.227.198.234

200 OK

5.1 kB

URL HTTP/1.1
getglucotrust.me/images/icon-man.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 108 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5122 bytes)
Hash
1b5040cf26dbe5820987b7573d9a2f5d
cbf40dc36a64ee839b6dcddf4676942041b2fca3
c92f673bfa45a5b598c4eede6e19da2da70d407849dbf3bed8fdaf7a681eaede

HTTP Headers

GET /images/icon-man.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd21-1402-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 5122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

lizswannmiller.com/social-proof/gluco-trust/3bottle.js

67.227.198.234

200 OK

2.4 kB

URL HTTP/1.1
lizswannmiller.com/social-proof/gluco-trust/3bottle.js
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text
Size
2.4 kB (2403 bytes)
Hash
d02e366eab353ba3c5dad95d29486770
e2826c4c48b50a5492a738df2d2206dc75d5e1ad
bfc7c4c521716b2a7101cdd97b532c543f1445b5792da0d805e64fe77a63a46a

HTTP Headers

GET /social-proof/gluco-trust/3bottle.js HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Mon, 05 Jul 2021 10:55:46 GMT
ETag: "1c0daa-963-5c65e25c37428"
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

getglucotrust.me/glucotrust/best_value.png

67.227.198.234

200 OK

10 kB

URL HTTP/1.1
getglucotrust.me/glucotrust/best_value.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 122 x 121, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10235 bytes)
Hash
187008a4e7d351c042f9d7622312f9e2
7d23ade8847cfffcf0a15e5ca06c7d6726a47956
839e08dd077b29cdcff873ce9d21d070e3e1178f043a09b21fa2d2a82c0ed7e5

HTTP Headers

GET /glucotrust/best_value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:06 GMT
ETag: "519c14-27fb-5ddafa8e82638"
Accept-Ranges: bytes
Content-Length: 10235
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
af5114fe55eb52159a12b31c991a4cbc
0d599ce87aa98c15f3be90bf981650f0ea7b3126
e22a36e8f8722c0109c5cad8843d4024d3bd5206978de1cff858db49e2ba605b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5128
Cache-Control: max-age=108758
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "6391bcda-117"
Expires: Sat, 10 Dec 2022 11:56:18 GMT
Last-Modified: Thu, 08 Dec 2022 10:30:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279

getglucotrust.me/images/atc-1.png

67.227.198.234

200 OK

7.0 kB

URL HTTP/1.1
getglucotrust.me/images/atc-1.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 358 x 89, 8-bit colormap, non-interlaced\012- data
Size
7.0 kB (7048 bytes)
Hash
68c2993c80c6a81e458afc917e14c1f6
eb3d52430277f6bb00840b92d38410753110c3a7
8391079e9917034c6ed2cbc2d8fea76882b9d537738567db83f3c9b92e96e72d

HTTP Headers

GET /images/atc-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd29-1b88-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 7048
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/MBG.png

67.227.198.234

200 OK

40 kB

URL HTTP/1.1
getglucotrust.me/images/MBG.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 355 x 355, 8-bit colormap, non-interlaced\012- data
Size
40 kB (39886 bytes)
Hash
2f19e5d4473c4ec411ac0295d52fb187
6db2475ced9dae0fe46b3428a85307f420d4d396
1e384ca6d3d8d8279995ca77c3e3f8fd13106b0839fdae795e5b5b8b9ae52e2e

HTTP Headers

GET /images/MBG.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccc2-9bce-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 39886
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/cathy.jpg

67.227.198.234

200 OK

21 kB

URL HTTP/1.1
getglucotrust.me/images/cathy.jpg
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size
21 kB (20625 bytes)
Hash
611f787be0fb38aaf88796c096f69463
cd315f8e7c5e02f5b1cd5221c8b87a9de11ec24f
28a5c4b2abc59624c5f703ef966167fe05cc731a0311434ffc7423e23430e876

HTTP Headers

GET /images/cathy.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdcf-5091-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 20625
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

getglucotrust.me/images/sharon.jpg

67.227.198.234

200 OK

19 kB

URL HTTP/1.1
getglucotrust.me/images/sharon.jpg
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size
19 kB (19033 bytes)
Hash
011ec7e4c020d8e707b7baf1ffb3f4d4
0a9ff9c94443ebdec6584c1870df8ddd5153d805
f9f5f31a444e4c990d295f31fc01156df60a76bde89c4fd3c9f21911c26b9eb8

