| links.waketheforkup.com/a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 | 35.238.129.105 | 308 Permanent Redirect | 0 B |
URL HTTP/1.1links.waketheforkup.com/a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 IP35.238.129.105:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 HTTP/1.1
Host: links.waketheforkup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 308 Permanent Redirect
content-length: 0
location: https://links.waketheforkup.com/a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5d9435c884bf4a0777fdf4b57079ae09 7f04b9db47ffeec90ac6397416b7553e5336a550 fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9367
Expires: Sun, 26 Mar 2023 03:07:30 GMT
Date: Sun, 26 Mar 2023 00:31:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdfd491ebe7381221b3674c2c8bf9e566 d2ac5badf17f348c28a52e9db10e6eb80e5a231a 34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9676
Expires: Sun, 26 Mar 2023 03:12:39 GMT
Date: Sun, 26 Mar 2023 00:31:23 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 26 Mar 2023 00:27:47 GMT
content-type: application/json
age: 216
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1313ee2f06606d09c45b06ff9e8e1001 285ca89d1d3ea45d35832bc6d9827f834b3bfe21 63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10593
Expires: Sun, 26 Mar 2023 03:27:56 GMT
Date: Sun, 26 Mar 2023 00:31:23 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +9qHBSGzVdm8R2xWSAIbL4JfsqDCwz6DhMsSapbd8mVnNDyQ3WEVNFmORscZ5zap0gZSdOb4sKY=
x-amz-request-id: S3G2GC2ANVHJ2KP3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 26 Mar 2023 00:00:59 GMT
age: 1824
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 26 Mar 2023 00:31:23 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 26 Mar 2023 00:17:24 GMT
age: 839
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash60af302938444aeaa4e27f46c3241856 20343b3103db3ccca668202d54c86e9d29e09370 b092eb910bd5e31023eeeac4c603afd3b3c9c2309468aad2d30b3a523af9448e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B092EB910BD5E31023EEEAC4C603AFD3B3C9C2309468AAD2D30B3A523AF9448E"
Last-Modified: Sat, 25 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 26 Mar 2023 06:31:23 GMT
Date: Sun, 26 Mar 2023 00:31:23 GMT
Connection: keep-alive
|
|
| links.waketheforkup.com/a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 | 35.238.129.105 | 302 Found | 343 B |
URL HTTP/1.1links.waketheforkup.com/a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 IP35.238.129.105:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (343), with no line terminators Hash0345489abb4826df357074f8f89f1496 6c1ec8da6a0a03d4dbc2b80c0d44f215aeeddc02 042bfed46d6553d46d41a5f83dd0e131a5a6c5dfa1713a93530e6d0765ccd21d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /a/2118/click/7483/562105/799cfb0666e4b671643ec689627bdb4af1bd372a/c1676f22ae627797c9604681343351ef8345eba0 HTTP/1.1
Host: links.waketheforkup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
transfer-encoding: chunked
status: 302 Found
cache-control: no-cache
vary: Origin
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: eed10838-4d30-40cc-a024-956a94cce4dd
location: https://trk.anarchywarrior.com/ae130eb4-448f-4707-8ff4-1d46c23af5e4?offer=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE&sub2=travism@amcabinets.com&from=Embarrassing Moment-support@waketheforkup.com&subject=No more pee leaks&sub1=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE
x-download-options: noopen
x-runtime: 0.025975
x-content-type-options: nosniff
date: Sun, 26 Mar 2023 00:31:23 GMT
set-cookie: _session_id=11feafff4ec5b886acb6369ba5007d95; path=/; expires=Sun, 26 Mar 2023 12:31:23 GMT; HttpOnly
x-powered-by: Phusion Passenger 5.3.7
server: nginx/1.14.0 + Phusion Passenger 5.3.5
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash70300b32357c46f3448d567189b64cb3 6ba66a5cf63cdbfeaec59b936151cc812bac56df 5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sun, 26 Mar 2023 01:29:11 GMT
Date: Sun, 26 Mar 2023 00:31:23 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.35.228.170 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.35.228.170:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fK2jRK3JDGvzv9aPnWxa3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WrqkMJHG46JG8ubKUcCSCa/81KM=
|
|
