getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
67.227.198.234301 Moved Permanently 315 B URL HTTP/1.1 getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b288544f40f593f14139ab8069a31d0
f0fcbe872f0b42c516e0f9ac624ffccdc9861c15
7b275d5653f5523735882f81c6079f35899f43334df5c33efeb41ef401e3e991
GET /discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 05:43:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Location: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2178
Expires: Fri, 09 Dec 2022 06:19:57 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18122
Expires: Fri, 09 Dec 2022 10:45:41 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 05:08:17 GMT
content-type: application/json
age: 2122
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17688
Expires: Fri, 09 Dec 2022 10:38:27 GMT
Date: Fri, 09 Dec 2022 05:43:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: X3AJSqteC37BfgScS3ad0QxIA8fC5E/sdLCetQxidR/UQSRC09JIM/4NztG5P0WJg6uvzuF/3NU=
x-amz-request-id: WJVDR21FJVHFVNW8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 04:48:11 GMT
age: 3328
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 05:43:39 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 05:07:59 GMT
age: 2140
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
151.101.65.229200 OK 15 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (55494)
Hash 3a23cd494f2294febc5ab709de787492
b304fe0fa818fe19621c3f7e03378907a631b17e
2283c0ea76acf6f96c40bf272fa4143a564ca2d4d7b47bf97cf86526b275a3ba
GET /npm/bootstrap@4.2.1/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"d9df-3pCMntGE1061Jfp6MESbZ/w6HBQ"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 694646
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14551
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
151.101.65.229200 OK 23 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
IP 151.101.65.229:0
File type ASCII text, with very long lines (65324)
Hash f861342796feb5c1a463b5097ac9c57b
edb9ccd611b1763c4b432c68c510b9e3d9a07c33
36844fca25837b632c2a35cb10ecb41a3d4d169bb6b90d508adc7ced9586b01e
GET /npm/bootstrap@4.2.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"2565e-Oum7DnkpSJq9I3Nq6JKTnI/phkU"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 2097227
x-served-by: cache-fra-eddf8230119-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22966
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
151.101.65.229200 OK 30 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (32058)
Hash 20532f68850fbf98301ee064978fe500
baa841180e3a637eec908fbe16446a1d3270c6f8
421607c7298f63a23569c71a3269c5ae3cfe15a36290039735c3ae3533de2c68
GET /npm/jquery@3.2.1/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.2.1
x-jsd-version-type: version
etag: W/"15283-EFUBjCirQQh++czv5BFgaJPavqI"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 3904727
x-served-by: cache-fra-eddf8230126-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30180
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
151.101.65.229200 OK 7.1 kB URL HTTP/2 cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
IP 151.101.65.229:0
File type ASCII text, with very long lines (30837)
Hash c68c38b6f53bfc3bee6b736afa488757
871df21572c702142a7c237259326013ec2df26a
e2100c6e7b6f0d358ac92d33b11278661c9a80e4c62c056677e24bc572d6da34
GET /npm/font-awesome@4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"7918-USx9eQM+MCipvmG1QM8aaHDIlvg"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 05:43:39 GMT
age: 7372936
x-served-by: cache-fra19165-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7055
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 416ef392cc62fdec5445f323ab634739
a56dfac62375baef490c6ba0335d93b59c57a456
2e3cbc1321aa4b49d51076a62ca3297de8ee3fb1045b8571021045f51e9a13f9
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:39 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9EFB7C37E92ADBC6BD1C060FEC0E4D2017B3FE45"
Expires: Fri, 09 Dec 2022 16:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 04:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2269
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776b6caa5b14b51d-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3679
Cache-Control: max-age=102272
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:08:11 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
67.227.198.234200 OK 99 kB URL HTTP/1.1 getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (899), with CRLF, LF line terminators
Hash 4cbaab3db257f2aad96676ab8b3d7b61
160e7a101c715656bff61ddd3c4b75c603f389d9
036b86fd18581fb0aefede6c2994508c9fed2699f3d99cd20002bd723daa06a3
GET /discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
getglucotrust.me/js/bounceback.min.js
67.227.198.234200 OK 2.8 kB URL HTTP/1.1 getglucotrust.me/js/bounceback.min.js
IP 67.227.198.234:0
File type ASCII text, with very long lines (2756), with CRLF line terminators
Hash 928ec014586629db7d8b4ad49c4bc93c
b436801b50738cca53b78e5c9e459495f26da5c9