HTTP Headers

GET /images/sharon.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccf2-4a59-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 19033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

getglucotrust.me/images/carl.png

67.227.198.234

200 OK

30 kB

URL HTTP/1.1
getglucotrust.me/images/carl.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Size
30 kB (29689 bytes)
Hash
29348b4eb2cbe53f2ec87061dfb4dffc
19ad0691005733c296a751e2243e50e1945d7f3c
040f94a96f19b55290f43bbbd3566505b3bdd4b0f92d69093c8129d63683ef90

HTTP Headers

GET /images/carl.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd25-73f9-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 29689
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/glucotrust/Glucotrust-1-add.png

67.227.198.234

200 OK

78 kB

URL HTTP/1.1
getglucotrust.me/glucotrust/Glucotrust-1-add.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
78 kB (77485 bytes)
Hash
d03634d9b904321bac38acb827e33d19
881dc999f975608e2f851608a5411d140d13decd
ddabf7717e29126a45ec7d0c28966dee413aff5ecae502be363765c7c4c003d4

HTTP Headers

GET /glucotrust/Glucotrust-1-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:09 GMT
ETag: "519c1c-12ead-5ddafa9167d80"
Accept-Ranges: bytes
Content-Length: 77485
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png

67.227.198.234

200 OK

196 kB

URL HTTP/1.1
getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
196 kB (195998 bytes)
Hash
26a130aee3d414211206d19e145b0a7c
ad41d34bf6df6bd41b49803ef4b88293990f307c
e2be3110ec3740f65e3665a7d8c72ea0a819af0ac7f8e9fbb58a93ed251ebaa4

HTTP Headers

GET /glucotrust/3-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0c-2fd9e-5ddafa8bafbb8"
Accept-Ranges: bytes
Content-Length: 195998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

ipapi.co/json/

104.26.8.44

200 OK

634 B

URL HTTP/2
ipapi.co/json/
IP
104.26.8.44:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
634 B (634 bytes)
Hash
29e8e6f3242f0926b6e2d2e98ba1b227
b4ecd84567d5476db70bcada4dd98c8f3dad7721
f487bdd14ee81c79db5f662c5734b3c4cdcf18c9233e0b16645c6214b5456fe6

HTTP Headers

GET /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: application/json
allow: POST, OPTIONS, OPTIONS, GET, HEAD
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://getglucotrust.me
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcpkcOW8e0bcytIp2zm1J51nbSIxJ2udBJ7TPJYPdy4rMnb10OKQFW80UIjRdvVYxySryYOx5ngT7o50OGzkjYdEpVdvMlo0Iludz8YUy7XWtWAc5%2BUylKt7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776b6cadbcdfb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

getglucotrust.me/images/night-reset.png

67.227.198.234

200 OK

38 kB

URL HTTP/1.1
getglucotrust.me/images/night-reset.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Size
38 kB (37889 bytes)
Hash
51a3a329948e7e8898c0a8c41b574317
cfb3ae7f51f06dba1e693051fe87ec4cefd2b5d2
8c4eb614a7e798e4de91e1dc248150210eaa1a61e3460a06da850b666293eef6

HTTP Headers

GET /images/night-reset.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:28 GMT
ETag: "51cd15-9401-5d3c99b1fe800"
Accept-Ranges: bytes
Content-Length: 37889
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/365-detox.png

67.227.198.234

200 OK

28 kB

URL HTTP/1.1
getglucotrust.me/images/365-detox.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Size
28 kB (28004 bytes)
Hash
cbd38301847e02b324a846f78d52e7e5
3ffd514da6fb3c1ebd3f4ac94f738474f811ccd9
c9a7cb9f404a032a1b118583f67039670b40fd96da7172c8b90861e06664974d

HTTP Headers

GET /images/365-detox.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:11 GMT
ETag: "51ce23-6d64-5d3c99a1c81c0"
Accept-Ranges: bytes
Content-Length: 28004
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/glucotrust.png

67.227.198.234

200 OK

37 kB

URL HTTP/1.1
getglucotrust.me/images/glucotrust.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Size
37 kB (37353 bytes)
Hash
53cfcb39e348b241bb569be45143b5d8
0abcdb57812052155f1f7eb250d68a1d2500d901
c01480ae798b31763d796108f27fa01687a9a327c48e71709e4e959645af91f2