| trk.anarchywarrior.com/ae130eb4-448f-4707-8ff4-1d46c23af5e4?offer=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE&sub2=travism@amcabinets.com&from=Embarrassing%20Moment-support@waketheforkup.com&subject=No%20more%20pee%20leaks&sub1=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE | 104.21.43.3 | 302 Found | 0 B |
URL HTTP/2trk.anarchywarrior.com/ae130eb4-448f-4707-8ff4-1d46c23af5e4?offer=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE&sub2=travism@amcabinets.com&from=Embarrassing%20Moment-support@waketheforkup.com&subject=No%20more%20pee%20leaks&sub1=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE IP104.21.43.3:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ae130eb4-448f-4707-8ff4-1d46c23af5e4?offer=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE&sub2=travism@amcabinets.com&from=Embarrassing%20Moment-support@waketheforkup.com&subject=No%20more%20pee%20leaks&sub1=MW15yahoo_plus_03-25-23-PM2-PELVIS-PEE HTTP/1.1
Host: trk.anarchywarrior.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 26 Mar 2023 00:31:24 GMT
content-length: 0
location: https://c1d6bal6rz310ub1md4bqd7ndf.hop.clickbank.net/?tid=wgg97ntj95m7k0ini9fo9fdo&sub3=91.90.42.154
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ae130eb4-448f-4707-8ff4-1d46c23af5e4-v4=iEsIoaKuybJ4B_TWZLkppLh1RbrmF__owyi2dJfIx-U; Max-Age=86400; Expires=Mon, 27-Mar-2023 00:31:24 GMT; Domain=trk.anarchywarrior.com; Path=/; HttpOnly
cc-v4=FklULeNJXJSkb1nXjLONGTlQuUfTUF8lDPZAjXBGjDt51FDrWOu5E9K71IPi44NSWau9aJDaaqJ%2FLF%2FEKoihH1UVHPqcvL5%2BoH6QaYu9ah0SuIFLqvoRVK%2BgVVhK3EOKwhZLcXZn33GZ70vz1bneOA%3D%3D; Max-Age=31536000; Expires=Mon, 25-Mar-2024 00:31:24 GMT; Domain=trk.anarchywarrior.com; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o8drHh%2BAVBa6%2BDg1sTAEhh%2F6R2xfeNkj%2FnJDCSWbBaJDv7%2F6jCN6SkyZ7GSnpnzt7dTxmIQqaA6D%2B%2Bxz%2FmbL3wTj6owcQP%2BB4xaFFr65FqoRNxvOxl9g5WUw1ekhquaKTvqSTt54ZuzF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7adb4a5e0a3b0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash8e0bc141fd9f13ba8a799991fedcee59 bc4aec49f1824e29726937c83f1d7768a1ee2477 1ca523b8dace6931681a6bced7d79dadaa2371061f97cc41f509220e42bcd23e
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 26 Mar 2023 00:31:24 GMT
Last-Modified: Sat, 25 Mar 2023 23:14:20 GMT
Server: ECAcc (dcb/7F42)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c2RDygZr_OxHM0RCYAmSqA8y4R3t0iiSqlSYS4yh-UZZt4DNv-C8kg==
Age: 4625
|
|
| c1d6bal6rz310ub1md4bqd7ndf.hop.clickbank.net/?tid=wgg97ntj95m7k0ini9fo9fdo&sub3=91.90.42.154 | 54.184.38.185 | 307 Temporary Redirect | 0 B |
URL HTTP/2c1d6bal6rz310ub1md4bqd7ndf.hop.clickbank.net/?tid=wgg97ntj95m7k0ini9fo9fdo&sub3=91.90.42.154 IP54.184.38.185:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?tid=wgg97ntj95m7k0ini9fo9fdo&sub3=91.90.42.154 HTTP/1.1
Host: c1d6bal6rz310ub1md4bqd7ndf.hop.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: q=01.C24439F0FBC97011E10BB8DF72A81B51A9BD75872C9DFD96801C5AFD06B7E68F2F8D239DD5140A251BC18E3256769EA88BE0C643
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
date: Sun, 26 Mar 2023 00:31:24 GMT
content-length: 0
location: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
x-xss-protection: 1 ; mode=block
referrer-policy: no-referrer
set-cookie: q=01.C24439F0FBC97011E10BB8DF72A81B51A9BD75872C9DFD96801C5AFD06B7E68F2F8D239DD5140A251BC18E3256769EA88BE0C643; Path=/; Domain=.clickbank.net; Max-Age=31536000; Expires=Mon, 25 Mar 2024 00:31:24 GMT
p=I0c2gYlvKqFY5BawCsmCJz0QMl_3lheJHeO8QFWqnBz7c3mnMPvsDBDVrjG-qvGwOMr1clwzYBEAPjfRCfYhli2-xfKXqV8IFev7KQ7bdZZkHQ__36gZSq792_Qfu3l9-XboQIB1NlBEtL0vwUBPHLGv7ue4X8fxkUKxKjTC6o_nEkWpsm-SdGi-ENAOHL7gUK3tgImXctNC7644D22Nzk2xDMNUS0cvP5VhnD0YhBvBPRjv; Path=/; Domain=.clickbank.net; Max-Age=15552000; Expires=Fri, 22 Sep 2023 00:31:24 GMT
server-timing: traceparent;desc="00-183456a8fcf1c22a4b644d14cfdbf8f1-1ab001dae9455052-01"
access-control-expose-headers: Server-Timing
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Sun, 26 Mar 2023 02:59:04 GMT
Date: Sun, 26 Mar 2023 00:31:25 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Sun, 26 Mar 2023 02:59:04 GMT
Date: Sun, 26 Mar 2023 00:31:25 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg | 34.120.237.76 | 200 OK | 3.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1ec08d4bd079a92161fc80f41281b5a9 bf61369962342cce85de8f48942b4b150fd2721e 8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:21 GMT
