r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11528
Expires: Sun, 11 Sep 2022 10:59:32 GMT
Date: Sun, 11 Sep 2022 07:47:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 07:07:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8mvh8_oJNrvKKr00rd45VZZIgu75Llzct1N95SPbwxpBmvYP18zPWQ==
Age: 2400
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZX3IrPL33QR8oQHVVdmR9XyhkSkjuOLOSzAbQl7a7FXbrFcPlHVTiw==
age: 1812
X-Firefox-Spdy: h2
cloud.bitclouthost.com/ga/click/2-311088380-1591-14056-27455-25328-1829f46003-pec7f29c9c
149.102.139.201302 Found 196 B URL HTTP/1.1 cloud.bitclouthost.com/ga/click/2-311088380-1591-14056-27455-25328-1829f46003-pec7f29c9c
IP 149.102.139.201:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 45477574eca1d2833b52d942d1d565f6
0522664a4141bfae32494004a40348da7ec34ffa
058327c53139aaa6b5c92373bf520b7c6a9350e76b67ecd7cace93c4642c27b8
GET /ga/click/2-311088380-1591-14056-27455-25328-1829f46003-pec7f29c9c HTTP/1.1
Host: cloud.bitclouthost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 11 Sep 2022 07:47:01 GMT
Server: Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.29
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: e77dad73dfa2b5ae91121905e9c136cd
Location: http://era.eramyhome.com/vcfxdcgvhbjhgfcghj-hgfdxcghjhgfcdxgh-gfdxsfghjhgfcdxgh-hgfdxfghjgfdxghj-gfdxfghj7654345678654356786543567
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.019199
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 07:47:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 06:56:07 GMT
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 07:05:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SnGmr6t_w6NV3mYB088sRSFGQRTL8dvOqOTlL1YnA5hxFH8rtz-FlA==
Age: 3077
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 646
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:24 GMT
Last-Modified: Sun, 11 Sep 2022 07:36:38 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
era.eramyhome.com/vcfxdcgvhbjhgfcghj-hgfdxcghjhgfcdxgh-gfdxsfghjhgfcdxgh-hgfdxfghjgfdxghj-gfdxfghj7654345678654356786543567
139.64.132.126302 Found 1 B URL HTTP/1.1 era.eramyhome.com/vcfxdcgvhbjhgfcghj-hgfdxcghjhgfcdxgh-gfdxsfghjhgfcdxgh-hgfdxfghjgfdxghj-gfdxfghj7654345678654356786543567
IP 139.64.132.126:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /vcfxdcgvhbjhgfcghj-hgfdxcghjhgfcdxgh-gfdxsfghjhgfcdxgh-hgfdxfghjgfdxghj-gfdxfghj7654345678654356786543567 HTTP/1.1
Host: era.eramyhome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 11 Sep 2022 07:47:24 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.4.16
X-Powered-By: PHP/5.4.16
Location: https://mwebnice.com/6738/186/2/?subid=reeedmm7
Content-Length: 1
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.27.12.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.27.12.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hxI1llbM4U01Uj5Zft5VYg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iyk8+rH8Y/OEYsTKejckXZMIEmA=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 07:47:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 07:47:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 07:47:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 07:47:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 11 Sep 2022 10:14:14 GMT
Date: Sun, 11 Sep 2022 07:47:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12666d69f9af3ceb23fdfc2100bd3226
c4d17e3ea44ef6dee9819c1586424e5f056f149c
054236a4d1f88a486f48b8f3a8ac01d21ec2179d5b1f3fc9791d0982d07a88a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5752
x-amzn-requestid: 622ffff0-1bd5-4eb4-a9ff-eb54c5ae44a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqiFiToAMF0tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f310-49efdcc572b4fad3543f857d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VKsU4S6tKOso216JLUWn7b1bKDyfruIVukt98JooNCjwaXDT9bkPYQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:44:02 GMT
age: 36204
etag: "c4d17e3ea44ef6dee9819c1586424e5f056f149c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 22:14:30 GMT
age: 34376
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:34 GMT
age: 36412
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: a2fadcbe-350b-4a06-9f9c-ee2da40bb285
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEESeHA_oAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317e742-4740aa3f4ebd479e7a4886ed;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 00:35:14 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jbF2ZaJUhIoJV-o4f6iviFyUnoDW4R0KHTfC5NySmITnsLbD5iJrPQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:11 GMT
age: 36435
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b290c3f75a769f5cb0f36b5c84436c9b
22e386713ccb95ca1cf9aa367a5ad02bd1664954
e311757ae3bc5b821a9c1d4d654250b1ac936228eb4a600aa1e5b391d25adaaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10611
x-amzn-requestid: 1492333f-e0ed-4061-8c16-a62e0687b95e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLgc-EBkIAMF27A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae11f-555b67794d0bdfd3384ebde8;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:45:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: gz4lq1qR5Erx6Gfh8Qh4C2RGT4-GLRLZZcMZLAvVztYBgYenM9LIhA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:18 GMT
etag: "22e386713ccb95ca1cf9aa367a5ad02bd1664954"
content-type: image/jpeg
age: 36428
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1ZoYLM2Mj7teQm-1Dz80IZxKGqzuzAoEiT85R3RldbJwO6iJR-JJA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:44:01 GMT
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
age: 36205
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
104.16.12.194200 OK 22 kB URL HTTP/2 renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
IP 104.16.12.194:0
File type PNG image data, 350 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 371b09a6308c1cf5c90fdc625f894471
4326d9e8ab4f0cc68350044d070c4c9f03eebf66
0d8e069d00f8da07dbf10221a46db459be4c7e8edae88446728fe1cf8811b767
GET /hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 22343
cf-ray: 748ecb9d4d6d0b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "4cddd1a405fcfe2a5b5eeeb50ac6fcff"
last-modified: Tue, 27 Oct 2020 13:36:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=22865
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
104.16.12.194200 OK 78 kB URL HTTP/2 renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
IP 104.16.12.194:0
File type PNG image data, 275 x 339, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ac43691fbbef0a73508aca781e38145