HTTP Headers

GET /images/glucotrust.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:21 GMT
ETag: "51ce31-91e9-5d3c99ab51840"
Accept-Ranges: bytes
Content-Length: 37353
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png

67.227.198.234

200 OK

172 kB

URL HTTP/1.1
getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
172 kB (172441 bytes)
Hash
a3d16efe395db4a4fa5efb51cc3b7649
f0ea95f994eeb5582f9eab96eb6c74a85a0b269f
b524a3ffe3077d3da64e9a457eac4ea8fe4f86913b5f65d9bcfa27b88271dffc

HTTP Headers

GET /glucotrust/6-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0e-2a199-5ddafa8bb9fc8"
Accept-Ranges: bytes
Content-Length: 172441
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

getglucotrust.me/images/gtrust-1.png

67.227.198.234

200 OK

91 kB

URL HTTP/1.1
getglucotrust.me/images/gtrust-1.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 300 x 588, 8-bit/color RGBA, non-interlaced\012- data
Size
91 kB (91116 bytes)
Hash
cf9ec0841bfaabe6f228f3c4146af775
f57be27f37aa6c3425d61b2f788e95b4c1bd040b
1b590ebee0c1adace4f629c87f52fd244159447b65f3881133eb12f54d9bf1d1

HTTP Headers

GET /images/gtrust-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd0d-163ec-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 91116
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County

67.227.198.234

200 OK

7 B

URL HTTP/1.1
lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27

HTTP Headers

POST /social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

getglucotrust.me/images/favicon.png

67.227.198.234

200 OK

22 kB

URL HTTP/1.1
getglucotrust.me/images/favicon.png
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 320 x 246, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22344 bytes)
Hash
61b181bb52538ccc14223673337d3749
47bc04f230809896515b3ee4f36200e8a870b239
1fc5cad9875d157c654813ee74ea41ac9cab2678b445dbe9f683d5036536aa19

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Cookie: visitor_name=old
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd02-5748-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 22344
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd

151.139.128.10

200 OK

4.7 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
XML 1.0 document text\012- XML document, ASCII text
Size
4.7 kB (4688 bytes)
Hash
abace24d047031da912f090b739571fb
fe031474a108bb50ed558193a30c6a99c7d43306
966f54e46d2c696ba7d416f596d482b46b5e23dcdcbac258d8419a8594dd9ce7

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Tue, 26 Oct 2021 09:57:25 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvTAZ-Ag_h6NkOlMIPygLIKqxs2rtWsa90vZMrb1zvU3JCHp8aw_mP2TB37lOWT9t6wUx68NNj-r_bqQ6tzoZ_UOg
cache-control: public, max-age=31104000
etag: "abace24d047031da912f090b739571fb"
x-goog-generation: 1635242245257388
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=eL7dqQ==, md5=q6ziTQRwMdqRLwkLc5Vx+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds065.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2223
Expires: Fri, 09 Dec 2022 06:20:44 GMT
Date: Fri, 09 Dec 2022 05:43:41 GMT
Connection: keep-alive

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
159acfa2a8f4daa5dc4267ea8dcfc669
8f1628f5c762896d57d7d8dd9d5f060a0c6b1147
6a4afcf37ebee98e4264649f8f621c7e9834edfb40d33c43e09cb39ccc405376