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
age: 10444
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe6c20e353b556352fe8cac572c1a521a 8a398c883e28f78bbcc77561b19d21723184e5ef 50609077420d3540ba2a4eae74a28389384fc4acb085f0c04a9ec2d28b32569e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12879
x-amzn-requestid: 50831082-faf7-4213-9a38-35722e395f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smGOzIAMFdDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-2dfea10b0cbe3e3e62f4e9c5;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Vq8840kkTD_41lk9KsOVX-TWpiSFTT7NlhWmw_DDJ7ry3aP_rbPg6g==
via: 1.1 626ad4a6bf529166d2aad94a2957694c.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:07 GMT
etag: "8a398c883e28f78bbcc77561b19d21723184e5ef"
content-type: image/jpeg
age: 10458
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9b21b2c60279839939b60afd83d047fa 544c243fe2d69156f50eec156a62de127128a028 091a59214cfc0af90b4cb820bb521577ae63e862ec10160b8f64c9a9e593630d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7823
x-amzn-requestid: c528eae7-69b4-4669-8c15-2b306586b84b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWHx5IAMFlEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-340c77491ea4440b340e3822;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 2uV186j4t31jcyYDdXxsw5YgM6P5nCbzmgXWvG-pVSpvsjXz6Fsp0A==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:19 GMT
etag: "544c243fe2d69156f50eec156a62de127128a028"
content-type: image/jpeg
age: 10446
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash908bd7a6c220345e72fa664f871424c4 61a5d3f11e85d5fd77192701c305cb8651aa6395 9531f5b25cab1030aa579aa9f3b369ecb9daf0b929573897c6516520c06084a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11100
x-amzn-requestid: 3021b51a-674d-45d7-9939-9257330c0dbc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1hQFs1oAMFb0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f693a-0200a29207f6a3f5074c3cf1;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:35:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: NWvCK-Z608BCGDZIvuqVJ2wBQxwRoRmfjnxeDEcvzHZ7877go8IpRw==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:22 GMT
etag: "61a5d3f11e85d5fd77192701c305cb8651aa6395"
content-type: image/jpeg
age: 10443
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashffef80630953d486de654abbb5d40ccd 06323c322ac667e3388bba406222121607eb804a b853a741069e96d8430d766bb1422e50488622729bd069e29b8839ddc5743822
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6566
x-amzn-requestid: 0a9abca1-24c3-4adf-8509-f8ebcab1c24d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smEZFIAMFyFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-6ce8a53e779d724a11af3531;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ibxm5Q-obzgZHNavKjqxgcgY9ePeF9PTC8wPzjE8fERmyVxaxnahKQ==
via: 1.1 0a166b53605851fe961f5a2952e5a748.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:07 GMT
etag: "06323c322ac667e3388bba406222121607eb804a"
content-type: image/jpeg
age: 10458
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc831201ad81f55c63c1b101ce854a810 0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5 c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ZQcPeutl5BzzzysPzWEzrEY8WU-0F-0twvGPT7RAX-UjNOCk3NtmMQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:35:57 GMT
age: 68128
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbcaf15c259e9baa1f6f0097bb1f34af4 65e17e4cde9c05dcf9c31571686362bb9c0c6666 b2a60d1fe79f0810cfdcf2e32b9a531373f66f84268045687dc03b4cd77d3cdd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2A60D1FE79F0810CFDCF2E32B9A531373F66F84268045687DC03B4CD77D3CDD"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9082
Expires: Sun, 26 Mar 2023 03:02:47 GMT
Date: Sun, 26 Mar 2023 00:31:25 GMT
Connection: keep-alive
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.woff2 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.woff2 IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-regular.woff2 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: font/woff2
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 1fd8dc65de2b43068765e266346a0d47
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.woff2 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.woff2 IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-700.woff2 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: font/woff2