41b3c98f446e95430fcc62da38cdc7b92409c231
71da7fea00c24cdff5371bdda93015e107a55700efba4cef98d28ee413566824
GET /hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 78418
cf-ray: 748ecb9d4d6a0b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "391f6e1eb952adcfdd76231a4c0fb0e1"
last-modified: Thu, 12 Nov 2020 06:12:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=78566
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
104.16.12.194200 OK 246 kB URL HTTP/2 renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
IP 104.16.12.194:0
File type PNG image data, 1322 x 1522, 8-bit/color RGB, non-interlaced\012- data
Size 246 kB (246109 bytes)
Hash 8048cc0d6dbd055f000dce6d9d0d0657
f9a8acff4f374b3aaf19166a6f98ac34c158de7f
ad0619a0f61a25a4a8fffd18bc38112fa5a47ac2e73ce618523c336ae2761bd1
GET /hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 246109
cf-ray: 748ecb9d5d780b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "bfce0f070b1cb993f2fac933823896c0"
last-modified: Wed, 19 May 2021 13:50:46 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=249933
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
104.16.12.194200 OK 61 kB URL HTTP/2 renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
IP 104.16.12.194:0
File type PNG image data, 350 x 447, 8-bit colormap, non-interlaced\012- data
Hash 3ba9bbf8b96770b459429940d92d7a79
00acbaaa9078346c74da3cf94d09e2b692bff5ef
b1ee42c7737ae65389682b1879a8d2e14b8a1c3574aae0a923ebe1f33c1773ac
GET /hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 60796
cf-ray: 748ecb9d4d6e0b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "f62bc6fe8d98125d91b9b7aef151a1f8"
last-modified: Mon, 28 Mar 2022 20:03:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=61050
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
104.16.12.194200 OK 675 kB URL HTTP/2 renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
IP 104.16.12.194:0
File type PNG image data, 968 x 848, 8-bit/color RGB, non-interlaced\012- data
Size 675 kB (674934 bytes)
Hash 83fc6873518fe469af1fd3e13bf992c4
a08e1e3a49bf9df824db3ae7f62dc4aece355b93
6b47b4323d80411f07887e2af731d53764f1f86c46a633532463ce735d3edf36
GET /hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 674934
cf-ray: 748ecb9d4d6f0b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b17091089aa100beb2adf1cb4b57087a"
last-modified: Tue, 22 Mar 2022 16:16:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=679821
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
104.16.12.194200 OK 341 kB URL HTTP/2 renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
IP 104.16.12.194:0
File type PNG image data, 1018 x 564, 8-bit/color RGBA, non-interlaced\012- data
Size 341 kB (341245 bytes)
Hash a2e34c3ae57383e15887e5680d0badff
6e2913e84cd0a3549e044c545b93524550e1f170
6ef63fae9358d66f9130a085044c84f1ec67ede5a7efe5fa32a36894912f92fd
GET /hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: image/png
content-length: 341245
cf-ray: 748ecb9d4d690b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "ccd66439e790bb40a687ea93e7563a63"
last-modified: Wed, 11 Nov 2020 12:28:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=341393
x-amz-cf-pop: OSL50-C1
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=cTrR44xGiyy5H4YNhmjtLZL42Tr4eRHV4nw6ubBFjiw-1662882446-0-AYUFwagQMD6ap4s6E-w5DC3giqBqj6JIXTCfdqU0sdBD27Pakhk32BuXwfuDa3mkMjJPbjPcQPZug2gawVVXv8IP6LoRErlfKfKmhIY7fMD9"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=cTrR44xGiyy5H4YNhmjtLZL42Tr4eRHV4nw6ubBFjiw-1662882446-0-AYUFwagQMD6ap4s6E-w5DC3giqBqj6JIXTCfdqU0sdBD27Pakhk32BuXwfuDa3mkMjJPbjPcQPZug2gawVVXv8IP6LoRErlfKfKmhIY7fMD9; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9116c337a04654987c1f8dfb4415f878
18d6a3b461a9147b96205e590ad7238c17d7e6b5
ad97a735967b75fdb67930e4397c38a662992185b06ac9d4c6f8624e3c508a5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2802
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Last-Modified: Sun, 11 Sep 2022 07:00:46 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ad69abbfea6a5212a703a6b26e12b304
e575445fd9635cc90cd351f609df2969a5228130
29b2df3fb47e3d7f0f3ba2ccdf5871e305db5c588a06170b9093be634a93706c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Last-Modified: Sun, 11 Sep 2022 06:17:06 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn01.basis.net/assets/up.js?um=1
178.79.212.177200 OK 1.6 kB URL HTTP/2 cdn01.basis.net/assets/up.js?um=1
IP 178.79.212.177:0
File type ASCII text, with very long lines (3275)
Hash 745340d954663bbef59f3e65c8aa728b
0af5bfef26b3eeec2000086014638c4d11821220
71bfd4fead77b57be5c1ffa6a3c49e4c5defba58cbcabf255a1757a4579c53e6
GET /assets/up.js?um=1 HTTP/1.1
Host: cdn01.basis.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
vary: Accept-Encoding
server: AC1.1
x-llid: 9c4bf4a040d787b76af37f00d11203ac
age: 431259
date: Sun, 11 Sep 2022 07:47:27 GMT
last-modified: Wed, 16 Mar 2022 16:22:21 GMT
content-length: 1550
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash cd8217c3e7922d5488b633bb122117b2
eb27ecf87d009b41f51af24cd4f37271a106ea7c
3ca971ade399af6a958ceea735e2b7a70d3e247a1b23b0e36cd4f43fb611a29f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 07:47:27 GMT
Last-Modified: Sun, 11 Sep 2022 07:42:58 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9ZPWZ116DvP_xkolFjd26DROse6HnXfw4arHSvWDj9P0WM0iTxgeeA==
Age: 269
cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
54.230.111.26200 OK 733 B URL HTTP/2 cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
IP 54.230.111.26:0
Hash ded6fc3d3fa4c08bd8c3184513a12513
aac0d0a584bef69586142ff02496d06bc641494f
aba9ceb251ecd2af35adf37daa0a2d64760fd399c91c2c332cc30f7d315c3650
GET /tracking/prosperwellness_lander.js HTTP/1.1
Host: cdn1.lockerdomecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 733
last-modified: Fri, 21 May 2021 18:48:24 GMT
x-amz-version-id: IXK4sDg7IhH.._0LH9j...5boykFnEd9
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 17:15:09 GMT
etag: "ded6fc3d3fa4c08bd8c3184513a12513"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KfP4GAPlU48FAQx-IYWg4pos79zk18VuyG0Nx3V_Or9DqnyEZ4-fVQ==
age: 52339
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
renewyourknees.com/hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg
104.16.12.194200 OK 18 kB URL HTTP/2 renewyourknees.com/hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x816, components 3\012- data
Hash 2607b786029ba4eeec16a43b4bf8ea3c
eb2cb30099d29811b1f03ee9959a8f025a1a82a6
e3430fb01b0a96fa0c9a1a3619135ed8666f60eb36da4d70bd212717d72b163d
GET /hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: image/jpeg
content-length: 17918
cf-ray: 748ecb9f2f190b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "2607b786029ba4eeec16a43b4bf8ea3c"
last-modified: Tue, 10 Nov 2020 07:02:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
104.16.12.194200 OK 2.7 kB URL HTTP/2 renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x108, components 1\012- data
Hash d016079a401645969522294fd89712cf
6a8ff7bf7514b355d7aafd404987018c218416e1
536dd1c2b04b2009bf25904cfb7725c846ff4f85328d09d8a77f24f350e330fd
GET /hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: image/jpeg
content-length: 2747
cf-ray: 748ecb9f1f130b45-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "d016079a401645969522294fd89712cf"
last-modified: Tue, 10 Nov 2020 05:45:25 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-M7VBKSB
142.250.74.72200 OK 37 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M7VBKSB
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 9198935cefadf810926fb1b090429473
5950a3e842fdb5ccfa8ae6784e3130d3d47ee4b4
e4a59ccc04a874d1e126dd5369356f44879046c3fbf7b25a61ebc7f84ef2f966
GET /gtm.js?id=GTM-M7VBKSB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Sep 2022 07:47:27 GMT
expires: Sun, 11 Sep 2022 07:47:27 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37051
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:10:21 GMT
expires: Wed, 06 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 398226
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 303199
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2cef5030a2a3113a52cb77d2a0be7645
0ce92a0d809fef1253d1e29b1cabc0de54fb5172
3bb5b8b51afbe10723001ad0ebb477463a40733ac283bb1eb1d1fff931b44c61
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 07:47:27 GMT
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 31VOZzecnIfdDJ8XckvLwjcDliXtTtz7bY2pituqM8_-OkxnCxsJmQ==
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:17:40 GMT
expires: Wed, 06 Sep 2023 22:17:40 GMT
cache-control: public, max-age=31536000
age: 379787
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 16:04:44 GMT
expires: Sat, 09 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 142963
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 303199
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
renewyourknees.com/assets/pushcrew.js
104.16.12.194200 OK 819 B URL HTTP/2 renewyourknees.com/assets/pushcrew.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (637), with no line terminators
Hash d57fce0bffe579c9d154bbbb7c83634c
ca0d7ab85df880628be5229cbdcdcd4a3814be7e
bb71ea47c40603b7320e7a3d2572ea6add492cfcf806fe6cf73f4954a63580da
GET /assets/pushcrew.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: application/x-javascript
cf-ray: 748ecb9d6d880b45-OSL
access-control-allow-origin: *
age: 833
cache-control: public, max-age=1200
etag: W/"630e9cfb-27d"
expires: Sun, 11 Sep 2022 08:07:26 GMT
last-modified: Tue, 30 Aug 2022 23:27:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 254ba212e49ca5653cb19db1d312e1dd
6bc3035db4640d3166459b6e537d06a5026cca23
e55dc86a77a8b9e3e99cce58d14fd1c893b1d6ecebb51d0861332455c0df85e0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 07:47:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 15 Sep 2022 05:44:04 GMT
ETag: "6bc3035db4640d3166459b6e537d06a5026cca23"
Last-Modified: Sun, 11 Sep 2022 05:44:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3288
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748ecba0ff67fac4-OSL
www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
67.225.220.126200 OK 60 B URL HTTP/2 www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
IP 67.225.220.126:0
File type ASCII text, with no line terminators
Hash d7ccb5dc7f9d9fcf48ca4602cc089ea9
4ee87a669ab38ab3cab7bbd7384527ed7c769c8d
ca07fa3313b5e3a483c08d111fdb61b9d2f9bb49203ca8d865d3d20beaba10ca
GET /tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js HTTP/1.1
Host: www.rtb123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 01 Aug 2019 19:17:17 GMT
accept-ranges: bytes
etag: "bd3d9ebb9d48d51:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-origin: *
date: Sun, 11 Sep 2022 07:47:26 GMT
content-length: 60
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 011899ace4911e554fb36d14e2aa78d8
cec31e93ad68700c96856d61c7223b8620ad1abf
17c362ed774a83207fd7124e3bb4d0e932a4a31f4613b240c512021b32961954
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 07:47:28 GMT
Last-Modified: Sun, 11 Sep 2022 06:05:32 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9gDYSSpzh8NfIoQUEhs6KZtD8CNlmjjGPaI9hhONA2m1ZPYzblKMOw==
Age: 6116
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d5c34db5a8c12d39c7257f3252dc0b4d
2a1065960d106fb763ae751f536ba97139047be5
714fb659a62bfaa105cfb16791b1d838c52807c661719f8534372969e2d741f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5729
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:28 GMT
Last-Modified: Sun, 11 Sep 2022 06:11:59 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
52.218.133.32200 OK 0 B URL HTTP/1.1 s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
IP 52.218.133.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jsstore/a/150HK5G/ge.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BWgQw5lRWd47s0YsY/5NpNIcQh/oAA2+PURe74Fk7pkX1EW8jsyRRHR7bMCZMtGjng/R0P3twOI=
x-amz-request-id: FY1QB7X1GN8S7Y19
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Mon, 08 Nov 2021 15:43:30 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 0
app.clickfunnels.com/userevents/?funnel_id=TElkS3JqOEFLK0pQbWE4Y2o2N1VMdz09LS1HeDdWWGhsMENhR3NuV3A0UUJScjB3PT0%3D--25b3f14b59c0a4ebf233df1051e643b099c99064&page_id=OFZLRHN6VThYSTJBL0ljVjJOUFhTQT09LS1vNXBod29IYXJMVUtORjlWOUZnL29BPT0%3D--473d908eadcd5754b7b0a7346a64d6ae0d7230a2&funnel_step_id=eHhxRmlHbktIdE9LaytNMmUxMkNMZz09LS1sNC93VS9jTmlseXZ4T3BBSFZmSk93PT0%3D--60f422a8b59d367481a02f0964fd9f75f0d8e846&user_id=bEdlbmtISUdFRHlsOEJrbkI5YUdvQT09LS05b09Fd1pLMXRMc0RzSnpFejgzMTh3PT0%3D--6c49863247a307d87ae8850451c8fd226e3337cc&account_id=QUFmR1RUR3lHR3hpckNyOVFiczJ2QT09LS1NUnVXdXFWeHRBdHVyOHQ1QTlWTkJBPT0%3D--3271da99afa4133fa808d61fc908121e9621d131&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102273687711152a844ec99801119b&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=c285b4b2-b0da-4f55-bf42-d7c8aee1b149&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b
104.16.14.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=TElkS3JqOEFLK0pQbWE4Y2o2N1VMdz09LS1HeDdWWGhsMENhR3NuV3A0UUJScjB3PT0%3D--25b3f14b59c0a4ebf233df1051e643b099c99064&page_id=OFZLRHN6VThYSTJBL0ljVjJOUFhTQT09LS1vNXBod29IYXJMVUtORjlWOUZnL29BPT0%3D--473d908eadcd5754b7b0a7346a64d6ae0d7230a2&funnel_step_id=eHhxRmlHbktIdE9LaytNMmUxMkNMZz09LS1sNC93VS9jTmlseXZ4T3BBSFZmSk93PT0%3D--60f422a8b59d367481a02f0964fd9f75f0d8e846&user_id=bEdlbmtISUdFRHlsOEJrbkI5YUdvQT09LS05b09Fd1pLMXRMc0RzSnpFejgzMTh3PT0%3D--6c49863247a307d87ae8850451c8fd226e3337cc&account_id=QUFmR1RUR3lHR3hpckNyOVFiczJ2QT09LS1NUnVXdXFWeHRBdHVyOHQ1QTlWTkJBPT0%3D--3271da99afa4133fa808d61fc908121e9621d131&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102273687711152a844ec99801119b&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=c285b4b2-b0da-4f55-bf42-d7c8aee1b149&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b
IP 104.16.14.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userevents/?funnel_id=TElkS3JqOEFLK0pQbWE4Y2o2N1VMdz09LS1HeDdWWGhsMENhR3NuV3A0UUJScjB3PT0%3D--25b3f14b59c0a4ebf233df1051e643b099c99064&page_id=OFZLRHN6VThYSTJBL0ljVjJOUFhTQT09LS1vNXBod29IYXJMVUtORjlWOUZnL29BPT0%3D--473d908eadcd5754b7b0a7346a64d6ae0d7230a2&funnel_step_id=eHhxRmlHbktIdE9LaytNMmUxMkNMZz09LS1sNC93VS9jTmlseXZ4T3BBSFZmSk93PT0%3D--60f422a8b59d367481a02f0964fd9f75f0d8e846&user_id=bEdlbmtISUdFRHlsOEJrbkI5YUdvQT09LS05b09Fd1pLMXRMc0RzSnpFejgzMTh3PT0%3D--6c49863247a307d87ae8850451c8fd226e3337cc&account_id=QUFmR1RUR3lHR3hpckNyOVFiczJ2QT09LS1NUnVXdXFWeHRBdHVyOHQ1QTlWTkJBPT0%3D--3271da99afa4133fa808d61fc908121e9621d131&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102273687711152a844ec99801119b&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=c285b4b2-b0da-4f55-bf42-d7c8aee1b149&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: text/html
cf-ray: 748ecba1fd05b518-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 178cf10ed6a1811dc9629fa62707a3c7
x-runtime: 0.034289
set-cookie: __cf_bm=UFyq0H211WcHvwVJerASS9KFYOPvHMyCeaDFMVadtKM-1662882447-0-AYdOIZHmvaylaSsHUojJRjbAyjg/Bl+LzCP2FnWboo+hL1DkWKqvsm4O5ue5PUTamjJXXXXxFYDIXt7J5eZHd8Iu5aEL3K1SzfBnz6hmaAy4; path=/; expires=Sun, 11-Sep-22 08:17:27 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
66.155.71.25204 No Content 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
IP 66.155.71.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Sun, 11 Sep 2022 07:47:28 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b
66.155.71.25302 Found 0 B URL HTTP/2 pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b
IP 66.155.71.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: ssi=0e0c2aab-85dd-4fa6-b554-6164f292e006#1662882448540; Domain=.sitescout.com; Expires=Mon, 11-Sep-2023 07:47:28 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b
content-length: 0
date: Sun, 11 Sep 2022 07:47:27 GMT
server: AC1.1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6348
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:28 GMT
Last-Modified: Sun, 11 Sep 2022 06:01:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
amplify.outbrain.com/cp/obtp.js
2.18.72.171200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 2.18.72.171:0
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sun, 11 Sep 2022 08:07:28 GMT
Date: Sun, 11 Sep 2022 07:47:28 GMT
Content-Length: 3249
Connection: keep-alive
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 11 Sep 2022 06:41:12 GMT
expires: Sun, 11 Sep 2022 08:41:12 GMT
cache-control: public, max-age=7200
age: 3976
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 9ae7739b5262a7c1a4e3896c343ec06e
ddd5341ea851f655f67d7b9aecfb18123dfb5176
d5948fd1d4d38eeb1d90c85b458fe312c908c8b38c64d5854383daba3b7b622c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4324
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:28 GMT
Last-Modified: Sun, 11 Sep 2022 06:35:24 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: LA2+oG+n6+4j8n43lYfjz/MseQ+qzoWJmtOvlk0j6SfYnhZj82kkYSqfQRkcVrjFrFG7w6CX3F89CqNXIQ4AmA==
priority: u=3,i
content-length: 26737
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 07:47:28 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6348
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:28 GMT
Last-Modified: Sun, 11 Sep 2022 06:01:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
172.67.144.251200 OK 88 kB URL HTTP/2 www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
IP 172.67.144.251:0
File type PNG image data, 1518 x 1496, 8-bit/color RGBA, non-interlaced\012- data
Hash e57817426681b6646dcfe95823f7f8c6
6d396e821718c0aedb62e2cc6ebf0669de500d3b
dbe8a2099e602f4f0055133f84e970ef2d01f5ff33428d575aeebc697f27575a
GET /wp-content/uploads/2018/06/2018-06-08_0911.png HTTP/1.1
Host: www.prosperwellness.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: image/png
content-length: 88111
last-modified: Fri, 08 Jun 2018 15:12:16 GMT
etag: "1582f-56e22d345470a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A1ROUQ7rxIuOGopVw667Xc6VL%2B5byVsNRcT62eIs7k6n%2F0et2AKkjZSL45OM%2Fb1nijLVjwWqJm1jjIhj7MC3o74AB%2BKO4hyjVm%2B%2FvgnWmzWvvWpkGrdC56gmgrxD3nWkczRjZ4OQk6M5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748ecba799b0b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
151.139.128.11200 OK 11 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
IP 151.139.128.11:0
Hash ff0abba0a2eb5eff12b0b7f9a842e190
fe698b5bf5da3a8b0cc0708aaef53bad67028480
6f68bc7dae3e56fd9e9e8ffd56919f64b4b0c1395ddec758213a35ef33d2144c
GET /embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
accept-ranges: bytes
content-type: application/javascript
x-guploader-uploadid: ADPycduk5u183fvFhFAo-NNkh6O0NCyvrvU73Ab_nRALJzXr4xRM_6QUMGBLAmZo9lSpDKjaAz2phZGkKZRse_2CTyMefnmzfglf
cache-control: public, max-age=300, s-maxage=2592000
etag: "4531414b85a3c054437c2c3d1d2d5f5d"
x-goog-generation: 1660889797497485
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9740
x-goog-hash: crc32c=UGf3Sg==, md5=RTFBS4WjwFRDfCw9HS1fXQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Fri, 19 Aug 2022 06:16:37 GMT
content-encoding: gzip
x-hw: 1662882447.cds243.sk1.hn,1662882447.cds243.sk1.hc,1662882447.cds207.sk1.sr,1662882448.dop215.la3.r,1662882448.cds247.la3.c,1662882448.cds207.sk1.e,1662882448.cds243.sk1.sl
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 82d87227cf200f43e752f4a2b6e2c078
4d5c66361290448732556ad5f7c6dc46840468db
eccc7cc60b4a7ceedf1e60f6abda496233c36f6d87afcdc4d3bcaa40a0a13792
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 386
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Sun, 11 Sep 2022 07:41:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=P80xvV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVpeU9UQ0RXNkhXQmdKVG9UJTJCdXl4b1ByNXlZcm1rSmFJd1NOSHd2enpqbg; expires=Fri, 06 Oct 2023 07:47:29 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 213003
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 78eed83eb25868d476c16ad2954745ee
ed58ad0750a37e2bb7fb431b308e83b1e3919191
c58d1cfbca8d710af59e06b84d97d6416918a753642d092bcbaa0537c080943c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5139
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Sun, 11 Sep 2022 06:21:50 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 78eed83eb25868d476c16ad2954745ee
ed58ad0750a37e2bb7fb431b308e83b1e3919191
c58d1cfbca8d710af59e06b84d97d6416918a753642d092bcbaa0537c080943c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5176
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Sun, 11 Sep 2022 06:21:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fd66d0988f5bb65e7951fb29b878af5
f5d8264509674747d963865521ea458b5990ddd3
ae581701d5b9bed9e14f2752a8de4e7c45d0e12e20fc5744dc9fb994244b3e4b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6446
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Sun, 11 Sep 2022 06:00:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fd66d0988f5bb65e7951fb29b878af5
f5d8264509674747d963865521ea458b5990ddd3
ae581701d5b9bed9e14f2752a8de4e7c45d0e12e20fc5744dc9fb994244b3e4b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3166
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:29 GMT
Last-Modified: Sun, 11 Sep 2022 06:54:43 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
178.250.0.157200 OK 5.0 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13316)
Hash 3bc20b1892b9e8fa58094c2e5ca3b838
b74ca5dd276cf9a749b1ed14c36aa7fe3455c361
55e71ded9e794b9e3f91752e6ec691b08118cb125f2813baf6b1c9b61a520123
GET /syncframe?topUrl=renewyourknees.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=eaad78e7-5c91-4e75-938b-bd32f202e2c6; expires=Fri, 06 Oct 2023 07:47:28 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 620106
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js
151.139.128.11200 OK 574 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js
IP 151.139.128.11:0
File type Unicode text, UTF-8 text, with very long lines (65399)
Size 574 kB (574356 bytes)
Hash e55c6f61dbc9746d63f44d7d641a2346
3c9ef394c3330189555dd5e40a0589f5a3d37143
6b5a56cf8d14393d4d2eb10cf3f481f317df5701ce7aaad76dbce913cdde9415
GET /embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: application/javascript
last-modified: Fri, 19 Aug 2022 06:16:38 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdskullhLn1JCbC7olTie18OUt0P5S4VRTm__5R9rNirHwn9qSKBeXhyJefp6BQ4YqlDq6vypd4F5-GSA2qWfZNzbpN6suH-
cache-control: public, max-age=300, s-maxage=2592000
etag: "59f046391fc67d18cca2ce7b6a3f30fb"
x-goog-generation: 1660889798096449
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 494001
x-goog-hash: crc32c=B5jxlw==, md5=WfBGOR/GfRjMos57aj8w+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-encoding: gzip
x-hw: 1662882448.cds241.sk1.hn,1662882448.cds241.sk1.hc,1662882448.cds226.sk1.c,1662882448.cds241.sk1.sl
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
151.139.128.11200 OK 92 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
IP 151.139.128.11:0
File type gzip compressed data, from Unix\012- data
Hash 8fb5b419072cf7953371598edc617a9d
5d368bc0d1edd52c64add989b390859515c16c75
d80856def1b06b60547fed681005a5653ebd25e509ac394042167987f81cccbd
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: application/dash+xml
last-modified: Mon, 11 Apr 2022 18:52:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsWUbyJLd0upcvP7DWcCN-yNgmVtiOxQvXk9RFwNZNLGA8omrbDn2uZlqd4dOiQPGRqUG1sPMCskkJXPrvmI0_ZtZMAYbNS
cache-control: public, max-age=31104000
etag: "814f641dd619cf540cb27f001ce4bc38"
x-goog-generation: 1649703137121846
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5842
x-goog-hash: crc32c=2Ike4A==, md5=gU9kHdYZz1QMsn8AHOS8OA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length: 5842
x-hw: 1662882449.cds241.sk1.hn,1662882449.cds241.sk1.hc,1662882449.cds065.sk1.c,1662882449.cds241.sk1.sl
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 809e1ab973c5e2ab1ac54bdb7f0fc29a
983e9483ab0c7742b1331a273bf0cdd0ca3d28aa
2027808f270e6b3ed39a80afed6f1a89c086cd26067c5dac8bc40b41884bf94e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 11 Sep 2022 07:47:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 10 Sep 2022 21:19:39 GMT
Expires: Sun, 11 Sep 2022 21:19:39 GMT
ETag: "983e9483ab0c7742b1331a273bf0cdd0ca3d28aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 105
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 149
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sun, 11 Sep 2022 07:47:29 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/init.mp4
151.139.128.11200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/init.mp4
IP 151.139.128.11:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash a3725d50570be6b4e9e147c686fc217d
869a8d730a5e1a5fc6238ac603063a744af62107
830343d1d63d4cdd5272bded3870fa1f4f8a2093335f2a295b94b43d3f5e3468
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: video/mp4
last-modified: Mon, 11 Apr 2022 18:42:18 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvTy-zEfJRjpLOMjzsG7rAH84CHzH8zwEK6tLcXGr_HXREms6a9N6LjM1aKRd9iGYOCirygyoXRTIXhc75sPd0hlcHc4sxo
cache-control: public, max-age=31104000
etag: "a3725d50570be6b4e9e147c686fc217d"
x-goog-generation: 1649702538790434
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=i1gvzQ==, md5=o3JdUFcL5rTp4UfGhvwhfQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length: 459
x-hw: 1662882449.cds241.sk1.hn,1662882449.cds241.sk1.hc,1662882449.cds208.sk1.c,1662882449.cds241.sk1.sl
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1253
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 809e1ab973c5e2ab1ac54bdb7f0fc29a
983e9483ab0c7742b1331a273bf0cdd0ca3d28aa
2027808f270e6b3ed39a80afed6f1a89c086cd26067c5dac8bc40b41884bf94e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 11 Sep 2022 07:47:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 10 Sep 2022 21:19:39 GMT
Expires: Sun, 11 Sep 2022 21:19:39 GMT
ETag: "983e9483ab0c7742b1331a273bf0cdd0ca3d28aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.facebook.com/tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&rl=&if=false&ts=1662882439077&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662882439076.1601202366&it=1662882438049&coo=false&rqm=GET
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&rl=&if=false&ts=1662882439077&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662882439076.1601202366&it=1662882438049&coo=false&rqm=GET
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&rl=&if=false&ts=1662882439077&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662882439076.1601202366&it=1662882438049&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Sun, 11 Sep 2022 07:47:30 GMT
expires: Sun, 11 Sep 2022 07:47:30 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Sep 2022 07:47:29 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 8794304
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=Gzq_USs6
34.107.158.93200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=Gzq_USs6
IP 34.107.158.93:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=Gzq_USs6 HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Sun, 11 Sep 2022 07:47:30 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, public, max-age=2592000
etag: "Gzq_USs6/NEfuDSDDIBKUHBSq"
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
x-envoy-upstream-service-time: 699
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 19a0b8437f7bf54428901512d8093e72
31997bc2337ea2ac58e23fb644dc4161b5bb2a3a
e1336c57b4d7985f157eb67149002cc19b093ef343bfae924826f8fc6958ab10
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 07:47:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 13:41:36 GMT
Expires: Wed, 14 Sep 2022 13:41:35 GMT
Etag: "31997bc2337ea2ac58e23fb644dc4161b5bb2a3a"
Cache-Control: max-age=279844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748ecbb27bd1b51e-OSL
stats.vidalytics.com/scribe
34.107.158.93200 OK 86 kB URL HTTP/2 stats.vidalytics.com/scribe
IP 34.107.158.93:0
File type gzip compressed data, from Unix\012- data
Hash 672a4f12dd595f716a38c7303eb76a7f
148777515192c9aba7327143bfe4978510b87ab4
c4ac651e4009f2596afc97d29be1c150ee69b9a31effde93094dde68b201bbb6
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 578
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sun, 11 Sep 2022 07:47:30 GMT
content-length: 16
x-envoy-upstream-service-time: 4
server: istio-envoy
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
34.107.158.93200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 34.107.158.93:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 711
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sun, 11 Sep 2022 07:47:30 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&gjid=1394844882&_gid=342626827.1662882438&_u=IEBAAEAAAAAAAC~&z=782561315
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&gjid=1394844882&_gid=342626827.1662882438&_u=IEBAAEAAAAAAAC~&z=782561315
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&gjid=1394844882&_gid=342626827.1662882438&_u=IEBAAEAAAAAAAC~&z=782561315 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://renewyourknees.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 11 Sep 2022 07:47:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ag.gbc.criteo.com/newidsd
185.235.84.120200 OK 351 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.120:0
Hash 63b7b73a0f6e818722c45c7ed3301efc
6eae3e8af6c72fd0fbcab904cc7187e3b8d5c01b
f36bb235a2eefd1a02dd68d7b3ca80009d7699bc1d06be9b0a1ef656c5c72208
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 124965
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.clickfunnels.com/images/closemodal.png
104.16.14.194200 OK 86 kB URL HTTP/2 www.clickfunnels.com/images/closemodal.png
IP 104.16.14.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2aeff1b12e97c51ed8e1a85e17d4b466
6b3c43cd2a8ea3c6e9b8ba5377ef1d81988290e7
0b821decf0967fbacf2787cd120a99da57c54b14720f67bf54bd346a11fbf65d
GET /images/closemodal.png HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: image/webp
cf-ray: 748ecb9e4939b518-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 225999
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "630e9cfc-314"
expires: Wed, 12 Oct 2022 07:47:27 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
set-cookie: __cf_bm=maKJriqEPKjG8v0iwUCI2oiU3VQLeFE49fpginzWefQ-1662882447-0-AYALW+TZYi9rZE8mrJHNWOjBVrWuZCe2mScyQFhYAuA9KPaKByKwEQp4YFhR7z+wV38ittG0oZzNz7dRpacmpVf+m5e/I8n4OJBDJEKIX4XT; path=/; expires=Sun, 11-Sep-22 08:17:27 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540
IP 74.119.119.150:0
Hash f4e7e92a11a5a84f01ef00e4289b3697
bcf5cdc92dcaf99a69600922b3a858172b243aa8
d273034cc2405738715e91563cf59557b8020d9b5fb33588f9aba5db92f05a3b
GET /event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D102273687711152a844ec99801119b%2526affiliate_id%253D%2526click_id%253D6738_sessid20220911074721711%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102273687711152a844ec99801119b&dtycbr=72540 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:30 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 15408376
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
IP 142.250.74.10:0
Hash c066ac70f299b9bc97757bae804f0d74
3537b607fb9273b51fd34d3ed8d51414a186ecd6
9809c6b53065a83f5820f27d15769d53971e5dadfdbca22cfa02c61fdadf68c1
GET /css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 07:47:27 GMT
date: Sun, 11 Sep 2022 07:47:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 25e12d7b35a1a6efb4bc97945209072e
72b67424bbd3042de531de92a57bfd97036e9526
3836fa49727f6b0cff300e4aaa480a76848ceda64f98d1a6e4e4986284fcd1ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Sep 2022 07:47:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1890434632.1662882438&jid=1511781681&_u=IEBAAEAAAAAAAC~&z=818264307 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Sep 2022 07:47:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 25e12d7b35a1a6efb4bc97945209072e
72b67424bbd3042de531de92a57bfd97036e9526
3836fa49727f6b0cff300e4aaa480a76848ceda64f98d1a6e4e4986284fcd1ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 07:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm
151.139.128.11200 OK 772 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm
IP 151.139.128.11:0
Size 772 kB (771696 bytes)
Hash 3aed4d4dfbfafb94c8b7f604debdde09
7f41a42da1c3ebb56759f73c38e235f1b2f19b14
57c08776588a9bfb1136670e9978ee996989447a0fbacc3cc10082e7d7e6ceaa
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:30 GMT
accept-ranges: bytes
content-type: video/mp4
x-guploader-uploadid: ADPycdvFUk3dfLMf5gl5fu9fLpsNt6f7L5PAUlte0qHLw-B1WY5hffK6sMOftZial-7woUFS6NizGiNGLxAz9tzmooxjfw
cache-control: public, max-age=31104000
etag: "3aed4d4dfbfafb94c8b7f604debdde09"
x-goog-generation: 1649702538998897
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 771696
x-goog-hash: crc32c=zg1RTw==, md5=Ou1NTfv6+5TIt/YE3r3eCQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Mon, 11 Apr 2022 18:42:19 GMT
content-length: 771696
x-hw: 1662882449.cds241.sk1.hn,1662882449.cds241.sk1.hc,1662882449.cds202.sk1.s,1662882450.dop207.la3.r,1662882450.cds232.la3.c,1662882450.cds202.sk1.p,1662882451.cds241.sk1.sl
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm
151.139.128.11200 OK 734 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm
IP 151.139.128.11:0
Size 734 kB (733510 bytes)
Hash a11558ba4743166ca45739c6e13291e1
3415369fc1f4b4e37fc12b29edda60035a0ee2c2
20ddfe88b7dbd1bced84e1bfc4d9e88958c903a223765b31ea925fc2b2def7d3
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:31 GMT
content-type: video/mp4
last-modified: Mon, 11 Apr 2022 18:42:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduCc5254e5P9xk-uYYwcB4GVZ5EeO8J9Gug2_yZwyCXl5qgQSIpb4i3POxAYsfuy6OWLM2cKQiz7zri5c8qOiJMsg
cache-control: public, max-age=31104000
etag: "a11558ba4743166ca45739c6e13291e1"
x-goog-generation: 1649702536148023
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 733510
x-goog-hash: crc32c=DJTVMw==, md5=oRVYukdDFmykVznG4TKR4Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length: 733510
x-hw: 1662882451.cds241.sk1.hn,1662882451.cds241.sk1.hc,1662882451.cds017.sk1.c,1662882451.cds241.sk1.sl
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 114
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sun, 11 Sep 2022 07:47:31 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm
151.139.128.11200 OK 921 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm
IP 151.139.128.11:0
Size 921 kB (920865 bytes)
Hash a0125b1b78f6514b7b938b75f9798a56
f441aa5eb831ae63b7070849c796c9c319725629
277c7a6fbb661a151cc0f4d93e68d21c25ab0d7a57321ecd3c6c50ab48391204
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:31 GMT
content-type: video/mp4
last-modified: Mon, 11 Apr 2022 18:42:20 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdt9PqWY65ZN-Z8NqmIYm8XjJOCYHFAZF_jS6DVFVGd03DEWwKtGoa8V2MVPSB1A3QWCpA78x79DoeLLH1WGfMAnTC3kzc-7
cache-control: public, max-age=31104000
etag: "a0125b1b78f6514b7b938b75f9798a56"
x-goog-generation: 1649702540391015
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 920865
x-goog-hash: crc32c=91vyJw==, md5=oBJbG3j2UUt7k4t1+XmKVg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length: 920865
x-hw: 1662882451.cds241.sk1.hn,1662882451.cds241.sk1.hc,1662882451.cds251.sk1.c,1662882451.cds241.sk1.sl
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1853
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:31 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1825
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:32 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1815
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:31 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1867
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:32 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1828
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Sun, 11 Sep 2022 07:47:32 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.2.130:0
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: text/javascript
last-modified: Wed, 29 Jun 2022 07:49:23 GMT
etag: W/"62bc0403-a792"
expires: Mon, 12 Sep 2022 07:47:28 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
renewyourknees.com/cdn-cgi/rum?
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/cdn-cgi/rum?
IP 104.16.12.194:0
POST /cdn-cgi/rum? HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 430
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ; cf:aff_sub2=102273687711152a844ec99801119b; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=832ea873-5333-4b13-9568-e8191d2f41ee; aff_sub=1143; aff_sub2=102273687711152a844ec99801119b; affiliate_id=; click_id=6738_sessid20220911074721711; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=102273687711152a844ec99801119b; addevent_track_cookie=bb09dbb8-a3c0-4eb5-54d7-cadbdd6478bf; _ga=GA1.2.1890434632.1662882438; _gid=GA1.2.342626827.1662882438; _gat=1; bitmovin_analytics_uuid=ac194f20-5f57-49b6-a465-adb5065ce35d; _jsuid=2269054571; _no_tracky_101126271=1; outbrain_cid_fetch=true; _fbp=fb.1.1662882439076.1601202366; cto_bundle=hK9xxV9UNnVUVHVlQWw1RVJRTXhQN1JEMzY5SW9xJTJCU1dmNGsyVTVQN3NOdUVXOFRpWUtZTm93ayUyQmNieEYwYk1sdHZ3aVpKSTIzYVpsWWlWMUJiUHdHVkRDSnVxeiUyQjdNM2o5OGlodDUyUjZDWEZCcGlGUG45eENLeHhOaGthNFl2Wk1rNUtXbUJNNjgxMEh0bjY0ZE1zbkdPTHclM0QlM0Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:33 GMT
content-type: text/plain
access-control-allow-origin: https://renewyourknees.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 748ecbc34be10b45-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 07:47:27 GMT
date: Sun, 11 Sep 2022 07:47:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=KY-R6V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVpeU9UQ0RXNkhXQmdKVG9UJTJCdXl4cmRaS1RIJTJGV2VPOGFvZkU4NUU0ZG9q&idsd=63866073,1764778817&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=KY-R6V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVpeU9UQ0RXNkhXQmdKVG9UJTJCdXl4cmRaS1RIJTJGV2VPOGFvZkU4NUU0ZG9q&idsd=63866073,1764778817&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=KY-R6V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVpeU9UQ0RXNkhXQmdKVG9UJTJCdXl4cmRaS1RIJTJGV2VPOGFvZkU4NUU0ZG9q&idsd=63866073,1764778817&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1330874
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
IP 104.16.12.194:0
GET /vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: text/html; charset=utf-8
cf-ray: 748ecb996a7d0b45-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Mon, 29 Aug 2022 18:53:39 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 625f777bf4098451c55c1ea9c61979ebd12ec696
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss, store
x-request-id: 07aaaca0cc65c87610000b16ccecb831
x-runtime: 0.352529
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
172.67.169.247200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 172.67.169.247:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: text/css
x-amz-id-2: 5R63sGXcq2LptVgWp1Hbu23fLcn6t7yox4MdVDD4fYkPpwwpE0tP8nap3nE7BUsLxb2kn6BawAQ=
x-amz-request-id: FW5J89H89QA35JM6
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 366631
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eK5tx7WSpgq7zL%2BkPB5WPsbttXhYcYiAT%2FLTI0gwhnITbiIK%2FFBea%2BUeZicerlH0aPXfQl06YeyBIrGpnMiATx%2FZleaHO9jDG8O7yfeyvd3BWWpmtvcOhopuwu9Gm2USYILI9LMz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748ecb9d5e29b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.getclicky.com/js
104.16.221.29200 OK 0 B IP 104.16.221.29:0
GET /js HTTP/1.1
Host: static.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
expires: Tue, 13 Sep 2022 16:55:02 GMT
cache-control: max-age=604800
x-proxy-cache: HIT
content-encoding: gzip
last-modified: Tue, 06 Sep 2022 16:55:02 GMT
cf-cache-status: HIT
age: 399135
server: cloudflare
cf-ray: 748ecb9e799cb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
in.getclicky.com/in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.702579181420478
198.145.13.13200 OK 0 B URL HTTP/2 in.getclicky.com/in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.702579181420478
IP 198.145.13.13:0
GET /in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D102273687711152a844ec99801119b%26affiliate_id%3D%26click_id%3D6738_sessid20220911074721711%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102273687711152a844ec99801119b&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.702579181420478 HTTP/1.1
Host: in.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 07:47:29 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: no-cache, must-revalidate, post-check=0, pre-check=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.250200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.250:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 118476
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220911074721711&trans_id=102273687711152a844ec99801119b&fix=186
104.16.12.194302 Found 0 B URL HTTP/2 renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220911074721711&trans_id=102273687711152a844ec99801119b&fix=186
IP 104.16.12.194:0
GET /copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220911074721711&trans_id=102273687711152a844ec99801119b&fix=186 HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: text/html; charset=utf-8
location: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
cf-ray: 748ecb97d8f90b45-OSL
access-control-allow-origin: *
cache-control: no-cache
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 302 Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: f5a50e837724f3f813485e132a4d5e61
x-runtime: 0.094795
set-cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ; path=/; expires=Sun, 11-Sep-22 08:17:26 GMT; domain=.renewyourknees.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
172.67.169.247200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 172.67.169.247:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: text/css
x-amz-id-2: 29dQf2WVNOHot5Ay8pBeGC9Jp0pul03AFXB61uD4zFysCnT6qW6VHySxi6MC8oLZjApsDY/NPq0=
x-amz-request-id: B6FTANBTWNEFCW5M
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 288205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iF6eFmvyZiYbeNUenFlfYd%2FKF2fj85yW1I86%2FbXgRJK8ztpCarNpBfND5cCj8PpyADog%2Ba3Wfa%2BVX67xHjxQ4FJRYCFJUyrhVn8JG9LIAmDOqHe94kCe%2Fo6UnSdJhTnj0xqRi0FB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748ecb9d6e39b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
renewyourknees.com/vendor.js
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/vendor.js
IP 104.16.12.194:0
GET /vendor.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:27 GMT
content-type: application/javascript
cf-ray: 748ecba1a9280b45-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 07380e95ad5bd79f63341849d7a5903e
x-runtime: 0.019901
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
mwebnice.com/6738/186/2/?subid=reeedmm7
104.21.10.231302 Found 0 B URL HTTP/2 mwebnice.com/6738/186/2/?subid=reeedmm7
IP 104.21.10.231:0
Analyzer Verdict Alert fortinet Phishing
GET /6738/186/2/?subid=reeedmm7 HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 11 Sep 2022 07:47:25 GMT
content-type: text/html; charset=UTF-8
location: https://trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid20220911074721711&aff_sub=186
cache-control: max-age=3600, private
pragma: no-cache
expires: Sun, 11 Sep 2022 08:47:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 748ecb925fd00b41-OSL
X-Firefox-Spdy: h2
renewyourknees.com/assets/lander.css
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/assets/lander.css
IP 104.16.12.194:0
GET /assets/lander.css HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: text/css
cf-ray: 748ecb9d2d510b45-OSL
access-control-allow-origin: *
age: 833
cache-control: public, max-age=1200
etag: W/"630e9cfc-6a514"
expires: Sun, 11 Sep 2022 08:07:26 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
assets.mantisadnetwork.com/analytics.min.js
143.204.55.129200 OK 0 B URL HTTP/2 assets.mantisadnetwork.com/analytics.min.js
IP 143.204.55.129:0
GET /analytics.min.js HTTP/1.1
Host: assets.mantisadnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Aug 2020 16:12:44 GMT
x-amz-version-id: Ck1Ya2WWYBt8azQIxoUFopCW7mWWtikS
server: AmazonS3
content-encoding: gzip
date: Sun, 11 Sep 2022 07:17:01 GMT
cache-control: max-age=3600
etag: W/"d982d874969783cad1711ce501e9f999"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6yofcjB2r0ffN8i7ALNx-EVYq1VPxzH6KvFmqN9aEhvgmnHumBaoJA==
age: 1827
X-Firefox-Spdy: h2
renewyourknees.com/assets/userevents/application.js
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/assets/userevents/application.js
IP 104.16.12.194:0
GET /assets/userevents/application.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: application/x-javascript
cf-ray: 748ecb9d3d640b45-OSL
access-control-allow-origin: *
age: 833
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Sun, 11 Sep 2022 08:07:26 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
renewyourknees.com/assets/lander.js
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/assets/lander.js
IP 104.16.12.194:0
GET /assets/lander.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=102273687711152a844ec99801119b&affiliate_id=&click_id=6738_sessid20220911074721711&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102273687711152a844ec99801119b
Cookie: __cf_bm=KJG5mbKaWb_QpOWppdrGcVgz6MthOmMwrGn.zF7VKOA-1662882446-0-AQ0pXdZzfaVzk1c0MGU2wPozQ5f4QoajiedC/cdp3EhRWNECgdOM2fku6+PnbzF1fwHEjha+XHKsB71KJeA0E0Yp91+aVe42seoZ6/9URxGZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 07:47:26 GMT
content-type: application/x-javascript
cf-ray: 748ecb9d5d830b45-OSL
access-control-allow-origin: *
age: 833
cache-control: public, max-age=1200
etag: W/"630e9d40-238fd1"
expires: Sun, 11 Sep 2022 08:07:26 GMT
last-modified: Tue, 30 Aug 2022 23:29:04 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
IP 142.250.74.10:0
GET /css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 07:47:27 GMT
date: Sun, 11 Sep 2022 07:47:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2