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 05:43:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 20:30:49 GMT
Expires: Fri, 09 Dec 2022 20:30:49 GMT
ETag: "8f1628f5c762896d57d7d8dd9d5f060a0c6b1147"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 80914
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 28337
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6637 bytes)
Hash
3cb7655c8fe89a83f0096c51684aa21c
4946fcab2a99d926c45abaecf8f97b6214dee0cd
60a3066f2dcc2f696413ecec56ef1d0c1a9392f6845fac5c4319b8b9e02074fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6637
x-amzn-requestid: dfcef102-5fc6-4a59-bb21-ff0532c9fdda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlg4GtVIAMFdTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb605-0c2f58da0ae148fb4d698ecc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jQs6m8oGHeWNYbOnPM34f-YW75VuH0yNWU-TzoDMOkYcwGa9BfqBhA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:22 GMT
age: 28339
etag: "4946fcab2a99d926c45abaecf8f97b6214dee0cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7DwFYUoAI9x-ruRySpsSAXQZnxrXxUACrXp568TGZ2JSppZ1UC0uWg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:09:44 GMT
age: 81237
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4914 bytes)
Hash
06799a30d9977b0845f525ae82355d23
6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea
d7a7eeb42d36167243b3dea7147a61119cbb5d1dcc2e2304c6ddd4a62e41efd3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4914
x-amzn-requestid: b709d5ff-617b-480b-8fc3-b1408ee358b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsoEkSIAMF0ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7ea-4150ac397b97d1217cece045;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8DqbjuQMX0JOMpduQ1-wy_B1a957NXgsAHrZc1OwUzsmqJRKfkEpoA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:49:06 GMT
age: 28475
etag: "6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8803 bytes)
Hash
46275ec87d8221804dbb99f95b035131
c47af4e5770daad212f4290527b00321285105f8
2118ec68c738683d8f7e11b95239ca92fda2b9b5054aa7b128267eec0d0634c5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8803
x-amzn-requestid: e8516be3-5ce9-4f15-b522-c81c1e57a0e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtK9GavoAMFjpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af579-538cc8f300938698004f2241;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiOdXHxd9Vmeji8Yqd8LG_EqYoMGf0YBy6by9bhfjb12y1OxKVvvqw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:56:08 GMT
age: 6453
etag: "c47af4e5770daad212f4290527b00321285105f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354

172.66.43.22

200 OK

1.6 kB

URL HTTP/2
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354
IP
172.66.43.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (698), with CRLF line terminators
Size
1.6 kB (1582 bytes)
Hash
a481d32b4f8477ec7ee4a644e0b88976
b7fba58384bfb96dcb4eef13bce80738a3704909
32908da7ba74eb0c69edc1b3a8f9926d0cce4426de1a7133d56939132e4cc92d

HTTP Headers

GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_7223=318; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_7223=10362%7Cglucotrustsa; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=91.90.42.154::getglucotrust.me%2Fdiscovery; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_7223=sessid20221209054318773; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6caf6ff1b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4

151.139.128.10

200 OK

459 B

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
WebM\012- EBML file, creator webmB\20\012- data
Size
459 B (459 bytes)
Hash
4f3d84d2d528408dfe561eb3d1dd7e1e
ee2797b545300bda74178a1d9b23f4644010fa23
9d19d8e0f9ef924887894759458dbbf61baa018fb750e9d5d1b1159cc472df07

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:53 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvcfq_RLZF6kFroZlM1vAXF2-GxE7kieBE1-Wd3ILCkCiyO1VDs4QCaKsdy3uLEgWb5HocHURT0irHseBf6d7bGUA
cache-control: public, max-age=31104000
etag: "4f3d84d2d528408dfe561eb3d1dd7e1e"
x-goog-generation: 1635241733761536
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=bNOOUA==, md5=Tz2E0tUoQI3+Vh6z0d1+Hg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds210.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

licensing.bitmovin.com/licensing

35.227.229.24

200 OK

165 B

URL HTTP/2
licensing.bitmovin.com/licensing
IP
35.227.229.24:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
165 B (165 bytes)
Hash
bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638

HTTP Headers

POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 147
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
3138e963a152296a71dd11dd0c7b0fb5
ede05c96779f2ceeccbb681e929cfb6eff70cd42
28314a7a997f25cb6965956c77c624093aa01468726901c2ef49c2c47a9afb35

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 12:06:18 GMT
Expires: Wed, 14 Dec 2022 12:06:17 GMT
Etag: "ede05c96779f2ceeccbb681e929cfb6eff70cd42"
Cache-Control: max-age=454355,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b6cb54b130b61-OSL

stats.vidalytics.com/awesome-log?cid=sBLUNzmU

107.178.211.97

200 OK

43 B

URL HTTP/2
stats.vidalytics.com/awesome-log?cid=sBLUNzmU
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22

HTTP Headers

GET /awesome-log?cid=sBLUNzmU HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "sBLUNzmU/qIEmDlKB8RS1g4QA"
date: Fri, 09 Dec 2022 05:43:41 GMT
x-envoy-upstream-service-time: 12
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm

151.139.128.10

200 OK

142 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
142 kB (141872 bytes)
Hash
0efe32a3d51ac33dea20b21e3192ed4c
84cd6e318ce2c38b0f0ed30919c87e14ac0df994
6d8b04775ab140d3e2de28b68aea8e4f8207b959463ea4525121893569fd4d5c