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 85049e2f1d7ba7bfb90eba70595dc005
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/images/physical-combo1.png?v=2.0.0 | 69.172.200.220 | 200 OK | 29 kB |
URL HTTP/2pelvicfloorstrong.com/pfs/images/physical-combo1.png?v=2.0.0 IP69.172.200.220:0
File typePNG image data, 364 x 252, 8-bit colormap, non-interlaced\012- data Hashab88f50e4adaad77ca2e40b3fd2fd467 8a7d281b3675e6586cfa1444c286764680934fcc 2c1058579b2e79462e8920b5aa6d7331acd00d81417eea8154a4bec9017b091d
GET /pfs/images/physical-combo1.png?v=2.0.0 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: image/png
content-length: 29306
last-modified: Thu, 23 Dec 2021 12:58:38 GMT
etag: "61c4727e-727a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 55701b44dc183638b24ed96e06b98b18
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/images/cards.png?v=1 | 69.172.200.220 | 200 OK | 2.0 kB |
URL HTTP/2pelvicfloorstrong.com/pfs/images/cards.png?v=1 IP69.172.200.220:0
File typePNG image data, 200 x 30, 8-bit colormap, non-interlaced\012- data Hash9a9a291489457462e41fcad3280fc888 703e2d2ef7de2c0d5563b4e9c94b18481cc4f8ec 2224ddc7748bbe7578b2a3ede24d0257ffb18a255f2ba5fb4bc861547520e3cc
GET /pfs/images/cards.png?v=1 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: image/png
content-length: 1980
last-modified: Thu, 23 Dec 2021 12:58:37 GMT
etag: "61c4727d-7bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: a8d5c01af3f7e4b69fdab304c1627843
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/images/guarantee1.png | 69.172.200.220 | 200 OK | 12 kB |
URL HTTP/2pelvicfloorstrong.com/pfs/images/guarantee1.png IP69.172.200.220:0
File typePNG image data, 182 x 182, 8-bit colormap, non-interlaced\012- data Hashf5cab7d8bcb141a4ca5d62954b8c6d39 32d899a076fe4e6b738a3c2c3b4966ebb2edd0cd c7d1b3eacd517fabcc093b57a5c0b02e79f23d0d00b04c15fec4429066de0ddd
GET /pfs/images/guarantee1.png HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: image/png
content-length: 12055
last-modified: Thu, 23 Dec 2021 12:58:38 GMT
etag: "61c4727e-2f17"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: e6bd5dd892594f21bb8e9fcfb106d473
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash9bcab8f2b08730652282685d7347a29d f365ecb175205e4a9c153bbe772de226b4f8d423 29ac66e7a07ad91db844b87dabd9c13962ee4ef9a9ce1ad68a3d5e4209c2cd4d
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136457
Date: Sun, 26 Mar 2023 00:31:26 GMT
Etag: "641ef35f-1d7"
Expires: Mon, 27 Mar 2023 14:25:43 GMT
Last-Modified: Sat, 25 Mar 2023 13:13:03 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LqXfzo6dPxehoFcGxlfEOrp2VhjoW9U3WM0WpLdW_EhYI2vcz4o5Gg==
Age: 4360
|
|
| pelvicfloorstrong.com/pfs/images/yt/FVBThumb2.jpg | 69.172.200.220 | 200 OK | 26 kB |
URL HTTP/2pelvicfloorstrong.com/pfs/images/yt/FVBThumb2.jpg IP69.172.200.220:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data Hash5e0f04a1989bfee71ea5042086348dee 3e0f6113cb6b3ef0a3c384c889455df3815334f9 095e11f79c508aa9e6abbe51fcd8528e5c3bcb1396492d20629a0ee4d79ca4a4
GET /pfs/images/yt/FVBThumb2.jpg HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: image/jpeg
content-length: 25985
last-modified: Wed, 26 Oct 2022 17:10:01 GMT
etag: "635969e9-6581"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: a157e7c974771ab4294e24c15e32b007
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.woff | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.woff IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-regular.woff HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: font/woff
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 1a6010497ad96c138a25c98e95761db9
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cbtb.clickbank.net/?vendor=alexpfs | 54.191.158.82 | 200 OK | 936 B |
URL HTTP/2cbtb.clickbank.net/?vendor=alexpfs IP54.191.158.82:0
File typeASCII text, with very long lines (936), with no line terminators Hash6c0b964b273d662f25b84cd29e51b607 6bef26208ee6a1d7105720e5cc54f273868630a9 a3ba10e614083832f41494e71b4c53bd738a88a9ffd6f9a0c785348ec389527c
GET /?vendor=alexpfs HTTP/1.1
Host: cbtb.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: text/javascript;charset=UTF-8
content-length: 936
set-cookie: AWSALB=MhGugOIIcU1lLBWb3/opdrZCYsp2C3Jz5HkFbKjUTYmiRR1F8IQzrENYZ+ENq3I7hjmzTXmGTlvb/HGnos+iXDHvUzTxygda1FaOKE9uPv0b5v+HRIliKYB1dI4r; Expires=Sun, 02 Apr 2023 00:31:26 GMT; Path=/
AWSALBCORS=MhGugOIIcU1lLBWb3/opdrZCYsp2C3Jz5HkFbKjUTYmiRR1F8IQzrENYZ+ENq3I7hjmzTXmGTlvb/HGnos+iXDHvUzTxygda1FaOKE9uPv0b5v+HRIliKYB1dI4r; Expires=Sun, 02 Apr 2023 00:31:26 GMT; Path=/; SameSite=None; Secure
server: Apache
cache-control: max-age=900
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.woff | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.woff IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-700.woff HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: font/woff
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 8e4f6dd7346358e33c7ea2bfada3ba6b
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.ttf | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-regular.ttf IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-regular.ttf HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: application/octet-stream
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: c3f871bcaa08d38e20aaf154fb745ccd
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.ttf | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/fonts/montserrat/montserrat-v18-latin-700.ttf IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfs/fonts/montserrat/montserrat-v18-latin-700.ttf HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: application/octet-stream
content-length: 0
last-modified: Thu, 23 Dec 2021 12:56:47 GMT
etag: "61c4720f-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: a575dd1ab3fa33da21910c92b525fe9f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash7116260900ab227c8c3557f474bd7ab7 9664fdf6f940b413735ec7e0f9b0c88ade1583da 2829e71cbf518c9eab95cd2bbd071aaae405df004b2ab85b942e072d0459cd58
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=158123
Date: Sun, 26 Mar 2023 00:31:26 GMT
Etag: "641f4656-1d7"
Expires: Mon, 27 Mar 2023 20:26:49 GMT
Last-Modified: Sat, 25 Mar 2023 19:07:02 GMT
Server: ECAcc (dcb/7FD4)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _DCHkt8YXCOl0FDfvgFCmyzCCgKHBJRMaXazNssvCVEPXAxJ0MvUHw==
Age: 4787
|
|
| prod.cbstatic.net/dist/injectable.js | 54.230.111.9 | 200 OK | 61 kB |
URL HTTP/2prod.cbstatic.net/dist/injectable.js IP54.230.111.9:0
Hash4d76beea3162c5e55c38db1f8ada0480 99cfe4cd303142c0714e750614dccb9ec842fc72 97ef0fa1ee1d1a7aa8dd09b54ab2daaee21b29467beed3979e8570196b5c2284
GET /dist/injectable.js HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 25 Mar 2023 23:48:48 GMT
last-modified: Mon, 21 Dec 2020 21:57:37 GMT
x-amz-version-id: RdcimFzJWwtinCAQ.f3F8OeQrj2.m2uJ
etag: W/"af651c30e1a69f6f2124e9c1d094a300"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Za5lkNa-jR_XPm3VcH7wGawgdcOB2ViUf0S5d4-8-Mxu9wIDS6p_jQ==
age: 2559
X-Firefox-Spdy: h2
|
|
| prod.cbstatic.net/dist/i18n/app-strings-en.json | 54.230.111.9 | 200 OK | 9 B |
URL HTTP/2prod.cbstatic.net/dist/i18n/app-strings-en.json IP54.230.111.9:0
File typeJSON data\012- , ASCII text, with no line terminators Hashcdfca8b09e61ae7324e48f01984c9b34 874b413675711909229ca228efea613383d6a9a4 00c89e0cd4c41144418e06885bb87e962fdb17567bf55adccb1678a1f6beca4c
GET /dist/i18n/app-strings-en.json HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelvicfloorstrong.com
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 9
date: Sat, 25 Mar 2023 23:48:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: ZlnvsWVay.azLO76UGrGFfzKmZRJT9PH
etag: "cdfca8b09e61ae7324e48f01984c9b34"
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OXxL3AbexZ-B0jRwavjKU_LAGjT3rDGAY6YTVBgGzmom5kwVdOgetw==
age: 2560
X-Firefox-Spdy: h2
|
|
| seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png | 82.102.27.18 | 200 OK | 4.4 kB |
URL HTTP/2seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png IP82.102.27.18:0
File typePNG image data, 153 x 100, 8-bit/color RGBA, non-interlaced\012- data Hash94ef5a6e1208c366493a86ff45a67887 de1b4325d421b53959885aa84dda746754e68ba4 65945362ad73f9e0ed7338b024886ecada498f8a62d8981261fcf6d0603ae007
GET /seals/blue-seal-153-100-clickbank-5004291.png HTTP/1.1
Host: seal-boise.bbb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Sun, 26 Mar 2023 00:31:27 GMT
content-type: image/png
content-length: 4392
cache-control: max-age=14400
expires: Sun, 26 Mar 2023 04:31:27 GMT
last-modified: Sat, 25 Mar 2023 00:32:58 GMT
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| prod.cbstatic.net/dist/assets/logo-tab-two-tone-en.png | 54.230.111.9 | 200 OK | 4.3 kB |
URL HTTP/2prod.cbstatic.net/dist/assets/logo-tab-two-tone-en.png IP54.230.111.9:0
File typePNG image data, 321 x 63, 8-bit/color RGBA, non-interlaced\012- data Hashc06ae1ecaaf7e0610c68af117658a7e0 337cc86d38734fd76333c063366ec36e7a7d343a 2f4d0823359307bdc2fbcc62d1004b361b02cc8ae5d6cb75f314658827ee1eeb
GET /dist/assets/logo-tab-two-tone-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4341
date: Sun, 26 Mar 2023 00:31:28 GMT
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: 65GBUS1AcRJNN3GRB3Nf3yY51OsdERt0
etag: "c06ae1ecaaf7e0610c68af117658a7e0"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HSlMA2m-3dv6de3TUojULTZ83i60TBgQhVYqGhOVDV7E_tRVt3cbLg==
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe6775cb573aaee995c89d41b6be93723 cad165485f34023136370b32999077f4928c68c5 c14056ae20c7cd552209571a3430df2711ec94a5f8ee42c1693a3bf2d04b30ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7e3ff6b78faf64b75d13e5e4c390f7c5 1ec395988633a280be5876ea74b91b994ca88bda 470501dd8e4cb351f2b3effe7507b9582758ecf492d587545f740c13527289d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/analytics.js | 216.58.207.206 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP216.58.207.206:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 26 Mar 2023 00:05:11 GMT
expires: Sun, 26 Mar 2023 02:05:11 GMT
cache-control: public, max-age=7200
age: 1576
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe6775cb573aaee995c89d41b6be93723 cad165485f34023136370b32999077f4928c68c5 c14056ae20c7cd552209571a3430df2711ec94a5f8ee42c1693a3bf2d04b30ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/j/collect?v=1&_v=j99&a=1295596545&t=pageview&_s=1&dl=https%3A%2F%2Fpelvicfloorstrong.com%2F%3Fhop%3Dmediawar15%26sub3%3D91.90.42.154&ul=en-us&de=UTF-8&dt=STOP%20LEAKING%20NOW&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=516043474&gjid=1421850810&cid=1459265178.1679790702&tid=UA-7GL6J4TKHZ-1&_gid=984846601.1679790702&_r=1&_slc=1&z=821633427 | 216.58.207.206 | 200 OK | 3 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j99&a=1295596545&t=pageview&_s=1&dl=https%3A%2F%2Fpelvicfloorstrong.com%2F%3Fhop%3Dmediawar15%26sub3%3D91.90.42.154&ul=en-us&de=UTF-8&dt=STOP%20LEAKING%20NOW&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=516043474&gjid=1421850810&cid=1459265178.1679790702&tid=UA-7GL6J4TKHZ-1&_gid=984846601.1679790702&_r=1&_slc=1&z=821633427 IP216.58.207.206:0
File typeASCII text, with no line terminators Hashdec002daa3f9abe33f5ab1a61ba58e91 b286614a767c86a75059fb1d4557be706e7c3812 1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26
POST /j/collect?v=1&_v=j99&a=1295596545&t=pageview&_s=1&dl=https%3A%2F%2Fpelvicfloorstrong.com%2F%3Fhop%3Dmediawar15%26sub3%3D91.90.42.154&ul=en-us&de=UTF-8&dt=STOP%20LEAKING%20NOW&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=516043474&gjid=1421850810&cid=1459265178.1679790702&tid=UA-7GL6J4TKHZ-1&_gid=984846601.1679790702&_r=1&_slc=1&z=821633427 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://pelvicfloorstrong.com
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pelvicfloorstrong.com
date: Sun, 26 Mar 2023 00:31:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7e3ff6b78faf64b75d13e5e4c390f7c5 1ec395988633a280be5876ea74b91b994ca88bda 470501dd8e4cb351f2b3effe7507b9582758ecf492d587545f740c13527289d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashb644abd1d83faa6f0327486dae33b18d cb745aa55db6976159ef31ff8835e2b26fd32109 784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashb644abd1d83faa6f0327486dae33b18d cb745aa55db6976159ef31ff8835e2b26fd32109 784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:44 GMT
expires: Sat, 23 Mar 2024 10:26:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 137083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 137082
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashb644abd1d83faa6f0327486dae33b18d cb745aa55db6976159ef31ff8835e2b26fd32109 784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha953a9bc0129f404c586d798892c4f1d 099ab04894beacfb569046a30a87871c936d97c3 c091f54d04b4dbf26c9876f1783c47fab3b81615522c84679afcd2eaf82cff03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| pelvicfloorstrong.com/favicon.ico | 69.172.200.220 | 200 OK | 2.8 kB |
URL HTTP/2pelvicfloorstrong.com/favicon.ico IP69.172.200.220:0
Hash1f2dade49c3012671d3387510569a006 e112bf3e4e8cac6d2518f38375beb884035c077c 93960b902cd242d90a2e4c57a2f0c1f96813524d72ab8b5c4f7a535f131ce5a3
GET /favicon.ico HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0; affiliate=mediawar15; affiliate.sig=giIMhF-GoLlcOAt3Ua_reBcGBAY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:27 GMT
content-type: image/x-icon
last-modified: Fri, 23 Oct 2020 05:17:40 GMT
etag: W/"5f926774-3c2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: b107738ba6a11fb5e3a883e5f6b13025
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.134 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.134:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 26 Mar 2023 00:20:11 GMT
expires: Sun, 26 Mar 2023 00:35:11 GMT
cache-control: public, max-age=900
age: 677
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.130 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.130:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 26 Mar 2023 00:31:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash63ca8c4e17e0b692d1829cd62b9af3af d0bbecbe0b93ea21026898dbd13edee5fc071cb2 1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash63ca8c4e17e0b692d1829cd62b9af3af d0bbecbe0b93ea21026898dbd13edee5fc071cb2 1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 26 Mar 2023 00:31:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha953a9bc0129f404c586d798892c4f1d 099ab04894beacfb569046a30a87871c936d97c3 c091f54d04b4dbf26c9876f1783c47fab3b81615522c84679afcd2eaf82cff03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5716bd17f0cc1d649bcba4a6400ad0fa 752def7b1cf7d2f2e8213b28cb17f93e1015d333 ef78bd37975cc2a43c78562c8fcd9977f92a2ef525b87cfcef89f114f28eac3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashf8ae99d8ac7b2e9da026445cd574c3ee 3469fec4d709a8d5687dac39d43daf81853c29d1 df30ffe4fb55f55d9ce5ab5256ed7d97123ca95d925be4182175e3f7b53db754
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 26 Mar 2023 00:31:28 GMT
server: ESF
cache-control: private
content-length: 31220
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash63ca8c4e17e0b692d1829cd62b9af3af d0bbecbe0b93ea21026898dbd13edee5fc071cb2 1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6bf50de33fa4848356df525bdb17a561 27b65ad48ed6b14b616579a54fb53f1ddd69e399 3f8b5445c77d3191ac7d9729fa0898620185af043f8e353d9db1349a6bea49f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash6bac14ff70f1fb910e47debdd40434da c2ce59c6cae9af589143a911a086f35db830654d 670d54ab31df749a0b913c0d490e3b1cf835aff2df965d7b6522c6e9ad3d6be2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hasheb6df55dd3ff2d1aa00373a6f4794515 dfeca303111998f63d645e228a3e330c16a2bd98 d27a508b5d0f11a3ca7f6f68e8900b366b5f0e44045e9d17ae56aa16b15075dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/SxjKrCHoOdmUkSMGawvCoVnbGmA9Nw56i03cxPv7kdmgBKa4fO_gV0pVd3HxrNtRNFWZmrSCpA=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.4 kB |
URL HTTP/2yt3.ggpht.com/SxjKrCHoOdmUkSMGawvCoVnbGmA9Nw56i03cxPv7kdmgBKa4fO_gV0pVd3HxrNtRNFWZmrSCpA=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data Hash43a404a9bded9d2e4efe847cd1e0c152 430606346e4e13cfc3526393cd9ee7da8b2a8f52 ded9b8d84804a165be95190749564f2be745bcb4cc809ea3443ff5395fac4d1c
GET /SxjKrCHoOdmUkSMGawvCoVnbGmA9Nw56i03cxPv7kdmgBKa4fO_gV0pVd3HxrNtRNFWZmrSCpA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2369
x-xss-protection: 0
date: Sat, 25 Mar 2023 22:08:49 GMT
expires: Mon, 20 Mar 2023 06:06:38 GMT
cache-control: public, max-age=86400, no-transform
age: 8559
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/vfL9pRLeM2I8igeDEoZ-6BrdQvIN_PEUsYwY2am7_pk.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/vfL9pRLeM2I8igeDEoZ-6BrdQvIN_PEUsYwY2am7_pk.js IP142.250.74.164:0
File typeASCII text, with very long lines (36332) Hashcd29bf7b28c6b469cad7a00de4f03d7d ef2a6c612bba820e59447e344ed823cfa199d534 9c8a7a3abb40e232ea3bbed04b3753beff2c30dab3e6e00bbada79ab8e788652
GET /js/th/vfL9pRLeM2I8igeDEoZ-6BrdQvIN_PEUsYwY2am7_pk.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 22:38:54 GMT
expires: Sun, 24 Mar 2024 22:38:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 6754
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/_n0X7Ih13v0/sddefault.jpg | 172.217.21.182 | 200 OK | 2.3 kB |
URL HTTP/2i.ytimg.com/vi/_n0X7Ih13v0/sddefault.jpg IP172.217.21.182:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data Hash4d6eadbba685d5fa0a880a68d7e6332a cedf0c4d5acbd631625e7e5cbe1d00454e99760a 118fa3d936a16b475e199a040b8a8f4d41d439538b767a1dd5e40cfa4c4d5dff
GET /vi/_n0X7Ih13v0/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 26 Mar 2023 00:31:28 GMT
expires: Sun, 26 Mar 2023 02:31:28 GMT
cache-control: public, max-age=7200
etag: "1678148109"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6bf50de33fa4848356df525bdb17a561 27b65ad48ed6b14b616579a54fb53f1ddd69e399 3f8b5445c77d3191ac7d9729fa0898620185af043f8e353d9db1349a6bea49f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hasheb6df55dd3ff2d1aa00373a6f4794515 dfeca303111998f63d645e228a3e330c16a2bd98 d27a508b5d0f11a3ca7f6f68e8900b366b5f0e44045e9d17ae56aa16b15075dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 26 Mar 2023 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 26 Mar 2023 00:31:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 114 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:0
File typeJSON data\012- , ASCII text, with no line terminators Hashb68dfe19c7a968db472fe9e2a7ae0e76 f12f1c85419d78fa2591588bffcf6712b58230a0 3a61d5130be87f41b385c59dc9dcd44cdb9862bf87fe5f1e9f89650bc70c3432
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1251
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 26 Mar 2023 00:31:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg | 34.120.237.76 | 200 OK | 5.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc8a2437b3c9ab01cd0e2327d4be5c61a 33573e5a6b6c1912702040c6d880c362baf0c3db 2556646c122f89bfce8467d13bf05e68f735373c8c18a33f7258f37f602673cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5424
x-amzn-requestid: b03169ca-0cc0-49f5-b785-5e29d70048cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWGCnIAMFf7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-679415d416cf3b666ec128be;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: cMFdcKw6RZYIg35YKKDuetMlSGtT-g4Kc2L-BHA5s0877l_Gg-PqUw==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:07 GMT
etag: "33573e5a6b6c1912702040c6d880c362baf0c3db"
content-type: image/jpeg
age: 10465
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154 IP69.172.200.220:0
GET /?hop=mediawar15&sub3=91.90.42.154 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: user_id=a75167970752a34e4955d0b651a8545b; path=/; expires=Sat, 26 Mar 2033 00:31:25 GMT; secure
user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; path=/; expires=Sat, 26 Mar 2033 00:31:25 GMT; secure
cbst-310-pv=n|2023-03-25T00:22:09.896Z; path=/; expires=Tue, 26 Mar 2024 00:31:25 GMT; secure; httponly
cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; path=/; expires=Tue, 26 Mar 2024 00:31:25 GMT; secure; httponly
persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
uid=wKhaAWQfkl0i4QA0Awn0Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
cnid=0; path=/
content-security-policy: frame-ancestors 'self' cbsplit.com pelvicfloorstrong.com pelvicfloorstrong-com.cbsplit.com ;
content-encoding: gzip
cache-control: private
x-dis-request-id: e4a536e4a7cc6faa17f176cc93ce6ee2
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/js/jquery.min.js | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/js/jquery.min.js IP69.172.200.220:0
GET /pfs/js/jquery.min.js HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: application/javascript
last-modified: Wed, 24 Nov 2021 14:06:52 GMT
etag: W/"619e46fc-15d9d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 7d6781ff4070d7e54eb9697ed38f9a17
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2pelvicfloorstrong.com/pfs/css/main.min.css?v=1.0.3 IP69.172.200.220:0
GET /pfs/css/main.min.css?v=1.0.3 HTTP/1.1
Host: pelvicfloorstrong.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pelvicfloorstrong.com/?hop=mediawar15&sub3=91.90.42.154
Cookie: user_id=a75167970752a34e4955d0b651a8545b; user_id.sig=r3UEBr_343tHxz4E7pl0yrtKiY8; cbst-310-pv=n|2023-03-25T00:22:09.896Z; cbst-310-pv.sig=DskYgVn1TYd9MNqEyNhfx_xVdUc; uid=wKhaAWQfkl0i4QA0Awn0Ag==; cnid=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 00:31:26 GMT
content-type: text/css
last-modified: Fri, 04 Feb 2022 03:16:17 GMT
etag: W/"61fc9a81-e551"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 514ceccd9ba441fd9ea6f1d1aec55e86
server: DOSarrest
X-Firefox-Spdy: h2
|
|