1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282
Analyzer Verdict Alert fortinet Phishing
GET /js/bounceback.min.js HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Wed, 08 Sep 2021 15:39:06 GMT
ETag: "51ce9a-b20-5cb7daeb4fa80"
Accept-Ranges: bytes
Content-Length: 2848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
getglucotrust.me/style.css
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/style.css
IP 67.227.198.234:0
Hash 4600a875cbd599ba9f4c28222ef98065
3e3f9ea19b715aad333403e7bb46974b06355cf4
99647928529588b7e22232a06a4f3b90b8f7f6dbfc8b591445ba7fd91af797fe
GET /style.css HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 06:02:17 GMT
ETag: "51cebb-2b30-5d16e7bca0c40"
Accept-Ranges: bytes
Content-Length: 11056
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
34.210.150.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.150.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aq43jUsL4d/EPkUYCf2dnQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M0tJeWy3eljEBS5feRQZ6eL3O/o=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152971
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: nginx
Content-Length: 279
getglucotrust.me/images/tina.jpg
67.227.198.234200 OK 25 kB URL HTTP/1.1 getglucotrust.me/images/tina.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611ab6a42b1abf4848720bb5eea5b47a
080db01d0fbcfbe83213556fe2eeb74be37511cc
c29401fa52410bd8ba4c24531051e85b0bcac7885725304fb3c296924a5230a9
GET /images/tina.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc3-617f-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 24959
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/glucotrust/payment-icons.png
67.227.198.234200 OK 3.7 kB URL HTTP/1.1 getglucotrust.me/glucotrust/payment-icons.png
IP 67.227.198.234:0
File type PNG image data, 315 x 76, 8-bit colormap, non-interlaced\012- data
Hash abec110a199f93c621dd12d5b8a3b6cf
9c96f6366ee3acfcafb84cde07b3ead09894d5fe
7a9bb60c6e2c926f9d1277648f551538a2df88eaf83342b293074cd3ac9c1fc2
GET /glucotrust/payment-icons.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:12 GMT
ETag: "519c21-e56-5ddafa942a630"
Accept-Ranges: bytes
Content-Length: 3670
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/great-value.png
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/images/great-value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 122, 8-bit/color RGBA, non-interlaced\012- data
Hash 12d7087196d3440fa24b36ae34bae649
ef955a957ac4323298d3123b9ad4e18f7789c55a
96f38f779f71616743f605c20a839096b02eb80611694cfdcc02dde9c5fb4aae
GET /images/great-value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc1-2a49-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 10825
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.35200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 12:29:21 GMT
expires: Fri, 08 Dec 2023 12:29:21 GMT
cache-control: public, max-age=31536000
age: 62059
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:42:34 GMT
expires: Thu, 07 Dec 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 122466
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 123290
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152971
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: nginx
Content-Length: 279
getglucotrust.me/images/dave.png
67.227.198.234200 OK 33 kB URL HTTP/1.1 getglucotrust.me/images/dave.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 3e117397121639f822f1920bbfec4d60
4f4a0cc6a43a4e27fb19bca23e597b1a6baf3f86
ec6b2c2607c54a8a4cf050664356ca3aa7bcb592ae46567641cddb3d04903135
GET /images/dave.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:24 GMT
ETag: "51cd87-7fe7-5d17228c48d00"
Accept-Ranges: bytes
Content-Length: 32743
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getglucotrust.me/images/lesslie.jpg
67.227.198.234200 OK 27 kB URL HTTP/1.1 getglucotrust.me/images/lesslie.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 158c17c07a5e54fde7cf9d65de12dc9a
d33cf6ac8b1683acd31052a30f556ddba0b90c22
8d71208abab5f29dbc6d689dedab30d1bff9e99c7bbf83b8cec8b65dec2e6a2d
GET /images/lesslie.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cded-69f7-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 27127
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/icon-man.png
67.227.198.234200 OK 5.1 kB URL HTTP/1.1 getglucotrust.me/images/icon-man.png
IP 67.227.198.234:0
File type PNG image data, 108 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b5040cf26dbe5820987b7573d9a2f5d
cbf40dc36a64ee839b6dcddf4676942041b2fca3
c92f673bfa45a5b598c4eede6e19da2da70d407849dbf3bed8fdaf7a681eaede
GET /images/icon-man.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd21-1402-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 5122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
lizswannmiller.com/social-proof/gluco-trust/3bottle.js
67.227.198.234200 OK 2.4 kB URL HTTP/1.1 lizswannmiller.com/social-proof/gluco-trust/3bottle.js
IP 67.227.198.234:0
Hash d02e366eab353ba3c5dad95d29486770
e2826c4c48b50a5492a738df2d2206dc75d5e1ad
bfc7c4c521716b2a7101cdd97b532c543f1445b5792da0d805e64fe77a63a46a
GET /social-proof/gluco-trust/3bottle.js HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Mon, 05 Jul 2021 10:55:46 GMT
ETag: "1c0daa-963-5c65e25c37428"
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
getglucotrust.me/glucotrust/best_value.png
67.227.198.234200 OK 10 kB URL HTTP/1.1 getglucotrust.me/glucotrust/best_value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 187008a4e7d351c042f9d7622312f9e2
7d23ade8847cfffcf0a15e5ca06c7d6726a47956
839e08dd077b29cdcff873ce9d21d070e3e1178f043a09b21fa2d2a82c0ed7e5
GET /glucotrust/best_value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:06 GMT
ETag: "519c14-27fb-5ddafa8e82638"
Accept-Ranges: bytes
Content-Length: 10235
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash af5114fe55eb52159a12b31c991a4cbc
0d599ce87aa98c15f3be90bf981650f0ea7b3126
e22a36e8f8722c0109c5cad8843d4024d3bd5206978de1cff858db49e2ba605b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5128
Cache-Control: max-age=108758
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 05:43:40 GMT
Etag: "6391bcda-117"
Expires: Sat, 10 Dec 2022 11:56:18 GMT
Last-Modified: Thu, 08 Dec 2022 10:30:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
getglucotrust.me/images/atc-1.png
67.227.198.234200 OK 7.0 kB URL HTTP/1.1 getglucotrust.me/images/atc-1.png
IP 67.227.198.234:0
File type PNG image data, 358 x 89, 8-bit colormap, non-interlaced\012- data
Hash 68c2993c80c6a81e458afc917e14c1f6
eb3d52430277f6bb00840b92d38410753110c3a7
8391079e9917034c6ed2cbc2d8fea76882b9d537738567db83f3c9b92e96e72d
GET /images/atc-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd29-1b88-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 7048
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/MBG.png
67.227.198.234200 OK 40 kB URL HTTP/1.1 getglucotrust.me/images/MBG.png
IP 67.227.198.234:0
File type PNG image data, 355 x 355, 8-bit colormap, non-interlaced\012- data
Hash 2f19e5d4473c4ec411ac0295d52fb187
6db2475ced9dae0fe46b3428a85307f420d4d396
1e384ca6d3d8d8279995ca77c3e3f8fd13106b0839fdae795e5b5b8b9ae52e2e
GET /images/MBG.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccc2-9bce-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 39886
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/cathy.jpg
67.227.198.234200 OK 21 kB URL HTTP/1.1 getglucotrust.me/images/cathy.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611f787be0fb38aaf88796c096f69463
cd315f8e7c5e02f5b1cd5221c8b87a9de11ec24f
28a5c4b2abc59624c5f703ef966167fe05cc731a0311434ffc7423e23430e876
GET /images/cathy.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdcf-5091-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 20625
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/sharon.jpg
67.227.198.234200 OK 19 kB URL HTTP/1.1 getglucotrust.me/images/sharon.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 011ec7e4c020d8e707b7baf1ffb3f4d4
0a9ff9c94443ebdec6584c1870df8ddd5153d805
f9f5f31a444e4c990d295f31fc01156df60a76bde89c4fd3c9f21911c26b9eb8
GET /images/sharon.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccf2-4a59-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 19033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/carl.png
67.227.198.234200 OK 30 kB URL HTTP/1.1 getglucotrust.me/images/carl.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 29348b4eb2cbe53f2ec87061dfb4dffc
19ad0691005733c296a751e2243e50e1945d7f3c
040f94a96f19b55290f43bbbd3566505b3bdd4b0f92d69093c8129d63683ef90
GET /images/carl.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd25-73f9-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 29689
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/Glucotrust-1-add.png
67.227.198.234200 OK 78 kB URL HTTP/1.1 getglucotrust.me/glucotrust/Glucotrust-1-add.png
IP 67.227.198.234:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d03634d9b904321bac38acb827e33d19
881dc999f975608e2f851608a5411d140d13decd
ddabf7717e29126a45ec7d0c28966dee413aff5ecae502be363765c7c4c003d4
GET /glucotrust/Glucotrust-1-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:09 GMT
ETag: "519c1c-12ead-5ddafa9167d80"
Accept-Ranges: bytes
Content-Length: 77485
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 196 kB URL HTTP/1.1 getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 196 kB (195998 bytes)
Hash 26a130aee3d414211206d19e145b0a7c
ad41d34bf6df6bd41b49803ef4b88293990f307c
e2be3110ec3740f65e3665a7d8c72ea0a819af0ac7f8e9fbb58a93ed251ebaa4
GET /glucotrust/3-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0c-2fd9e-5ddafa8bafbb8"
Accept-Ranges: bytes
Content-Length: 195998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ipapi.co/json/
104.26.8.44200 OK 634 B IP 104.26.8.44:0
File type JSON data\012- , ASCII text
Hash 29e8e6f3242f0926b6e2d2e98ba1b227
b4ecd84567d5476db70bcada4dd98c8f3dad7721
f487bdd14ee81c79db5f662c5734b3c4cdcf18c9233e0b16645c6214b5456fe6
GET /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: application/json
allow: POST, OPTIONS, OPTIONS, GET, HEAD
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://getglucotrust.me
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcpkcOW8e0bcytIp2zm1J51nbSIxJ2udBJ7TPJYPdy4rMnb10OKQFW80UIjRdvVYxySryYOx5ngT7o50OGzkjYdEpVdvMlo0Iludz8YUy7XWtWAc5%2BUylKt7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776b6cadbcdfb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
getglucotrust.me/images/night-reset.png
67.227.198.234200 OK 38 kB URL HTTP/1.1 getglucotrust.me/images/night-reset.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 51a3a329948e7e8898c0a8c41b574317
cfb3ae7f51f06dba1e693051fe87ec4cefd2b5d2
8c4eb614a7e798e4de91e1dc248150210eaa1a61e3460a06da850b666293eef6
GET /images/night-reset.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:28 GMT
ETag: "51cd15-9401-5d3c99b1fe800"
Accept-Ranges: bytes
Content-Length: 37889
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/365-detox.png
67.227.198.234200 OK 28 kB URL HTTP/1.1 getglucotrust.me/images/365-detox.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash cbd38301847e02b324a846f78d52e7e5
3ffd514da6fb3c1ebd3f4ac94f738474f811ccd9
c9a7cb9f404a032a1b118583f67039670b40fd96da7172c8b90861e06664974d
GET /images/365-detox.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:11 GMT
ETag: "51ce23-6d64-5d3c99a1c81c0"
Accept-Ranges: bytes
Content-Length: 28004
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/glucotrust.png
67.227.198.234200 OK 37 kB URL HTTP/1.1 getglucotrust.me/images/glucotrust.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 53cfcb39e348b241bb569be45143b5d8
0abcdb57812052155f1f7eb250d68a1d2500d901
c01480ae798b31763d796108f27fa01687a9a327c48e71709e4e959645af91f2
GET /images/glucotrust.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:21 GMT
ETag: "51ce31-91e9-5d3c99ab51840"
Accept-Ranges: bytes
Content-Length: 37353
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 172 kB URL HTTP/1.1 getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 172 kB (172441 bytes)
Hash a3d16efe395db4a4fa5efb51cc3b7649
f0ea95f994eeb5582f9eab96eb6c74a85a0b269f
b524a3ffe3077d3da64e9a457eac4ea8fe4f86913b5f65d9bcfa27b88271dffc
GET /glucotrust/6-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0e-2a199-5ddafa8bb9fc8"
Accept-Ranges: bytes
Content-Length: 172441
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/gtrust-1.png
67.227.198.234200 OK 91 kB URL HTTP/1.1 getglucotrust.me/images/gtrust-1.png
IP 67.227.198.234:0
File type PNG image data, 300 x 588, 8-bit/color RGBA, non-interlaced\012- data
Hash cf9ec0841bfaabe6f228f3c4146af775
f57be27f37aa6c3425d61b2f788e95b4c1bd040b
1b590ebee0c1adace4f629c87f52fd244159447b65f3881133eb12f54d9bf1d1
GET /images/gtrust-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:40 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd0d-163ec-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 91116
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County
67.227.198.234200 OK 7 B URL HTTP/1.1 lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County
IP 67.227.198.234:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST /social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
getglucotrust.me/images/favicon.png
67.227.198.234200 OK 22 kB URL HTTP/1.1 getglucotrust.me/images/favicon.png
IP 67.227.198.234:0
File type PNG image data, 320 x 246, 8-bit/color RGBA, non-interlaced\012- data
Hash 61b181bb52538ccc14223673337d3749
47bc04f230809896515b3ee4f36200e8a870b239
1fc5cad9875d157c654813ee74ea41ac9cab2678b445dbe9f683d5036536aa19
GET /images/favicon.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=glucotrustsa&subid3=549194354
Cookie: visitor_name=old
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd02-5748-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 22344
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
151.139.128.10200 OK 4.7 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
IP 151.139.128.10:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash abace24d047031da912f090b739571fb
fe031474a108bb50ed558193a30c6a99c7d43306
966f54e46d2c696ba7d416f596d482b46b5e23dcdcbac258d8419a8594dd9ce7
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Tue, 26 Oct 2021 09:57:25 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvTAZ-Ag_h6NkOlMIPygLIKqxs2rtWsa90vZMrb1zvU3JCHp8aw_mP2TB37lOWT9t6wUx68NNj-r_bqQ6tzoZ_UOg
cache-control: public, max-age=31104000
etag: "abace24d047031da912f090b739571fb"
x-goog-generation: 1635242245257388
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=eL7dqQ==, md5=q6ziTQRwMdqRLwkLc5Vx+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds065.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2223
Expires: Fri, 09 Dec 2022 06:20:44 GMT
Date: Fri, 09 Dec 2022 05:43:41 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 159acfa2a8f4daa5dc4267ea8dcfc669
8f1628f5c762896d57d7d8dd9d5f060a0c6b1147
6a4afcf37ebee98e4264649f8f621c7e9834edfb40d33c43e09cb39ccc405376
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 05:43:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 20:30:49 GMT
Expires: Fri, 09 Dec 2022 20:30:49 GMT
ETag: "8f1628f5c762896d57d7d8dd9d5f060a0c6b1147"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 80914
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 28337
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cb7655c8fe89a83f0096c51684aa21c
4946fcab2a99d926c45abaecf8f97b6214dee0cd
60a3066f2dcc2f696413ecec56ef1d0c1a9392f6845fac5c4319b8b9e02074fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6637
x-amzn-requestid: dfcef102-5fc6-4a59-bb21-ff0532c9fdda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlg4GtVIAMFdTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb605-0c2f58da0ae148fb4d698ecc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jQs6m8oGHeWNYbOnPM34f-YW75VuH0yNWU-TzoDMOkYcwGa9BfqBhA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:22 GMT
age: 28339
etag: "4946fcab2a99d926c45abaecf8f97b6214dee0cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7DwFYUoAI9x-ruRySpsSAXQZnxrXxUACrXp568TGZ2JSppZ1UC0uWg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:09:44 GMT
age: 81237
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06799a30d9977b0845f525ae82355d23
6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea
d7a7eeb42d36167243b3dea7147a61119cbb5d1dcc2e2304c6ddd4a62e41efd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4914
x-amzn-requestid: b709d5ff-617b-480b-8fc3-b1408ee358b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsoEkSIAMF0ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7ea-4150ac397b97d1217cece045;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8DqbjuQMX0JOMpduQ1-wy_B1a957NXgsAHrZc1OwUzsmqJRKfkEpoA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:49:06 GMT
age: 28475
etag: "6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46275ec87d8221804dbb99f95b035131
c47af4e5770daad212f4290527b00321285105f8
2118ec68c738683d8f7e11b95239ca92fda2b9b5054aa7b128267eec0d0634c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8803
x-amzn-requestid: e8516be3-5ce9-4f15-b522-c81c1e57a0e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtK9GavoAMFjpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af579-538cc8f300938698004f2241;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiOdXHxd9Vmeji8Yqd8LG_EqYoMGf0YBy6by9bhfjb12y1OxKVvvqw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:56:08 GMT
age: 6453
etag: "c47af4e5770daad212f4290527b00321285105f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354
172.66.43.22200 OK 1.6 kB URL HTTP/2 tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354
IP 172.66.43.22:0
File type ASCII text, with very long lines (698), with CRLF line terminators
Hash a481d32b4f8477ec7ee4a644e0b88976
b7fba58384bfb96dcb4eef13bce80738a3704909
32908da7ba74eb0c69edc1b3a8f9926d0cce4426de1a7133d56939132e4cc92d
GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3Dglucotrustsa%26subid3%3D549194354 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_7223=318; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_7223=10362%7Cglucotrustsa; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=91.90.42.154::getglucotrust.me%2Fdiscovery; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_7223=sessid20221209054318773; expires=Thu, 09-Mar-2023 05:43:40 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6caf6ff1b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
151.139.128.10200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
IP 151.139.128.10:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 4f3d84d2d528408dfe561eb3d1dd7e1e
ee2797b545300bda74178a1d9b23f4644010fa23
9d19d8e0f9ef924887894759458dbbf61baa018fb750e9d5d1b1159cc472df07
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:53 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvcfq_RLZF6kFroZlM1vAXF2-GxE7kieBE1-Wd3ILCkCiyO1VDs4QCaKsdy3uLEgWb5HocHURT0irHseBf6d7bGUA
cache-control: public, max-age=31104000
etag: "4f3d84d2d528408dfe561eb3d1dd7e1e"
x-goog-generation: 1635241733761536
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=bNOOUA==, md5=Tz2E0tUoQI3+Vh6z0d1+Hg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds210.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 147
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3138e963a152296a71dd11dd0c7b0fb5
ede05c96779f2ceeccbb681e929cfb6eff70cd42
28314a7a997f25cb6965956c77c624093aa01468726901c2ef49c2c47a9afb35
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 05:43:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 12:06:18 GMT
Expires: Wed, 14 Dec 2022 12:06:17 GMT
Etag: "ede05c96779f2ceeccbb681e929cfb6eff70cd42"
Cache-Control: max-age=454355,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776b6cb54b130b61-OSL
stats.vidalytics.com/awesome-log?cid=sBLUNzmU
107.178.211.97200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=sBLUNzmU
IP 107.178.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=sBLUNzmU HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "sBLUNzmU/qIEmDlKB8RS1g4QA"
date: Fri, 09 Dec 2022 05:43:41 GMT
x-envoy-upstream-service-time: 12
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
151.139.128.10200 OK 142 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
IP 151.139.128.10:0
Size 142 kB (141872 bytes)
Hash 0efe32a3d51ac33dea20b21e3192ed4c
84cd6e318ce2c38b0f0ed30919c87e14ac0df994
6d8b04775ab140d3e2de28b68aea8e4f8207b959463ea4525121893569fd4d5c
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:41 GMT
content-length: 141872
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdufojzsS6zvdLb5lS8Gha2v5QjronXLUC9C7sDrufbFlu9sK5-2Gl01X3_50NsOgTn0sIN33bkwet3Jd1den13bxw
cache-control: public, max-age=31104000
etag: "0efe32a3d51ac33dea20b21e3192ed4c"
x-goog-generation: 1635241759020672
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141872
x-goog-hash: crc32c=ZicahA==, md5=Dv4yo9Uawz3qILIeMZLtTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564621.cds243.sk1.hn,1670564621.cds215.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
151.139.128.10200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
IP 151.139.128.10:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsBvK-LjbssqnfnAMRXGhIpQjT3bEF1Bvid8I0mL5GGznAFYm4N0JRJctAUJ0IelrNQ1NGqoBR4FM1ttW2XjdGcDhBu_P6E
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
x-goog-generation: 1635241734900204
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds233.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 112
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 409
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 542
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
151.139.128.10200 OK 453 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
IP 151.139.128.10:0
Size 453 kB (452963 bytes)
Hash 503dabff6a8c19e003b8d50a87955024
8fff1767eecbeee2a02b8c7f932e099c683c6e12
2f63c517550b5278c4c29babe84792c12e3ec58c1960829ef3456738e376d916
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 452963
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdv257JbFXzpa0I2TULctqK6pO1iDzCPnoGGSl4lckzt9NyvoqiBf7wf3sFFy4wPC_054LUpWKcH7mL2rKiJQimQcg
cache-control: public, max-age=31104000
etag: "503dabff6a8c19e003b8d50a87955024"
x-goog-generation: 1635241759821716
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 452963
x-goog-hash: crc32c=+f4GVw==, md5=UD2r/2qMGeADuNUKh5VQJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds003.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
151.139.128.10200 OK 501 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
IP 151.139.128.10:0
Size 501 kB (500741 bytes)
Hash 4c9ae4acf4f41c4141a868ef8928c500
4312e0a0ae930f79a93b38ee2a643af87ca1c491
53149be550b49003b97069c9530c655222737f4d78422f22c4b4308c65441ffb
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 500741
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:50:10 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdubEQMy1BlzriZawMFP1NOmI67LylYtLEsUrqfy7e5fJLJMU0FeylWDjTLF5YaGfezwY3sK-2JjiIIDRQhKmPA6nw
x-goog-generation: 1635241810385100
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500741
x-goog-hash: crc32c=G1mmkA==, md5=TJrkrPT0HEFBqGjviSjFAA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "4c9ae4acf4f41c4141a868ef8928c500"
age: 969
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds069.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1844
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:42 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1819
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:42 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1811
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
151.139.128.10200 OK 440 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
IP 151.139.128.10:0
Size 440 kB (440220 bytes)
Hash 2ce7ceeecec22620296b359f23daf34e
4967eeb2847fd5f13006de3f62f00b5d43cdf857
63c11ac2e648ad07644a3e5d99a14bd56455be889b2f98cb8fd6b9200cf404b6
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 440220
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu20pGeRaMLnmKnLiEtF2EbGfPibMjWOitQ8DJ90IalhIkNKRF5bTPtkb0dzSFHN23oSKwLqiokbMV2h6ebzjXFkAJQS7zp
cache-control: public, max-age=31104000
etag: "2ce7ceeecec22620296b359f23daf34e"
x-goog-generation: 1635241757315848
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 440220
x-goog-hash: crc32c=a0DuSw==, md5=LOfO7s7CJiApazWfI9rzTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds227.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm
151.139.128.10200 OK 492 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm
IP 151.139.128.10:0
Size 492 kB (491965 bytes)
Hash f03e4e195ed7d7047c3a3b9c5508edb3
3551a120e35a7c125d675d932ed8d2680195a76e
160bd0cbe90f159603bdc739329bd33539459e4e111faca9c2361f049ce8dd6f
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 491965
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:51 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtHSCSVu_yxEnM3L0vL1-Vl2IVfTqYStr6BD70pqFPTwVI646gCzycrkL0yNu9qrnX9RqWZsJr242bpbVpan1LNlPdBhXfl
cache-control: public, max-age=31104000
etag: "f03e4e195ed7d7047c3a3b9c5508edb3"
x-goog-generation: 1635241791214577
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 491965
x-goog-hash: crc32c=Wk1Ctw==, md5=8D5OGV7X1wR8OjucVQjtsw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds258.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm
151.139.128.10200 OK 447 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm
IP 151.139.128.10:0
Size 447 kB (447138 bytes)
Hash a9a33f9aa83b707543d950a95bcaf51a
59666d5532557034819d2298807261c2b7cd95c7
023b5b607c059d919776ff493343b225450fa56b15da92ca340bec031c4601a9
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 447138
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:47 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsOBtNuOZREpFSwk4DNxNIZS_T_oo7Kvj2DuTkBoLG9ftCdWWUHDHjkwZ42HjlLK8zUV7aIN4EsUrVauSSBpV3tt_DU8lvc
cache-control: public, max-age=31104000
etag: "a9a33f9aa83b707543d950a95bcaf51a"
x-goog-generation: 1635241787837593
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 447138
x-goog-hash: crc32c=rySNnA==, md5=qaM/mqg7cHVD2VCpW8r1Gg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds238.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm
151.139.128.10200 OK 484 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm
IP 151.139.128.10:0
Size 484 kB (484518 bytes)
Hash c641d46daea5a95512488256e12f34fb
f43348e46e1f94c665b8ba9aa6d6c5e66da608e9
0ebe7539a9def9eda564a1a392f08b0146a81fdf809974abaa3622e660875739
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 484518
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduNVDhaKp_LavCc6-uCndz2E4FxfzC3ODWztyUjjF8SvN6SlAhV0UMiILLImkv_vTEv9e-ba4Bc2gRc3pHhbvaZkoxEv2Wz
cache-control: public, max-age=31104000
etag: "c641d46daea5a95512488256e12f34fb"
x-goog-generation: 1635241757168366
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 484518
x-goog-hash: crc32c=9K0fMA==, md5=xkHUba6lqVUSSIJW4S80+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds219.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm
151.139.128.10200 OK 499 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm
IP 151.139.128.10:0
Size 499 kB (499123 bytes)
Hash 5b8eaabe4bdddebb428e5b1e959662b1
c07b14b836318ac88f718caffeb613871ee4fa50
abcea0e7876d37212369a56b1e81aa9ae77a8e04733015b76b2594fecb49213f
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 499123
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsI9quK2UM8ZHKRT6laDkMkBlSIYuTZVWdRMvR8k5UQDZPd57aAJB15zTRx_V6w6i8cJ01N9f0qyWHglZwIYQt00HGio_Og
cache-control: public, max-age=31104000
etag: "5b8eaabe4bdddebb428e5b1e959662b1"
x-goog-generation: 1635241756875923
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 499123
x-goog-hash: crc32c=42Xo/w==, md5=W46qvkvd3rtCjlselZZisQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds251.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm
151.139.128.10200 OK 477 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm
IP 151.139.128.10:0
Size 477 kB (477148 bytes)
Hash 6644e390056c19c58731ea84f51c6919
a52cc3ab11508ce3e1a38a499d3e1a13fc8fd4f2
b163bdf3b287321d3737c41ae3de8d3bfd59a7f18d0e3b5fdcf09772a78dafb6
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 477148
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvftNxU5CwlQ8IjrMY2Qf0vopC3nFTpIV_vb5EjjH7KF0wdV7P3_jTrZzGk3vEvWzT55IFbcqp5g_j8qSpVbwPy_g
cache-control: public, max-age=31104000
etag: "6644e390056c19c58731ea84f51c6919"
x-goog-generation: 1635241756513450
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 477148
x-goog-hash: crc32c=kDyJLw==, md5=ZkTjkAVsGcWHMeqE9RxpGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds229.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm
151.139.128.10200 OK 505 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm
IP 151.139.128.10:0
Size 505 kB (505398 bytes)
Hash fd066e69f546add1b29a973ea01db226
deaf496cba053030e8b4479124c311c0007b0c0e
975ea0d61146206d06070095f654a44df4dd167d19027cefd0db421893f22ffe
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 505398
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:52 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdveJ5yM_wkribpGbdmSqLvo6ZGV8BM74we_RsYCoGQBsomxSqgEj-WVRViiGKlzZ7MRfO1dULaj_7_HK_IE6M6LeEN3RJQa
cache-control: public, max-age=31104000
etag: "fd066e69f546add1b29a973ea01db226"
x-goog-generation: 1635241792725950
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 505398
x-goog-hash: crc32c=izeeMA==, md5=/QZuafVGrdGympc+oB2yJg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds205.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm
151.139.128.10200 OK 498 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm
IP 151.139.128.10:0
Size 498 kB (498012 bytes)
Hash 4e718dd7f246267c7f280f45f767237b
c2637e81b13e33b9f7b493df0962d070b8ca657b
93a8425afbb2a7d9792906b37950fafa97db9e541663dac96cdd7680fa3ee967
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:42 GMT
content-length: 498012
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduliFEabMKEGqAB-PWLtkQR3W8ysRbXeBfs4hVrUtde05_RsnX1w1MUVFuKz6cId5UMWfLLN8fqf6FtzdMDrLDF_Q
cache-control: public, max-age=31104000
etag: "4e718dd7f246267c7f280f45f767237b"
x-goog-generation: 1635241797140802
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 498012
x-goog-hash: crc32c=oRtITg==, md5=TnGN1/JGJnx/KA9F92cjew==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564622.cds243.sk1.hn,1670564622.cds228.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 159acfa2a8f4daa5dc4267ea8dcfc669
8f1628f5c762896d57d7d8dd9d5f060a0c6b1147
6a4afcf37ebee98e4264649f8f621c7e9834edfb40d33c43e09cb39ccc405376
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 05:43:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 20:30:49 GMT
Expires: Fri, 09 Dec 2022 20:30:49 GMT
ETag: "8f1628f5c762896d57d7d8dd9d5f060a0c6b1147"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1835
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1918
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm
151.139.128.10200 OK 502 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm
IP 151.139.128.10:0
Size 502 kB (501925 bytes)
Hash 318cc5f1cf29a1f69296f42bdc210d51
ae18a24bf2da96053a36ddaade81e5d0d949110f
223e81e6a1649a1e3534ff48615c4e12c7bfb060b9f17653e98a4da4c3e3a328
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:46 GMT
content-length: 501925
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdslwPzMzZWrPCfoDhsvBTkDqowAY5v-dlJvJYxi2c4yrKU_qSYMuu7YmwfjPQ7dZ19rz65RLH2fc9MenzUgPPsrZ4y6Vmsl
cache-control: public, max-age=31104000
etag: "318cc5f1cf29a1f69296f42bdc210d51"
x-goog-generation: 1635241794182465
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 501925
x-goog-hash: crc32c=ucE85A==, md5=MYzF8c8pofaSlvQr3CENUQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1670564626.cds243.sk1.hn,1670564626.cds216.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 186
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 09 Dec 2022 05:43:46 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1870
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:47 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1828
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 09 Dec 2022 05:43:47 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb
151.139.128.10200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb
IP 151.139.128.10:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:24 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsPvRWbRTHiLhG-PM5Hit04y8KgoicQgjl76QgvsSwghGLQLVK8anBwdGcoYwviu4Nq6rM_JqlUEgiJAt3yWzjfhMav-nPS
cache-control: public, max-age=300, s-maxage=2592000
etag: "e36f599ac6dd2e8516f4a98b2d8874c0"
x-goog-generation: 1665138924190301
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502517
x-goog-hash: crc32c=mVBADg==, md5=429ZmsbdLoUW9KmLLYh0wA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn: 4
content-encoding: gzip
x-hw: 1670564620.cds243.sk1.hn,1670564620.cds243.sk1.hc,1670564620.cds261.sk1.c,1670564620.cds243.sk1.sl
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
IP 142.250.74.106:0
GET /css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 05:43:39 GMT
date: Fri, 09 Dec 2022 05:43:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:900
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:900
IP 142.250.74.106:0
GET /css?family=Roboto:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 05:43:39 GMT
date: Fri, 09 Dec 2022 05:43:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
172.66.40.141200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
IP 172.66.40.141:0
GET /v1/disclaimer?id=disclaimer&account_id=XXXX HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6cac8ff8fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
151.139.128.10200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
IP 151.139.128.10:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:23 GMT
x-guploader-uploadid: ADPycduF1qH786oO2hX8KMcnqFixufudrmdpH5Cu1-M5K1ucPjokV8lyOlsz4QUcWMHZZAAEwbQRHDznys30rZtpXNtXohjDp4W8
expires: Fri, 09 Dec 2022 05:43:40 GMT
etag: "99062c422517a5fbec4ec008f470f173"
x-goog-generation: 1665138923750112
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=U9EGPA==, md5=mQYsQiUXpfvsTsAI9HDxcw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1670564620.cds204.sk1.hn,1670564620.cds204.sk1.hc,1670564620.cds210.sk1.sc,1670564620.cds210.sk1.p,1670564620.cds204.sk1.sl
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=
172.66.43.22200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=
IP 172.66.43.22:0
GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2= HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 05:43:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776b6cad6e8bb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2