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 141872
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdufojzsS6zvdLb5lS8Gha2v5QjronXLUC9C7sDrufbFlu9sK5-2Gl01X3_50NsOgTn0sIN33bkwet3Jd1den13bxw
cache-control: public, max-age=31104000
etag: "0efe32a3d51ac33dea20b21e3192ed4c"
x-goog-generation: 1635241759020672
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141872
x-goog-hash: crc32c=ZicahA==, md5=Dv4yo9Uawz3qILIeMZLtTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds215.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4

151.139.128.10

200 OK

459 B

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
WebM\012- EBML file, creator webmB\20\012- data
Size
459 B (459 bytes)
Hash
9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsBvK-LjbssqnfnAMRXGhIpQjT3bEF1Bvid8I0mL5GGznAFYm4N0JRJctAUJ0IelrNQ1NGqoBR4FM1ttW2XjdGcDhBu_P6E
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
x-goog-generation: 1635241734900204
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds233.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

licensing.bitmovin.com/impression

35.227.229.24

204 No Content

0 B

URL HTTP/2
licensing.bitmovin.com/impression
IP
35.227.229.24:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 112
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 409
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 542
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm

151.139.128.10

200 OK

453 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
453 kB (452963 bytes)
Hash
503dabff6a8c19e003b8d50a87955024
8fff1767eecbeee2a02b8c7f932e099c683c6e12
2f63c517550b5278c4c29babe84792c12e3ec58c1960829ef3456738e376d916

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 452963
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdv257JbFXzpa0I2TULctqK6pO1iDzCPnoGGSl4lckzt9NyvoqiBf7wf3sFFy4wPC_054LUpWKcH7mL2rKiJQimQcg
cache-control: public, max-age=31104000
etag: "503dabff6a8c19e003b8d50a87955024"
x-goog-generation: 1635241759821716
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 452963
x-goog-hash: crc32c=+f4GVw==, md5=UD2r/2qMGeADuNUKh5VQJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds003.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm

151.139.128.10

200 OK

501 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
501 kB (500741 bytes)
Hash
4c9ae4acf4f41c4141a868ef8928c500
4312e0a0ae930f79a93b38ee2a643af87ca1c491
53149be550b49003b97069c9530c655222737f4d78422f22c4b4308c65441ffb

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 500741
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:50:10 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdubEQMy1BlzriZawMFP1NOmI67LylYtLEsUrqfy7e5fJLJMU0FeylWDjTLF5YaGfezwY3sK-2JjiIIDRQhKmPA6nw
x-goog-generation: 1635241810385100
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500741
x-goog-hash: crc32c=G1mmkA==, md5=TJrkrPT0HEFBqGjviSjFAA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "4c9ae4acf4f41c4141a868ef8928c500"
age: 969
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds069.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1844
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:42 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1819
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:42 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1811
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm

151.139.128.10

200 OK

440 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
440 kB (440220 bytes)
Hash
2ce7ceeecec22620296b359f23daf34e
4967eeb2847fd5f13006de3f62f00b5d43cdf857
63c11ac2e648ad07644a3e5d99a14bd56455be889b2f98cb8fd6b9200cf404b6

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 440220
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu20pGeRaMLnmKnLiEtF2EbGfPibMjWOitQ8DJ90IalhIkNKRF5bTPtkb0dzSFHN23oSKwLqiokbMV2h6ebzjXFkAJQS7zp
cache-control: public, max-age=31104000
etag: "2ce7ceeecec22620296b359f23daf34e"
x-goog-generation: 1635241757315848
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 440220
x-goog-hash: crc32c=a0DuSw==, md5=LOfO7s7CJiApazWfI9rzTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds227.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm

151.139.128.10

200 OK

492 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
492 kB (491965 bytes)
Hash
f03e4e195ed7d7047c3a3b9c5508edb3
3551a120e35a7c125d675d932ed8d2680195a76e
160bd0cbe90f159603bdc739329bd33539459e4e111faca9c2361f049ce8dd6f

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 491965
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:51 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtHSCSVu_yxEnM3L0vL1-Vl2IVfTqYStr6BD70pqFPTwVI646gCzycrkL0yNu9qrnX9RqWZsJr242bpbVpan1LNlPdBhXfl
cache-control: public, max-age=31104000
etag: "f03e4e195ed7d7047c3a3b9c5508edb3"
x-goog-generation: 1635241791214577
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 491965
x-goog-hash: crc32c=Wk1Ctw==, md5=8D5OGV7X1wR8OjucVQjtsw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds258.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm

151.139.128.10

200 OK

447 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
447 kB (447138 bytes)
Hash
a9a33f9aa83b707543d950a95bcaf51a
59666d5532557034819d2298807261c2b7cd95c7
023b5b607c059d919776ff493343b225450fa56b15da92ca340bec031c4601a9

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 447138
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:47 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsOBtNuOZREpFSwk4DNxNIZS_T_oo7Kvj2DuTkBoLG9ftCdWWUHDHjkwZ42HjlLK8zUV7aIN4EsUrVauSSBpV3tt_DU8lvc
cache-control: public, max-age=31104000
etag: "a9a33f9aa83b707543d950a95bcaf51a"
x-goog-generation: 1635241787837593
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 447138
x-goog-hash: crc32c=rySNnA==, md5=qaM/mqg7cHVD2VCpW8r1Gg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds238.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm

151.139.128.10

200 OK

484 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
484 kB (484518 bytes)
Hash
c641d46daea5a95512488256e12f34fb
f43348e46e1f94c665b8ba9aa6d6c5e66da608e9
0ebe7539a9def9eda564a1a392f08b0146a81fdf809974abaa3622e660875739

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 484518
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduNVDhaKp_LavCc6-uCndz2E4FxfzC3ODWztyUjjF8SvN6SlAhV0UMiILLImkv_vTEv9e-ba4Bc2gRc3pHhbvaZkoxEv2Wz
cache-control: public, max-age=31104000
etag: "c641d46daea5a95512488256e12f34fb"
x-goog-generation: 1635241757168366
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 484518
x-goog-hash: crc32c=9K0fMA==, md5=xkHUba6lqVUSSIJW4S80+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds219.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm

151.139.128.10

200 OK

499 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
499 kB (499123 bytes)
Hash
5b8eaabe4bdddebb428e5b1e959662b1
c07b14b836318ac88f718caffeb613871ee4fa50
abcea0e7876d37212369a56b1e81aa9ae77a8e04733015b76b2594fecb49213f

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 499123
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsI9quK2UM8ZHKRT6laDkMkBlSIYuTZVWdRMvR8k5UQDZPd57aAJB15zTRx_V6w6i8cJ01N9f0qyWHglZwIYQt00HGio_Og
cache-control: public, max-age=31104000
etag: "5b8eaabe4bdddebb428e5b1e959662b1"
x-goog-generation: 1635241756875923
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 499123
x-goog-hash: crc32c=42Xo/w==, md5=W46qvkvd3rtCjlselZZisQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds251.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm

151.139.128.10

200 OK

477 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
477 kB (477148 bytes)
Hash
6644e390056c19c58731ea84f51c6919
a52cc3ab11508ce3e1a38a499d3e1a13fc8fd4f2
b163bdf3b287321d3737c41ae3de8d3bfd59a7f18d0e3b5fdcf09772a78dafb6

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 477148
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvftNxU5CwlQ8IjrMY2Qf0vopC3nFTpIV_vb5EjjH7KF0wdV7P3_jTrZzGk3vEvWzT55IFbcqp5g_j8qSpVbwPy_g
cache-control: public, max-age=31104000
etag: "6644e390056c19c58731ea84f51c6919"
x-goog-generation: 1635241756513450
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 477148
x-goog-hash: crc32c=kDyJLw==, md5=ZkTjkAVsGcWHMeqE9RxpGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds229.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm

151.139.128.10

200 OK

505 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
505 kB (505398 bytes)
Hash
fd066e69f546add1b29a973ea01db226
deaf496cba053030e8b4479124c311c0007b0c0e
975ea0d61146206d06070095f654a44df4dd167d19027cefd0db421893f22ffe

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 505398
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:52 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdveJ5yM_wkribpGbdmSqLvo6ZGV8BM74we_RsYCoGQBsomxSqgEj-WVRViiGKlzZ7MRfO1dULaj_7_HK_IE6M6LeEN3RJQa
cache-control: public, max-age=31104000
etag: "fd066e69f546add1b29a973ea01db226"
x-goog-generation: 1635241792725950
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 505398
x-goog-hash: crc32c=izeeMA==, md5=/QZuafVGrdGympc+oB2yJg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds205.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm

151.139.128.10

200 OK

498 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
498 kB (498012 bytes)
Hash
4e718dd7f246267c7f280f45f767237b
c2637e81b13e33b9f7b493df0962d070b8ca657b
93a8425afbb2a7d9792906b37950fafa97db9e541663dac96cdd7680fa3ee967

