r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7289
Expires: Sat, 25 Mar 2023 13:58:43 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9079
Expires: Sat, 25 Mar 2023 14:28:33 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 11:27:44 GMT
content-type: application/json
age: 1770
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3563
Expires: Sat, 25 Mar 2023 12:56:37 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eBJIHPYLcgMQYo8BsXUekRJC1Rjnq0n60t0qlXlkuDd3T3K3fh700/5KP2CWl1Cry2bqkKFU3ec=
x-amz-request-id: 81KJCEGQXJ9WBF9G
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 11:00:45 GMT
age: 3389
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
medtco.com/
91.216.107.205200 OK 5.0 kB IP 91.216.107.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (422), with CRLF, CR, LF line terminators
Hash 3a0b0494ec9270213a691d1d0c143a8f
e52b0cd2222fb2ca092a39a038ba6fee595d0a27
074afcb0c09522e6d7bdc2de97fdeb895b0553d928648596a4398302f6d55346
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5040
Connection: keep-alive
X-Powered-By: PHP/5.3.29
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-cache
Pragma: no-cache
Set-Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5; path=/
Vary: Host,Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 11:57:14 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
172.217.21.170200 OK 327 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lato
IP 172.217.21.170:0
Hash 40e7a3163187a0d443589571b573647e
787c6f7a243202e0abab2670c0c87002d68eab62
5a1544436dcb3d3942a4a21a71d738ae75516c037f4e21b579713796ee5ea447
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 25 Mar 2023 11:57:14 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Arial,%20Helvetica,%20sans-serif
172.217.21.170400 Bad Request 775 B URL HTTP/1.1 fonts.googleapis.com/css?family=Arial,%20Helvetica,%20sans-serif
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (509)
Hash de8af5752dc1218f8cf06a5c25c8c566
1d678f29dfe710bc87b10dbc42db05306208b4ac
f3fac60facef785e42817deff3e81ac3639ddcfd290f83d2e7a77c7868632364
GET /css?family=Arial,%20Helvetica,%20sans-serif HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif
172.217.21.170400 Bad Request 793 B URL HTTP/1.1 fonts.googleapis.com/css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (529)
Hash 77b469bb4fd009c4bc5b431de4bb1bb8
27992b2adfdbcb9c302d45e5feca1e88259a9137
2f8c1107c92b12f5bdae126e4bc5391da8798f2a77d5d4e6b5d0920f9d28f432
GET /css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
medtco.com/modules/mod_AutsonSlideShow/css/skitter.css
91.216.107.205200 OK 1.2 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/css/skitter.css
IP 91.216.107.205:0
File type ASCII text, with very long lines (417), with CRLF line terminators
Hash 9956a24c0ca10353fe3b0fc75ba7e743
f2548a78c02403784cef49fd0f4b3cb2a274b4ef
e09456c83f1dc47b62e86cea0881f84d3992b3a12d2c29bd2cafbf48c888dd27
GET /modules/mod_AutsonSlideShow/css/skitter.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 1234
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "14d2-4ceb394dfb7c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/media/system/js/caption.js
91.216.107.205200 OK 403 B URL HTTP/1.1 medtco.com/media/system/js/caption.js
IP 91.216.107.205:0
File type ASCII text, with very long lines (504)
Hash 2645223569a18f7c0fd1ed2873c976cd
68ed1bffdd4424e84308c9f51ce5fbf121bdd719
08b16a4f25cc2ba1eab88daf16619d36ea89707e6d46e9faba77aa6d3f93f6ae
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/caption.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 403
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "2d9-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/system/css/system.css
91.216.107.205200 OK 422 B URL HTTP/1.1 medtco.com/templates/system/css/system.css
IP 91.216.107.205:0
Hash 018022c98b3871a8d0ec307e6380e805
d67838a86b729006c80db2ecddf9f0f44d291ce4
ab30c320c2805406882f19b7439000a75c465fecd1fbb3a10410adb98403d764
GET /templates/system/css/system.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 422
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "380-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/media/system/js/core.js
91.216.107.205200 OK 1.7 kB URL HTTP/1.1 medtco.com/media/system/js/core.js
IP 91.216.107.205:0
File type ASCII text, with very long lines (513)
Hash 25be7ea578169b8e7639af55f7e0dd42
39eb44407756da692c31448427fd8906a6bf346c
a41f0b35cc370ba2ec66e8a15fdbf8fa4e330a1a37711d562b767154a2223832
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/core.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 1713
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "12b0-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/media/system/js/mootools-core.js
91.216.107.205200 OK 31 kB URL HTTP/1.1 medtco.com/media/system/js/mootools-core.js
IP 91.216.107.205:0
File type ASCII text, with very long lines (886)
Hash d6a7b855d3f12d8ff7bf08da13184032
222ea16e437b5b7e309749235f8a488c603c827e
48e010127a9e7ec20ff16c907965bb28582c32ecbc8264d8fb496149ff9626c6
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/mootools-core.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 31097
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "1786a-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/typo.css
91.216.107.205200 OK 1.5 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/typo.css
IP 91.216.107.205:0
Hash 0c17137f41f95cab4bd8bc67381dedef
19b35ca122306a7c8b8e1608158179459cd1a25b
57a951fff74b8c520418fa7363af0c676f38b8ce31c427dfe504634a367d9888
GET /templates/j51_oxygen/css/typo.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 1522
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "1a9f-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/reset.css
91.216.107.205200 OK 1.0 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/reset.css
IP 91.216.107.205:0
Hash a837fcd515d061616704d1620a0c62d5
5c6310a84ae60c723ecb9980e3384821821de954
a12a04f8041e93cc54484c2860dabec8f08ec7992922a69bbcf34b2848b41f41
GET /templates/j51_oxygen/css/reset.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 1027
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "7c3-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/media/system/js/mootools-more.js
91.216.107.205200 OK 68 kB URL HTTP/1.1 medtco.com/media/system/js/mootools-more.js
IP 91.216.107.205:0
File type Unicode text, UTF-8 text, with very long lines (2903)
Hash 422e07fff8f5493732a2478326093863
790a42a8ad097ba51d840c11f0b8bf0f2ed90d2e
b62f20d801c9cd10339382de1e308646f999e0b4e990649db5a84da555016781
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/mootools-more.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "3a2fb-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/template.css
91.216.107.205200 OK 2.4 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/template.css
IP 91.216.107.205:0
File type ASCII text, with CRLF line terminators
Hash 6f5a413c4ecb0dfd59afaf6c66f642ef
e5fe254f652c194d1eaf1f03f0b8d51574783d98
5f5e7dd755747e59bcb94358edaf7490059dfdb885401034e98cc61809e67d6e
GET /templates/j51_oxygen/css/template.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 2376
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "20dc-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/style1.css
91.216.107.205200 OK 92 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/style1.css
IP 91.216.107.205:0
File type ASCII text, with no line terminators
Hash bf68685f5aa300beb3064bb961905246
29aee385ae7a70aa402ecf49ce083792521a73cf
6c0a36c3fd1345e0cc87db6acf368622b3edf5cdb6b032c6cfdfe3d9ed97d7c3
GET /templates/j51_oxygen/css/style1.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 92
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "48-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/js/dropdown.js
91.216.107.205200 OK 6.2 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/js/dropdown.js
IP 91.216.107.205:0
File type ASCII text, with CRLF line terminators
Hash 80fd73c8ad5ec924123ba2460c5c5b41
8026d24f8694a3e134cd04748f00f78c9c8ccbd9
0b5971e5868afccb639d52e0be897a1fd7ab2d7997a6b8ae0f8c8e30ebbd060b
Analyzer Verdict Alert fortinet Malware
GET /templates/j51_oxygen/js/dropdown.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 6234
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "c86d-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/js/equalizer.js
91.216.107.205200 OK 438 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/js/equalizer.js
IP 91.216.107.205:0
File type ASCII text, with CRLF line terminators
Hash 2826eaa19c86572619b73a93a8a6e1d2
eb3069055473878931b28f22ca07ed392c5b394d
f77320ca63f765613bcf5787c67e8d2fb58c3453fed711a4414490e6e8097ba8
Analyzer Verdict Alert fortinet Malware
GET /templates/j51_oxygen/js/equalizer.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 438
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "313-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/modules/mod_AutsonSlideShow/js/jquery.easing.1.3.js
91.216.107.205200 OK 2.0 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/js/jquery.easing.1.3.js
IP 91.216.107.205:0
Hash a6759141afcbcf0a161171becbdb51f3
77e91d639ecf18d8bb76e4f40e3d53fe2b11f787
3299718703ddc77d79ca733312395b64bf49932ea9687cf40f48c88af1d78bf8
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_AutsonSlideShow/js/jquery.easing.1.3.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 1986
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "1fa1-4ceb394dfb7c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 11:17:24 GMT
age: 2390
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arial,%20Helvetica,%20sans-serif
172.217.21.170400 Bad Request 775 B URL HTTP/1.1 fonts.googleapis.com/css?family=Arial,%20Helvetica,%20sans-serif
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (509)
Hash de8af5752dc1218f8cf06a5c25c8c566
1d678f29dfe710bc87b10dbc42db05306208b4ac
f3fac60facef785e42817deff3e81ac3639ddcfd290f83d2e7a77c7868632364
GET /css?family=Arial,%20Helvetica,%20sans-serif HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif
172.217.21.170400 Bad Request 793 B URL HTTP/1.1 fonts.googleapis.com/css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (529)
Hash 77b469bb4fd009c4bc5b431de4bb1bb8
27992b2adfdbcb9c302d45e5feca1e88259a9137
2f8c1107c92b12f5bdae126e4bc5391da8798f2a77d5d4e6b5d0920f9d28f432
GET /css?family=Palatino%20Linotype,%20Book%20Antiqua,%20Palatino,%20serif HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 25 Mar 2023 11:57:14 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
medtco.com/modules/mod_AutsonSlideShow/js/jquery.skitter.min.js
91.216.107.205200 OK 8.1 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/js/jquery.skitter.min.js
IP 91.216.107.205:0
File type HTML document, ASCII text, with very long lines (49837)
Hash 6c6c64752682c8721b0252cb26d6683f
b4b5929005a9ce10f616c75a5b6b6ba98317b368
ac70cfffa73beacbaffc0ea208defdeff3d36a46a2c0ec7a9d9cf77eb0b5263a
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_AutsonSlideShow/js/jquery.skitter.min.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 8075
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "c442-4ceb394dfb7c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/nexus.css
91.216.107.205200 OK 2.6 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/nexus.css
IP 91.216.107.205:0
Hash 97c7307e58bdc34b566b6e53e80d3774
88c75b483a6eb15f99f31c6de6001860bc066f28
56d20a5a463ef1d5d9bcb40aae5350c5e5c4f77f2cb47740109e4be98609b5e6
GET /templates/j51_oxygen/css/nexus.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 2591
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "2295-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/modules/mod_AutsonSlideShow/js/jquery.animate-colors-min.js
91.216.107.205200 OK 782 B URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/js/jquery.animate-colors-min.js
IP 91.216.107.205:0
File type ASCII text, with very long lines (532)
Hash 925ddbc22f3da37e956321242d811af8
2dc2061388e2e9f87a9b421755ff1c2b2baaf6fb
cfcd45354685917ec0307af8e39196cf7588d32f5547b2452b507163631c3fb8
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_AutsonSlideShow/js/jquery.animate-colors-min.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 782
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "6c8-4ceb394dfb7c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/modules/mod_AutsonSlideShow/js/jquery-1.5.2.min.js
91.216.107.205200 OK 30 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/js/jquery-1.5.2.min.js
IP 91.216.107.205:0
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash 40e7101aa21ab2ae6b39f452151a9c52
070224dff0348d2cc2e90d3510b575f9e50c27e2
d08ab30ca5170c4eed3dbc1453bcf68640ee1839d4a07bb609c14ab86f5bb188
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_AutsonSlideShow/js/jquery-1.5.2.min.js HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: application/javascript
Content-Length: 29910
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "14fa5-4ceb394dfb7c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/media/system/css/system.css
91.216.107.205200 OK 549 B URL HTTP/1.1 medtco.com/media/system/css/system.css
IP 91.216.107.205:0
Hash b1ca2f99857b6b5e874583d6e3a03256
84767212bd40b7617d88af8d7ec1351c361a08e2
9e6cb98c01f0a7b44baa31ee3db80c99030d0b8e44dba9436ef5f812621351e4
GET /media/system/css/system.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/system/css/system.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 549
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Thu, 13 Sep 2012 06:09:02 GMT
ETag: "5a6-4c98f24d09b80-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/jstuff.css
91.216.107.205200 OK 3.7 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/jstuff.css
IP 91.216.107.205:0
File type ASCII text, with very long lines (343)
Hash 1b28c4560788d1f93adca69a08c25b38
3ee96eabc09a87987d8060788486d2d078826c9a
f3e6aa115c3708ea2e6db9575bb53b8e781165f8dc148596fe2b9e038910cfec
GET /templates/j51_oxygen/css/jstuff.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/template.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:14 GMT
Content-Type: text/css
Content-Length: 3690
Connection: keep-alive
Vary: Host,Accept-Encoding
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "335e-4ceb39380c400-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
medtco.com/templates/j51_oxygen/css/menus.css
91.216.107.205404 Not Found 838 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/css/menus.css
IP 91.216.107.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 6e7fd7ecc143c32e5fd2207eda36bcc7
b83b8cf614e9d42c3997bddfd8bf9602fe91c3ef
587d8005078af42569f0d0855484c78272c065cc0e7b978de7924dab9e2e9058
GET /templates/j51_oxygen/css/menus.css HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/template.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host
Content-Encoding: gzip
medtco.com/images/reneve.jpg
91.216.107.205200 OK 24 kB URL HTTP/1.1 medtco.com/images/reneve.jpg
IP 91.216.107.205:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2013:02:25 15:21:16], baseline, precision 8, 200x200, components 3\012- data
Hash 5d1c1b70d29b50a53764a3f056a50fe5
1e22245424cf42871fe10a69a24652152f6b4edb
f54eed6dd2c379f4317a4ccff3f0feb3063952fc010ab39643108104cfd038d7
GET /images/reneve.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 24051
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 14:24:56 GMT
ETag: "5df3-4d68d4e1b7e00"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19110
Expires: Sat, 25 Mar 2023 17:15:45 GMT
Date: Sat, 25 Mar 2023 11:57:15 GMT
Connection: keep-alive
www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
142.250.74.142301 Moved Permanently 0 B URL HTTP/1.1 www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/RL-XGZx8GvU?wmode=transparent HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 25 Mar 2023 11:57:15 GMT
Location: https://www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/1.1 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://medtco.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 24 Mar 2023 10:27:16 GMT
Expires: Sat, 23 Mar 2024 10:27:16 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 26 Apr 2022 15:48:56 GMT
Content-Type: font/woff2
Age: 91799
medtco.com/modules/mod_AutsonSlideShow/images/002.jpg
91.216.107.205200 OK 72 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/002.jpg
IP 91.216.107.205:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 940x300, components 3\012- data
Hash a72c8d89b29797e26d3beb53a3dd6bff
83cfd2f6050488381526f7d11d75bc539a68f48e
57ca4c04cc1f120fa9c898aba473d332b34bb16b4319a861e3e2595add5628ab
GET /modules/mod_AutsonSlideShow/images/002.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 72158
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:41:04 GMT
ETag: "119de-4d68cb13a5c00"
Accept-Ranges: bytes
medtco.com/templates/j51_oxygen/images/bg.jpg
91.216.107.205200 OK 860 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/bg.jpg
IP 91.216.107.205:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1960x12, components 3\012- data
Hash 45896cf7734d35d67c5f7210b196c6fe
8afb9d866bbc9283023e28d8d3399de8f51fe4e6
36a94284d76c189d6f6906c71f3bae59923a63130218c19d49cba0e2df33c73c
GET /templates/j51_oxygen/images/bg.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/nexus.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 860
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "35c-4ceb39380c400"
Accept-Ranges: bytes
medtco.com/images/Figura1.jpg
91.216.107.205200 OK 37 kB URL HTTP/1.1 medtco.com/images/Figura1.jpg
IP 91.216.107.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 200x201, components 3\012- data
Hash 1cfca0b6ab31a5f72d962fed98b85a5f
dc7c09181f2fa061f3374d22f7d2117884a0f9dc
a1055d956a18fe8415c1e2e50e6c60747b40dedb7eaf99cad84b4d140093af20
GET /images/Figura1.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 37359
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 14:16:46 GMT
ETag: "91ef-4d68d30e6af80"
Accept-Ranges: bytes
medtco.com/modules/mod_AutsonSlideShow/images/003.jpg
91.216.107.205200 OK 72 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/003.jpg
IP 91.216.107.205:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 940x300, components 3\012- data
Hash 831e8adbc9ad5d881c4a977b20002f28
1e8bf1f24b564aff103c580a7d2d9339f8123c53
0b1324e6c583f485d7f2384fc5e47b63a7514512b091d7bd5215b30731dc0928
GET /modules/mod_AutsonSlideShow/images/003.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 72002
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:41:05 GMT
ETag: "11942-4d68cb1499e40"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
medtco.com/templates/j51_oxygen/images/hornav.png
91.216.107.205200 OK 1.5 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/hornav.png
IP 91.216.107.205:0
File type PNG image data, 958 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 396545bd5d34fed8a50282636799c786
176702ae31e72fd38099abfddb972a783b4c9be5
7edec558914222bd0eedc8412c1b88f3ce6fc12fc8d6ce9de05aef5b94d95b31
GET /templates/j51_oxygen/images/hornav.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/nexus.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 1455
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "5af-4ceb39380c400"
Accept-Ranges: bytes
medtco.com/templates/j51_oxygen/images/style1/header.jpg
91.216.107.205200 OK 56 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/style1/header.jpg
IP 91.216.107.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1960x684, components 3\012- data
Hash 70ea8b804ed6f4c3bcdd6cef483c1296
57177f425d47e8463b60dc2be529c19f2d80f93d
69184bb06676ee0277691ca95e1a51e777b6f5db1de7b675a88ee6ef04094280
GET /templates/j51_oxygen/images/style1/header.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/style1.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 56339
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:57:09 GMT
ETag: "dc13-4ceb3c6588340"
Accept-Ranges: bytes
medtco.com/templates/j51_oxygen/images/searchBox.png
91.216.107.205200 OK 994 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/searchBox.png
IP 91.216.107.205:0
File type PNG image data, 200 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash bf138c153d50ec53fcb29f8ca9e5785a
9458f04cc52adb3d411ef8e90df0280ae0a40961
5e99da648f09d84f9a6aa8b882d26859df86ed4ebaf5c220c5b4a8cefe56c7d9
GET /templates/j51_oxygen/images/searchBox.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/template.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 994
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "3e2-4ceb39380c400"
Accept-Ranges: bytes
medtco.com/templates/j51_oxygen/images/sm_icons.png
91.216.107.205200 OK 11 kB URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/sm_icons.png
IP 91.216.107.205:0
File type PNG image data, 235 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4abcc223f03402fc868820a8249110
f71d225785ee2f8d2b3cede2588c1535ea38b18f
7819db0cdf5e3863c07d085278f3ff9dca3559834ade0104a048e6a93e905d84
GET /templates/j51_oxygen/images/sm_icons.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/template.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 10850
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "2a62-4ceb39380c400"
Accept-Ranges: bytes
medtco.com/images/logo.png
91.216.107.205200 OK 20 kB URL HTTP/1.1 medtco.com/images/logo.png
IP 91.216.107.205:0
File type PNG image data, 958 x 135, 8-bit/color RGBA, non-interlaced\012- data
Hash 90ace4efefe3f40abd03632f28c8edcd
e79935ed7992c31897fefc321a0bdd794ed3d270
630c2d43c2fcb704e52df198921da9059b49511619fd3aa97a0dbef02c8fc484
GET /images/logo.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 20398
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 17:11:32 GMT
ETag: "4fae-4ceb3f9c8d900"
Accept-Ranges: bytes
www.youtube.com/s/player/ace4d669/www-player.css
142.250.74.142200 OK 52 kB URL HTTP/2 www.youtube.com/s/player/ace4d669/www-player.css
IP 142.250.74.142:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7c25eccc08c604818f2ad949bbd64d03
f798ffc2e47c6c816b6407df3be703e26daeb167
4065467e0796055cdb19ba98e01666d967e99df14316fe190edc613c9f2bae71
GET /s/player/ace4d669/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 51763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 16:00:41 GMT
expires: Thu, 21 Mar 2024 16:00:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Mar 2023 00:22:24 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 244594
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/ace4d669/www-embed-player.vflset/www-embed-player.js
142.250.74.142200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/ace4d669/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (679)
Size 110 kB (110254 bytes)
Hash 8fddc97d131bf74e054fe861dd45b637
3f7d1c5e6d69c89847cfce5bee89fce548e86290
16f04e220c0e897266f178aa92486e6b3d53e6b76bcd11f820d71b564340f702
GET /s/player/ace4d669/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 110254
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 16:00:41 GMT
expires: Thu, 21 Mar 2024 16:00:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Mar 2023 00:22:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 244594
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
medtco.com/templates/j51_oxygen/images/base_bg.png
91.216.107.205200 OK 645 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/base_bg.png
IP 91.216.107.205:0
File type PNG image data, 958 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash de218e6e706e52a4986abcf529951bca
cd6b9bebeabddb8d52bb945a13b22933331c9479
bef05ab42f00d28b27cca70279625819cd1d7ec6393712a01b3f981b62ec1ce6
GET /templates/j51_oxygen/images/base_bg.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/nexus.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 645
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "285-4ceb39380c400"
Accept-Ranges: bytes
medtco.com/templates/j51_oxygen/images/content_bg.png
91.216.107.205200 OK 284 B URL HTTP/1.1 medtco.com/templates/j51_oxygen/images/content_bg.png
IP 91.216.107.205:0
File type PNG image data, 958 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 177365a0582076191ff52e79092e5181
185d9ada0c2ca46d100e142e3f0940ef15330e01
65d8a1313d0cd0b6d5509d7cb0768dd6cef6a2862f66bd86c87cc032d1e44e3d
GET /templates/j51_oxygen/images/content_bg.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/templates/j51_oxygen/css/nexus.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 284
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:42:56 GMT
ETag: "11c-4ceb39380c400"
Accept-Ranges: bytes
www.youtube.com/s/player/ace4d669/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.142200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/ace4d669/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.142:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/ace4d669/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 16:00:41 GMT
expires: Thu, 21 Mar 2024 16:00:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Mar 2023 00:22:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 244594
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
medtco.com/modules/mod_AutsonSlideShow/images/next.png
91.216.107.205200 OK 1.3 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/next.png
IP 91.216.107.205:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 3227c76c697cda18131320bf20ca6aaf
bbeadd37fe846cff69f4dcafc22b0f2003b40176
f7cd0f75137e1aa38af904fedcd6691499d8a08d8675b672a3f36b747bd54900
GET /modules/mod_AutsonSlideShow/images/next.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/modules/mod_AutsonSlideShow/css/skitter.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 1312
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "520-4ceb394dfb7c0"
Accept-Ranges: bytes
medtco.com/modules/mod_AutsonSlideShow/images/prev.png
91.216.107.205200 OK 1.3 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/prev.png
IP 91.216.107.205:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c0fc886e20e285e57f67708f8d3aaa6
8166ffa3056a763d7061aa0ef76581d2e171a09d
a6957d56f4c0dedde8e90c15a70250e6e654c9d6d1f5ebc2304354bb7b72f9fe
GET /modules/mod_AutsonSlideShow/images/prev.png HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/modules/mod_AutsonSlideShow/css/skitter.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/png
Content-Length: 1334
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "536-4ceb394dfb7c0"
Accept-Ranges: bytes
www.youtube.com/s/player/ace4d669/player_ias.vflset/en_US/base.js
142.250.74.142200 OK 626 kB URL HTTP/2 www.youtube.com/s/player/ace4d669/player_ias.vflset/en_US/base.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (555)
Size 626 kB (625756 bytes)
Hash b184139ce34469a5ec45b250b44646d6
de45e59516e6170cd38f4e3b386f30e7ebdc14ef
ac738b8f617b74220e663f7a6d4715b00ed3fc49ce181c790ddc56a128896622
GET /s/player/ace4d669/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 625756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 16:03:22 GMT
expires: Thu, 21 Mar 2024 16:03:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Mar 2023 00:22:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 244433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.232.81.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.232.81.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j+aOui+Jjl6VD8Jk7gdA2A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xapuAuNhNmg045uV9GMCXXX4qds=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:44 GMT
expires: Sat, 23 Mar 2024 10:26:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 91831
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 91830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
medtco.com/modules/mod_AutsonSlideShow/images/ajax-loader.gif
91.216.107.205200 OK 3.2 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/ajax-loader.gif
IP 91.216.107.205:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 37e24e0370847870c1c43ea9ce19b1f4
50c31586046171e65d3376c5ad2f07dcb566de69
babed8ddf22ed2e66590a4f75773661304242a4f4167d52e165652fee492933e
GET /modules/mod_AutsonSlideShow/images/ajax-loader.gif HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/modules/mod_AutsonSlideShow/css/skitter.css
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/gif
Content-Length: 3208
Connection: keep-alive
Vary: Host
Last-Modified: Sat, 17 Nov 2012 16:43:19 GMT
ETag: "c88-4ceb394dfb7c0"
Accept-Ranges: bytes
medtco.com/images/banners/bannerme.jpg
91.216.107.205200 OK 52 kB URL HTTP/1.1 medtco.com/images/banners/bannerme.jpg
IP 91.216.107.205:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2013:02:25 14:52:16], baseline, precision 8, 880x200, components 3\012- data
Hash 46cf899f06fcc1747612da8f26acdfe7
de9a5201078f1eaac329870eddf8b2ff7d9047eb
a4dcda1fe01b2e28a14bc50320d4a4f52ff635cedd143fe1e50bdbaa0e579b64
GET /images/banners/bannerme.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 52262
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:53:34 GMT
ETag: "cc26-4d68cddee7380"
Accept-Ranges: bytes
medtco.com/modules/mod_AutsonSlideShow/images/004.jpg
91.216.107.205200 OK 180 kB URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/004.jpg
IP 91.216.107.205:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2013:02:25 14:34:58], baseline, precision 8, 940x300, components 3\012- data
Size 180 kB (179578 bytes)
Hash da544b8a4ca6fd198677993625b5bb9a
86dbc5a02f8551c8d40ed4ee1ec399677c76a14b
8f581512f79e5e788275fb9f9f4b96b4f24abac404f98625b5d3e62b71f89085
GET /modules/mod_AutsonSlideShow/images/004.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 179578
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:41:07 GMT
ETag: "2bd7a-4d68cb16822c0"
Accept-Ranges: bytes
medtco.com/favicon.ico
91.216.107.205200 OK 198 B IP 91.216.107.205:0
File type MS Windows icon resource - 1 icon, 16x16, 2 colors\012- data
Hash ca2bb9889f5870b0b31006f9f09a23df
5932e6a0e4fcf1b7ecc28452494f73d4ae82acd3
17bf068c76eb2d552b4eea51a7f9c02d251c4a9c3b30c6a9aa322cc8eea70529
GET /favicon.ico HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 198
Connection: keep-alive
Vary: Host
Last-Modified: Sun, 18 Nov 2012 03:32:05 GMT
ETag: "c6-4cebca50b5740"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.38200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.38:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 11:50:11 GMT
expires: Sat, 25 Mar 2023 12:05:11 GMT
cache-control: public, max-age=900
age: 425
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 25 Mar 2023 11:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 25 Mar 2023 11:57:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b9c3bf60b9d2594b77c96ed99e1fe473
85e4f6db21668c300eaa7905b04ebb00efdb22b7
90216385657c15cfcc2f3fb22ebd7fe78306579a7dd250d78a26aaf9523d6f15
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 25 Mar 2023 11:57:16 GMT
server: ESF
cache-control: private
content-length: 30723
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 11:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 25 Mar 2023 11:57:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99bfca11c6dca7c22a49debead55588c
a449fa4da0c85c8a7cca2efb9ce8d8fe72567f5c
d148101d77cb2a1bee64970c5f84951135c7ff67cbcd7df7da7efd83ab58a80c
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1260
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 25 Mar 2023 11:57:16 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Sat, 25 Mar 2023 14:00:03 GMT
Date: Sat, 25 Mar 2023 11:57:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Sat, 25 Mar 2023 14:00:03 GMT
Date: Sat, 25 Mar 2023 11:57:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Sat, 25 Mar 2023 14:00:03 GMT
Date: Sat, 25 Mar 2023 11:57:16 GMT
Connection: keep-alive
medtco.com/modules/mod_AutsonSlideShow/images/005.jpg
91.216.107.205200 OK 503 B URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/005.jpg
IP 91.216.107.205:0
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
GET /modules/mod_AutsonSlideShow/images/005.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 46340
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:41:08 GMT
ETag: "b504-4d68cb1776500"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Sat, 25 Mar 2023 14:00:03 GMT
Date: Sat, 25 Mar 2023 11:57:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 51408
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 51408
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ae84b9-2e9d-44e4-abe3-82b566299062.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ae84b9-2e9d-44e4-abe3-82b566299062.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0718f4a5b3b3a5a5b1b523a4b634163
9b5941bbfc5bdf9a541303247d4885bb4e142fe8
ec6fb85b68089d4b38d8dbf769fa5eaf12bce29463e76028d140a611e9b8fef4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ae84b9-2e9d-44e4-abe3-82b566299062.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7384
x-amzn-requestid: 230584cf-44e6-4e53-ab88-27005fc130c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTixJHnCIAMF1kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1807-1709645f7941345117017427;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:11 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 0KF-Fu5mQCRuxtBrOErQg_a_zrY1SDPL3te-6WOZs8-tJwwq-6kAqw==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 51408
etag: "9b5941bbfc5bdf9a541303247d4885bb4e142fe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4eff72cc67baab6193459fde6258b90
afda12d540eca8e8bd8ef9451c764bcf52ad26ec
d7a42e4f1940187cf3ee0ca7da042544f40b1c55997dc3a2f90bb524eaa98921
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11362
x-amzn-requestid: b22b73ca-a711-4898-a279-eab98b4597a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTjS9F_HIAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e18df-6c691516066b4b50453013f3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:40:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: BCZK_EvcQGPt-tAZcqkuOSeoykvzd-1-WXkQrXh4TIraDGO-Gm4CCg==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:47 GMT
etag: "afda12d540eca8e8bd8ef9451c764bcf52ad26ec"
content-type: image/jpeg
age: 51389
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 11170
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 51408
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/embed/RL-XGZx8GvU?wmode=transparent
IP 142.250.74.142:0
GET /embed/RL-XGZx8GvU?wmode=transparent HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://medtco.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 25 Mar 2023 11:57:15 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Fn9L8MNrPP8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=-qZjJZh6tY0; Domain=.youtube.com; Expires=Thu, 21-Sep-2023 11:57:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+110; expires=Mon, 24-Mar-2025 11:57:15 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
medtco.com/modules/mod_AutsonSlideShow/images/001.jpg
91.216.107.205200 OK 0 B URL HTTP/1.1 medtco.com/modules/mod_AutsonSlideShow/images/001.jpg
IP 91.216.107.205:0
GET /modules/mod_AutsonSlideShow/images/001.jpg HTTP/1.1
Host: medtco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://medtco.com/
Cookie: 88aad4079f9087b0ff3ea3beab7a03b1=sm2g50vdkdnn3b9ejresmuf9j5
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 11:57:15 GMT
Content-Type: image/jpeg
Content-Length: 63342
Connection: keep-alive
Vary: Host
Last-Modified: Mon, 25 Feb 2013 13:41:04 GMT
ETag: "f76e-4d68cb13a5c00"
Accept-Ranges: bytes