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 498012
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduliFEabMKEGqAB-PWLtkQR3W8ysRbXeBfs4hVrUtde05_RsnX1w1MUVFuKz6cId5UMWfLLN8fqf6FtzdMDrLDF_Q
cache-control: public, max-age=31104000
etag: "4e718dd7f246267c7f280f45f767237b"
x-goog-generation: 1635241797140802
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 498012
x-goog-hash: crc32c=oRtITg==, md5=TnGN1/JGJnx/KA9F92cjew==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds228.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
159acfa2a8f4daa5dc4267ea8dcfc669
8f1628f5c762896d57d7d8dd9d5f060a0c6b1147
6a4afcf37ebee98e4264649f8f621c7e9834edfb40d33c43e09cb39ccc405376

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 05:43:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 20:30:49 GMT
Expires: Fri, 09 Dec 2022 20:30:49 GMT
ETag: "8f1628f5c762896d57d7d8dd9d5f060a0c6b1147"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1835
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1918
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm

151.139.128.10

200 OK

502 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type
data
Size
502 kB (501925 bytes)
Hash
318cc5f1cf29a1f69296f42bdc210d51
ae18a24bf2da96053a36ddaade81e5d0d949110f
223e81e6a1649a1e3534ff48615c4e12c7bfb060b9f17653e98a4da4c3e3a328

HTTP Headers

GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:46 GMT
content-length: 501925
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdslwPzMzZWrPCfoDhsvBTkDqowAY5v-dlJvJYxi2c4yrKU_qSYMuu7YmwfjPQ7dZ19rz65RLH2fc9MenzUgPPsrZ4y6Vmsl
cache-control: public, max-age=31104000
etag: "318cc5f1cf29a1f69296f42bdc210d51"
x-goog-generation: 1635241794182465
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 501925
x-goog-hash: crc32c=ucE85A==, md5=MYzF8c8pofaSlvQr3CENUQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564626.cds243.sk1.hn,1670564626.cds216.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 186
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:46 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1870
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:47 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1828
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:47 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb

151.139.128.10

200 OK

0 B

URL HTTP/2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:24 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsPvRWbRTHiLhG-PM5Hit04y8KgoicQgjl76QgvsSwghGLQLVK8anBwdGcoYwviu4Nq6rM_JqlUEgiJAt3yWzjfhMav-nPS
cache-control: public, max-age=300, s-maxage=2592000
etag: "e36f599ac6dd2e8516f4a98b2d8874c0"
x-goog-generation: 1665138924190301
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502517
x-goog-hash: crc32c=mVBADg==, md5=429ZmsbdLoUW9KmLLYh0wA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn: 4
content-encoding: gzip
x-hw: 1670564620.cds243.sk1.hn,1670564620.cds243.sk1.hc,1670564620.cds261.sk1.c,1670564620.cds243.sk1.sl
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 05:43:39 GMT
date: Fri, 09 Dec 2022 05:43:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:900

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:900
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 05:43:39 GMT
date: Fri, 09 Dec 2022 05:43:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX

172.66.40.141

200 OK

0 B

URL HTTP/2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
IP
172.66.40.141:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v1/disclaimer?id=disclaimer&account_id=XXXX HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6cac8ff8fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js

151.139.128.10

200 OK

0 B

URL HTTP/2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
IP
151.139.128.10:0
ASN
#20446 STACKPATH-CDN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:23 GMT
x-guploader-uploadid: ADPycduF1qH786oO2hX8KMcnqFixufudrmdpH5Cu1-M5K1ucPjokV8lyOlsz4QUcWMHZZAAEwbQRHDznys30rZtpXNtXohjDp4W8
expires: Fri, 09 Dec 2022 05:43:40 GMT
etag: "99062c422517a5fbec4ec008f470f173"
x-goog-generation: 1665138923750112
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=U9EGPA==, md5=mQYsQiUXpfvsTsAI9HDxcw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1670564620.cds204.sk1.hn,1670564620.cds204.sk1.hc,1670564620.cds210.sk1.sc,1670564620.cds210.sk1.p,1670564620.cds204.sk1.sl
X-Firefox-Spdy: h2

tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=

172.66.43.22

200 OK

0 B

URL HTTP/2
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=
IP
172.66.43.22:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2= HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6cad6e8bb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations