| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash73c4166ca864f777db2cc1cd8658a7c2 c56b66b0b7c8516d4d5bfafe0c166711c78f3d25 310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2320
Expires: Sat, 22 Oct 2022 20:42:49 GMT
Date: Sat, 22 Oct 2022 20:04:09 GMT
Connection: keep-alive
|
|
| master.masterclasstoolbox.com/ga/click/2-366521406-1752-14746-28793-26689-bd34943723-sb3fe6fdaf | 144.91.96.103 | 302 Found | 114 B |
URL HTTP/1.1master.masterclasstoolbox.com/ga/click/2-366521406-1752-14746-28793-26689-bd34943723-sb3fe6fdaf IP144.91.96.103:0
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hashfdfb6fa0cd201a1cbe8e085da0022964 a655ab600525703e38552238996b39d9758a0a3a d172a6ccc216a3daf3b965746339dcded552a41aec50abb2d8acda1ff0a37f34
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /ga/click/2-366521406-1752-14746-28793-26689-bd34943723-sb3fe6fdaf HTTP/1.1
Host: master.masterclasstoolbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 22 Oct 2022 20:03:41 GMT
Server: Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.29
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: 9647473a884800d96d04e1da0e403dc1
Location: https://mwebnice.com/7129/1202/2/?subid=XMcerttb
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.026890
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2336
Expires: Sat, 22 Oct 2022 20:43:06 GMT
Date: Sat, 22 Oct 2022 20:04:10 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: m79NJ/4rMpFqTLl0A1izbPsASzPdoJDcBjejeDY0gopPPO2nj2v3z5FmIYx/GuBonkMQ6Choeqc=
x-amz-request-id: KCPGQMVJW15SC5CY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 22 Oct 2022 19:37:41 GMT
age: 1589
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/ | 18.244.155.28 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP18.244.155.28:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashc9df6b36bf16969ac566c1b798362e4a e56eff34815153ae019a4bf63eb9746dd9ae2e5b 33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 22 Oct 2022 19:26:25 GMT
Expires: Sat, 22 Oct 2022 19:35:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5d9b63835f78c8585a7d3adf703b1d36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P8
X-Amz-Cf-Id: 4010i1EAzQJw2pRTJU9SynWjfEQX_i2mpbE6DmWVRLyBZr0zasES2Q==
Age: 2265
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashbb2c43191373d8ea5d4ef0a8af40a79d d125f1f6c96ddae9182cc941458140f89671bc66 3a0e87eabbb613f99628e8940a1de0159a8f01a98e4c5668117fb4c39b20a4cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 572
Cache-Control: max-age=98322
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:10 GMT
Etag: "63532790-117"
Expires: Sun, 23 Oct 2022 23:22:52 GMT
Last-Modified: Fri, 21 Oct 2022 23:13:20 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 279
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 22 Oct 2022 20:04:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 18.244.155.28 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP18.244.155.28:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Pragma, Content-Length, Content-Type, ETag, Retry-After, Cache-Control, Last-Modified, Backoff, Expires
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 22 Oct 2022 20:03:53 GMT
Cache-Control: max-age=3600
Expires: Sat, 22 Oct 2022 20:26:34 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dd1211d51ecc66d1523e03934a660f3a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P8
X-Amz-Cf-Id: DcKruZ7Z_EJHyMc_v35_K-M4QQi142vzfPm_LyjUjF8K_cnZ5dXS1Q==
Age: 20
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfecd12689ba4c6aa556814b7fac0d344 a3005f6333ce5201a73e2857c764a1b0091a91d5 83e0fb564f86df4300e8fc4b5baaf0ed13102c384922d388e02620fb3363a842
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3191
Cache-Control: max-age=132946
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:10 GMT
Etag: "6353a495-1d7"
Expires: Mon, 24 Oct 2022 08:59:56 GMT
Last-Modified: Sat, 22 Oct 2022 08:06:45 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.sca1b.amazontrust.com/ | 18.165.196.18 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP18.165.196.18:0
Hashe396ff7644bc052ac6a6aa9e7b6517dc 6603f9c4e615b64ac1867b9b066fb8b2e2c594c9 9a92c2219ea1081aa99993e33007ac293186eb2f81f1350022f67209a5d5a837
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88975
Date: Sat, 22 Oct 2022 20:04:10 GMT
Etag: "6352f90e-1d7"
Expires: Sun, 23 Oct 2022 20:47:05 GMT
Last-Modified: Fri, 21 Oct 2022 19:54:54 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 3S8Zm5wdUQLoh7mG2Wg3IapzDEnQzEX2Qspdqixoixq8hjR2MUlekQ==
Age: 3131
|
|
| push.services.mozilla.com/ | 52.43.46.140 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.43.46.140:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: T4bslbnysM3czoLWk5t8yg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +gpTuYgWGjJGjYaN5FZjMBwqoII=
|
|
| mwebnice.com/7129/1202/2/?subid=XMcerttb | 104.21.10.231 | 302 Found | 0 B |
URL HTTP/2mwebnice.com/7129/1202/2/?subid=XMcerttb IP104.21.10.231:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /7129/1202/2/?subid=XMcerttb HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 22 Oct 2022 20:04:10 GMT
content-type: text/html; charset=UTF-8
location: https://55943g5dru5xfrceomqpp1tric.hop.clickbank.net/?tid=7129_sessid20221022200442439&subid=1202
cache-control: max-age=3600, private
pragma: no-cache
expires: Sat, 22 Oct 2022 21:04:10 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75e4d72b89b8b51d-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe80ca0928e576649e76f3dc130df70c7 b7a0dd6b798c52521e5e8bc2ce441755608eebe9 5767dcce545fcbaab85875fb0208b9acf75a19de140bf4a4e44ec1112987acbc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5767DCCE545FCBAAB85875FB0208B9ACF75A19DE140BF4A4E44EC1112987ACBC"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19885
Expires: Sun, 23 Oct 2022 01:35:36 GMT
Date: Sat, 22 Oct 2022 20:04:11 GMT
Connection: keep-alive
|
|
| renewdentalsupport.com/images/pic1.png | 69.172.200.220 | 200 OK | 3.3 kB |
URL HTTP/2renewdentalsupport.com/images/pic1.png IP69.172.200.220:0
File typePNG image data, 359 x 23, 8-bit colormap, non-interlaced\012- data Hash2b668ca05219d80b456a8c2bb02543fd 36a24543577d631c067a27bfcca8d539d07647f5 7475fbada6d76afcb25a05ec7f317ed21c5b4c7b9d01c2bc147923f3d09ae68f
GET /images/pic1.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 3268
last-modified: Tue, 04 Jan 2022 15:41:04 GMT
etag: "61d46a90-cc4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 449ee9ef70c82535481378c260abe7ad
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/sound.png | 69.172.200.220 | 200 OK | 743 B |
URL HTTP/2renewdentalsupport.com/images/sound.png IP69.172.200.220:0
File typePNG image data, 33 x 24, 8-bit colormap, non-interlaced\012- data Hashe8f2e09c3ef6b1c5dfefe1c4b603224c 69cb32487db23cce52a75f8a13cf9b6fcbafd9d7 c4c700d852aaa3d8511a85b35c54bdad220a90545b2b91d03a2a2429ae148f09
GET /images/sound.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 743
last-modified: Mon, 10 Jan 2022 19:15:57 GMT
etag: "61dc85ed-2e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 402a9e694fddff77cf74ccb083489cc4
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/atc.png | 69.172.200.220 | 200 OK | 11 kB |
URL HTTP/2renewdentalsupport.com/images/atc.png IP69.172.200.220:0
File typePNG image data, 400 x 121, 8-bit colormap, non-interlaced\012- data Hash62e43868daa9c473a661fa68cd605b6d f4583b29333ddc14ce03825e246292c4d303a5ef 32fd068cac2e898f8f171810fc3017571ec5968fdcdf2991f9b286c648c5ef65
GET /images/atc.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 10725
last-modified: Mon, 10 Jan 2022 19:16:06 GMT
etag: "61dc85f6-29e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: b35c5a237adb2f48dc83e0ff27fcdd24
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/card_image.png | 69.172.200.220 | 200 OK | 3.9 kB |
URL HTTP/2renewdentalsupport.com/images/card_image.png IP69.172.200.220:0
File typePNG image data, 229 x 29, 8-bit colormap, non-interlaced\012- data Hash482ca228ac5251230c5a1185044bfcf5 0527ea64d3fcc2a913d2c9667593bcae67e7b218 f3dd55e5f3fb22331323519da058fbf205f2592ee8f51f5a731767b95cb5b498
GET /images/card_image.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 3875
last-modified: Tue, 04 Jan 2022 15:41:04 GMT
etag: "61d46a90-f23"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 84db6a0669d1e2562ab201dce48cd0dd
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3083
Expires: Sat, 22 Oct 2022 20:55:35 GMT
Date: Sat, 22 Oct 2022 20:04:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3083
Expires: Sat, 22 Oct 2022 20:55:35 GMT
Date: Sat, 22 Oct 2022 20:04:12 GMT
Connection: keep-alive
|
|
| renewdentalsupport.com/images/star_pic1.png | 69.172.200.220 | 200 OK | 8.2 kB |
URL HTTP/2renewdentalsupport.com/images/star_pic1.png IP69.172.200.220:0
File typePNG image data, 120 x 22, 8-bit/color RGBA, non-interlaced\012- data Hash2d8082f40025ff6457044447497bf659 e528d77cec48804609e4771031b077ed77417f57 866cd77b6eebcbae49579950ccabc42c85d64dc647d0fcd3282614cf5e66010b
GET /images/star_pic1.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 8238
last-modified: Mon, 10 Jan 2022 19:22:02 GMT
etag: "61dc875a-202e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 7337b623d42307a469c720c3113b36b1
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3083
Expires: Sat, 22 Oct 2022 20:55:35 GMT
Date: Sat, 22 Oct 2022 20:04:12 GMT
Connection: keep-alive
|
|
| renewdentalsupport.com/images/guarantee.png | 69.172.200.220 | 200 OK | 30 kB |
URL HTTP/2renewdentalsupport.com/images/guarantee.png IP69.172.200.220:0
File typePNG image data, 600 x 532, 8-bit colormap, non-interlaced\012- data Hash441ad9770c80fe9cf50002989bf08055 96db9c34dcf164991dd7b607013ae4b7deb17c0a 3bca046b1c80b22a0627868eb3ea505832a732f11ffd650c7d2d7744cf22a118
GET /images/guarantee.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 29981
last-modified: Mon, 10 Jan 2022 19:21:47 GMT
etag: "61dc874b-751d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 278f91a689e4c2d603514d792724f96d
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3083
Expires: Sat, 22 Oct 2022 20:55:35 GMT
Date: Sat, 22 Oct 2022 20:04:12 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash4510f8bb9f729ab5463b54efe983861d cfacec2ba4ab0e92414e7fdd2c675877f3a8ba87 b1d6d643e386588d0c0b8b61b82deb9728552a6398a5a520d198eacaca3112a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: max-age=90341
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:12 GMT
Etag: "6352f20a-117"
Expires: Sun, 23 Oct 2022 21:09:53 GMT
Last-Modified: Fri, 21 Oct 2022 19:24:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
|
|
| renewdentalsupport.com/images/sales_pic3.jpg | 69.172.200.220 | 200 OK | 34 kB |
URL HTTP/2renewdentalsupport.com/images/sales_pic3.jpg IP69.172.200.220:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:12:26 12:39:19], baseline, precision 8, 199x199, components 3\012- data Hashb62c9d4d8711e99fa8c2a00b586eeeb1 444d9043b0af30a150d3e32038931a76f7e25731 b64aa5dcf19ff54ede2e2fa60f8656dba68aa0214ea129204c46f6ed0474486e
GET /images/sales_pic3.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 33697
last-modified: Mon, 10 Jan 2022 19:17:28 GMT
etag: "61dc8648-83a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 08f4509c9e8e33e0e67636bf83ec27db
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff28bcb97-99c1-48e0-b7d7-8bfe823abaa7.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff28bcb97-99c1-48e0-b7d7-8bfe823abaa7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash26c47e4b0147f8dee3e71a53a8f2830c 381edb4758da428db5ffe884f8fb38bf11044f69 b507898359abbcb1f57821c147a58df66d7e81acc198afc997527b58cd835b39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff28bcb97-99c1-48e0-b7d7-8bfe823abaa7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11151
x-amzn-requestid: 5c32e307-f2a7-4050-a96f-a47667ec4752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-NEFTKoAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b9-2fc77f394ca297126abaed94;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JOZwwfasalOC-qk9FERBCqhR9jOp1svTRJxaA40zR6p6yta1_W1dVA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:06:07 GMT
age: 79085
etag: "381edb4758da428db5ffe884f8fb38bf11044f69"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/sales_pic4.jpg | 69.172.200.220 | 200 OK | 30 kB |
URL HTTP/2renewdentalsupport.com/images/sales_pic4.jpg IP69.172.200.220:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:12:26 12:39:58], baseline, precision 8, 199x199, components 3\012- data Hash221fccdc25b1953d9d86f77610f99295 a1ac90212a01d893192d1c422a5cfe0d1981d884 01b6af7be9ef7a7bbadd883435ef44e7fc1265a5b1e37bb3fc58f317cf61c255
GET /images/sales_pic4.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 30440
last-modified: Mon, 10 Jan 2022 19:17:28 GMT
etag: "61dc8648-76e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 03a2dd61fec94e670dea8fce01451f2f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428e118d-55db-4b2d-9dc1-0adbc5a4021a.webp | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428e118d-55db-4b2d-9dc1-0adbc5a4021a.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha361cef05d531426819a2bffd8ab1e47 9c8050ffd0de58005705219ec70b6e4352e35b5e 0c3c48b96adb7c1dc8a8c3771878dcbab80bbbb9f2d6998038bf5d43831b578b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428e118d-55db-4b2d-9dc1-0adbc5a4021a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8856
x-amzn-requestid: 84cc5c28-b71f-4ada-9d3b-e67e820cd080
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-LzHcsoAMFuNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b1-6b44e77726dc2003052ce387;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qZ8wiQp_Cnx6_fT-TrOCKmkrcpYHyhByOvYpgE9XWkA0VUGxjs6cSw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:06:06 GMT
age: 79086
etag: "9c8050ffd0de58005705219ec70b6e4352e35b5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/sales_pic5.jpg | 69.172.200.220 | 200 OK | 32 kB |
URL HTTP/2renewdentalsupport.com/images/sales_pic5.jpg IP69.172.200.220:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:12:26 12:40:42], baseline, precision 8, 199x199, components 3\012- data Hashad04e4b3895a39cd3eb9bcb42c54e89e a4cc4b5ad27bbfc6a6ba0ef3a94d0d1af1dd3004 3ec4155be0085ad7e939d0e0ffd302c8dc8f261d3cc7b7338c89164dbb906cd0
GET /images/sales_pic5.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 32319
last-modified: Mon, 10 Jan 2022 19:17:28 GMT
etag: "61dc8648-7e3f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 6b7dd0d3babfc09a7cb100354d007ea4
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6bd5e942443ffd011faf10dc88d92081 beff4ae9e24599addce8a961c955788045c56645 2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8elwC37DfS3PoG9NuRyfp-bqOoLi9KWeSWvwuY4mFMGG4HHC3jZAg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:39:23 GMT
age: 77089
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/sales_pic7.jpg | 69.172.200.220 | 200 OK | 31 kB |
URL HTTP/2renewdentalsupport.com/images/sales_pic7.jpg IP69.172.200.220:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:12:26 12:42:01], baseline, precision 8, 199x199, components 3\012- data Hashcd7a5ebe93316bce8c0df353e8c89eb7 86dc6e4869a6083edcb3892632d49511a97f90db 4de4908d7f61bbe584451a7db010378dba4fb415102defc9013def00b1bff6e8
GET /images/sales_pic7.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 31277
last-modified: Mon, 10 Jan 2022 19:17:28 GMT
etag: "61dc8648-7a2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 4843e1725ef77d492762b54c0f2d47eb
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84809f37-0e01-4278-ba97-357c4a1b454e.webp | 34.120.237.76 | 200 OK | 5.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84809f37-0e01-4278-ba97-357c4a1b454e.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1ee464d6a426da49571c97060e65a4e8 aef2208c82085b4dc8472ee28bc63b9a8832fe0e 704e9800cb12b9b2927e85901b21fbb22303f11bf4b052340d0fc610414e2a6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84809f37-0e01-4278-ba97-357c4a1b454e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5517
x-amzn-requestid: 560e0ccc-0551-461d-98fd-f94d9a026fb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-pSExDIAMFpMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6353116e-0420e4ac6cceec1749a44819;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TDa1YZjZ70BYwTbiiaBV1J1WVtzXpAZ1j-wKfsviXvhbhnc8f0Huiw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:02:32 GMT
age: 79300
etag: "aef2208c82085b4dc8472ee28bc63b9a8832fe0e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/check_opt.png | 69.172.200.220 | 200 OK | 2.7 kB |
URL HTTP/2renewdentalsupport.com/images/check_opt.png IP69.172.200.220:0
File typePNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced\012- data Hashe819eac3a8843fbcb493d9f95b29dfeb 044137c378d841974bb0f2f4d72eb72e537933ac 26a1ab92e6b44dce143b1072e18851a4c137ba2409033d0080c4de2ea586e719
GET /images/check_opt.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 2748
last-modified: Mon, 10 Jan 2022 19:24:09 GMT
etag: "61dc87d9-abc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 8860bedfe49b35328862e3f4cd62e5ad
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/sales_pic1.jpg | 69.172.200.220 | 200 OK | 26 kB |
URL HTTP/2renewdentalsupport.com/images/sales_pic1.jpg IP69.172.200.220:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:12:26 12:38:13], baseline, precision 8, 199x199, components 3\012- data Hash0e9432fa912bef0d69d4ed60902df92d 5c843f017212af6c39f0d95d70781a0d7a562998 c327991073daab91b492c65d2eacdea6c2de429107ccab9e25c6f941090975de
GET /images/sales_pic1.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 25820
last-modified: Mon, 10 Jan 2022 19:17:27 GMT
etag: "61dc8647-64dc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: a9dc427ef1e3fbbeaacba9e67dde503c
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/salespic1.jpg | 69.172.200.220 | 200 OK | 4.0 kB |
URL HTTP/2renewdentalsupport.com/images/salespic1.jpg IP69.172.200.220:0
File typePNG image data, 38 x 46, 8-bit/color RGBA, non-interlaced\012- data Hashd1e7ec06d698caa1d9e6b2ce27c87114 e51c7e16bdf96148334013eab1db31d17aac56b8 a9d409747d70c07a891196cb0875681ba671f5899a98a842eba9b888c767bae8
GET /images/salespic1.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 3982
last-modified: Mon, 10 Jan 2022 19:23:32 GMT
etag: "61dc87b4-f8e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: f4c6b6f8e1cbdb1766f87b208933e3e4
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash616e14aee034bbf77c3b74b3ea53961b ebf69c1ff6dc9450f33aef5dc2403d4df17a4c2c 0ae716474e2837c90c658d635fb9db2c8d4cdb7bf025b8e4e9e802e3ff56b0c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7372
x-amzn-requestid: 080f5f7f-51a8-4ef5-9acc-0c7f7f64defb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-ojEg2IAMFjPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63531169-5106c8af6e77450c33a0c899;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:38:49 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vP9aRT8xL5F2kf36A-lMaIQ9FSAEUGo8jmx9y63iIBDdyWYujkXXPw==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:05:57 GMT
age: 79095
etag: "ebf69c1ff6dc9450f33aef5dc2403d4df17a4c2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/image003.png | 69.172.200.220 | 200 OK | 80 kB |
URL HTTP/2renewdentalsupport.com/images/image003.png IP69.172.200.220:0
File typePNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data Hashed91ec4eedde1fbd6e72e9c0c4483054 9150be59ee69f2f890e1706ed7cc2b25336cd4f9 7ee762e005b08beaf232353399141ff64b961d9921165d1ca0c223f84d62dc53
GET /images/image003.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 80436
last-modified: Mon, 10 Jan 2022 19:23:46 GMT
etag: "61dc87c2-13a34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 258cf6a01f45a8e8b9f7fe1a69ad191b
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f5552d5-4394-409a-9a9c-43e4ebf38ee1.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f5552d5-4394-409a-9a9c-43e4ebf38ee1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcdaacab30d73a7d05180cc16f4a96a3f 6cc0e39e0decbc20c765f171f63affd85fc9e6da f015c3b1d838bd7d100ee104551bed2bb06a512b20ce3e5ac419d54b747fadd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f5552d5-4394-409a-9a9c-43e4ebf38ee1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10720
x-amzn-requestid: 96267527-f482-4bfa-ba7a-12467408efe9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-MvGutIAMFc8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b7-25f2624559b0fb7d62ced3a3;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4--AiSTKMMOm9HnJL_ervFnd5rkQ-WZfGM-FNkxXKO892SPw67cxXA==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:11:42 GMT
age: 78750
etag: "6cc0e39e0decbc20c765f171f63affd85fc9e6da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/preview3.png | 69.172.200.220 | 200 OK | 189 kB |
URL HTTP/2renewdentalsupport.com/images/preview3.png IP69.172.200.220:0
File typePNG image data, 2600 x 1700, 8-bit/color RGBA, non-interlaced\012- data Size189 kB (188686 bytes) Hashdc2653f07041021b8de327917791d7a4 6a2f6fed461fe1903751c4acd5d87f6df11e0727 5c74f5be5f6c3c3349dea1f3eb33d85911ae015b7c1f4bf19fcaf7b3edc65c4b
GET /images/preview3.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 188686
last-modified: Wed, 12 Jan 2022 16:00:43 GMT
etag: "61defb2b-2e10e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: bac33ef5bbcea4b5501aac4526730001
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/image002-n.png | 69.172.200.220 | 200 OK | 217 kB |
URL HTTP/2renewdentalsupport.com/images/image002-n.png IP69.172.200.220:0
File typePNG image data, 351 x 404, 8-bit/color RGB, non-interlaced\012- data Size217 kB (217379 bytes) Hash9dcfc134f7666ddf3b20b7055c1e4a88 7a974e2bc06d8de65b98abe0c454847038156a81 0d670c369ed355988e7433d612bb33dbf4b11d97d48a087062471f2d75017ccd
GET /images/image002-n.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 217379
last-modified: Mon, 10 Jan 2022 19:22:30 GMT
etag: "61dc8776-35123"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: d02b2b5ad10a2a5e3d20f3fa79f3b345
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/mobile-detect/1.3.5/mobile-detect.js | 104.17.25.14 | 200 OK | 18 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/mobile-detect/1.3.5/mobile-detect.js IP104.17.25.14:0
File typeASCII text, with very long lines (5342) Hashe357bdf014c3d77f7b756ce9aa0cbfc7 06312ac278953e5e86356ee690c2d1209250111e 0cba09ce95b47a026fc417e0ddc3ea96fef2538558b5b0f7612d3c2f677345bd
GET /ajax/libs/mobile-detect/1.3.5/mobile-detect.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 18351
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f25-1086a"
last-modified: Mon, 04 May 2020 16:13:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 51605
expires: Thu, 12 Oct 2023 20:04:12 GMT
accept-ranges: bytes
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75e4d738decdb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/dentalsupport01.jpg | 69.172.200.220 | 200 OK | 1.0 MB |
URL HTTP/2renewdentalsupport.com/images/dentalsupport01.jpg IP69.172.200.220:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1314x2065, components 3\012- data Size1.0 MB (1011684 bytes) Hasha06d71f648de52e307303f1eb51e02f5 1977bcecbc31ccf20be41546b507b57bf7ee196a ea5185fa992d1a7b868dd5a61b6c17198cfc82d621f2f662e0d56625bf2b0ced
GET /images/dentalsupport01.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 1011684
last-modified: Sun, 13 Feb 2022 15:14:35 GMT
etag: "6209205b-f6fe4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: e6cad14015713c003e7510eb84d9c843
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/dentalsupport03.jpg | 69.172.200.220 | 200 OK | 2.0 MB |
URL HTTP/2renewdentalsupport.com/images/dentalsupport03.jpg IP69.172.200.220:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2748x2178, components 3\012- data Size2.0 MB (2012872 bytes) Hash4a8445961109bf2222dabf1c9d6a078d 1a0a6c9be286e3de9916bda360b4a5f6446a2189 4bece2dc498a1d521fc1de24b77b8c42f767427f3e723877dc224bc4b7438586
GET /images/dentalsupport03.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 2012872
last-modified: Sun, 13 Feb 2022 15:14:36 GMT
etag: "6209205c-1eb6c8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 9cababbcd431b7a97ceaa6b4de99a189
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/dentalsupport02.jpg | 69.172.200.220 | 200 OK | 1.8 MB |
URL HTTP/2renewdentalsupport.com/images/dentalsupport02.jpg IP69.172.200.220:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2622x2016, components 3\012- data Size1.8 MB (1768199 bytes) Hash319d436878b687f0a888da1cf4c97c0e e2dfcff789f3aa781ba7ea6a91527ca4a70a0cf7 e96ecba099c9ce21347f6694063ec66d02ec1fda9b4cb5ac74076f857ad4b008
GET /images/dentalsupport02.jpg HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/jpeg
content-length: 1768199
last-modified: Sun, 13 Feb 2022 15:14:36 GMT
etag: "6209205c-1afb07"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: acdc1dc344588acdfd2ada25fa225991
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/images/image004-n.png | 69.172.200.220 | 200 OK | 412 kB |
URL HTTP/2renewdentalsupport.com/images/image004-n.png IP69.172.200.220:0
File typePNG image data, 411 x 491, 8-bit/color RGB, non-interlaced\012- data Size412 kB (412410 bytes) Hash48496177252beadf5e99165492a8f78c 33346acd8e5417514ead6e1f93bcc85b8b60e4db b64dd7c2066d7aa5bcccd48951585878399c831288ed3ab4316e1ddd6897d8d7
GET /images/image004-n.png HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: image/png
content-length: 412410
last-modified: Mon, 10 Jan 2022 19:24:27 GMT
etag: "61dc87eb-64afa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 1d8f42c7b8ce80603ba77c8645a5bb01
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash4510f8bb9f729ab5463b54efe983861d cfacec2ba4ab0e92414e7fdd2c675877f3a8ba87 b1d6d643e386588d0c0b8b61b82deb9728552a6398a5a520d198eacaca3112a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: max-age=90341
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:12 GMT
Etag: "6352f20a-117"
Expires: Sun, 23 Oct 2022 21:09:53 GMT
Last-Modified: Fri, 21 Oct 2022 19:24:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashea20460028066b7fba2f10b51d883192 a73b8263a4477aceeda349c7beff7050de9df38b f933a7ff2c6ec9189ba29fdf09da9125ac59d9c03b4a14e14e9f1b5fa5322b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sca1b.amazontrust.com/ | 18.165.196.18 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP18.165.196.18:0
Hash06d782ca0b0f99b33bb2fab14b4fd74e 64294990f0b5cc0091c7d43388ff2bf2e2574fc4 a2de50905d5814d23a5769e5482843ebc71019cfa5dea754f54292dc22098f65
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140401
Date: Sat, 22 Oct 2022 20:04:12 GMT
Etag: "6353c37d-1d7"
Expires: Mon, 24 Oct 2022 11:04:13 GMT
Last-Modified: Sat, 22 Oct 2022 10:18:37 GMT
Server: ECS (dcb/7F81)
X-Cache: Miss from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: CPu3ruHqsgNoDRDlE74s4LRQFNAl7iBJtIALeU7rwbynQ_ptksnkng==
Age: 2736
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash794a6d2df00fc15e8b4ed6ff4992525e f8d67c7fd506709d7232298859fe2b3daf374f29 02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cbtb.clickbank.net/?vendor=renewdenta | 52.33.226.99 | 200 OK | 934 B |
URL HTTP/2cbtb.clickbank.net/?vendor=renewdenta IP52.33.226.99:0
File typeASCII text, with very long lines (934), with no line terminators Hash749c0fb0f006f7d4ddcd76fba550e264 940476750ad5d0f7858cce3470a3534be850f98a bc4f846a058e02aa5fd315d0c535a227636ca4a74ed38a5a84d4d5e675ffec72
GET /?vendor=renewdenta HTTP/1.1
Host: cbtb.clickbank.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: text/javascript;charset=UTF-8
content-length: 934
set-cookie: AWSALB=Ja8S0ltECAUTL94Xi7OfYIN8AvEV4T4yn9RG7jQlItXg+0FLsIsFtuZggz9e8vtqoTno0PZ93lX4/eFthh9PBhirVQqqU3UtSq7pG3HsHL0QYQqf2t5AiLqitWLY; Expires=Sat, 29 Oct 2022 20:04:12 GMT; Path=/
AWSALBCORS=Ja8S0ltECAUTL94Xi7OfYIN8AvEV4T4yn9RG7jQlItXg+0FLsIsFtuZggz9e8vtqoTno0PZ93lX4/eFthh9PBhirVQqqU3UtSq7pG3HsHL0QYQqf2t5AiLqitWLY; Expires=Sat, 29 Oct 2022 20:04:12 GMT; Path=/; SameSite=None; Secure
server: Apache
cache-control: max-age=900
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash1b0cd7fce51616614b5ebb265d02c2f7 6748d7df7c347bbe06afb2155fff3bbc8bf50eb0 d41beb047830bdacb772b75123c39906db8edcd49fdc8c9a00258a2556efd1c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.youtube.com/s/player/24c6f8bd/www-player.css | 142.250.74.110 | 200 OK | 50 kB |
URL HTTP/2www.youtube.com/s/player/24c6f8bd/www-player.css IP142.250.74.110:0
File typeASCII text, with very long lines (65536), with no line terminators Hasha6bad8b64588167878f1de946dd2b911 2d3c33bba6a47f05374274cbce7bef19ecfd87b2 41e7429a90008dd5226c1d096ce72beb44fba7315f31a627e7e66983f9edd4d8
GET /s/player/24c6f8bd/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/DXrRY7XIEXM?autoplay=1&loop=1&playlist=DXrRY7XIEXM&mute=1&enablejsapi=1&controls=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49894
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 20:28:32 GMT
expires: Sat, 21 Oct 2023 20:28:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 19 Oct 2022 00:20:59 GMT
content-type: text/css
age: 84941
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/24c6f8bd/www-embed-player.vflset/www-embed-player.js | 142.250.74.110 | 200 OK | 97 kB |
URL HTTP/2www.youtube.com/s/player/24c6f8bd/www-embed-player.vflset/www-embed-player.js IP142.250.74.110:0
File typeASCII text, with very long lines (572) Hash8f179fb031265799508c1267fecdf657 67343059795c82bbc9bd6ccfcd81d7392aaddb8e fc91ea5d8f77ad29a609e776ff7fb95949f53a73325d495b94de2e15e4e75805
GET /s/player/24c6f8bd/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/DXrRY7XIEXM?autoplay=1&loop=1&playlist=DXrRY7XIEXM&mute=1&enablejsapi=1&controls=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 16:02:05 GMT
expires: Thu, 19 Oct 2023 16:02:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 19 Oct 2022 00:20:59 GMT
content-type: text/javascript
age: 273728
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash924935dfe678e1cafb56906ef15defec 063dc4e38a869415d29ff059c0e173966c0c96dd 12045f462e3aa1fa3d2c97f1c3c67951dedc6410db5ce75c1907de5beff81bf4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.youtube.com/s/player/24c6f8bd/fetch-polyfill.vflset/fetch-polyfill.js | 142.250.74.110 | 200 OK | 2.8 kB |
URL HTTP/2www.youtube.com/s/player/24c6f8bd/fetch-polyfill.vflset/fetch-polyfill.js IP142.250.74.110:0
File typeAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (555) Hash80fe2d229007996c8397073b00755dc7 121f82c77bcf2a297a1085e3b092415c463fcafe 033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/24c6f8bd/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/DXrRY7XIEXM?autoplay=1&loop=1&playlist=DXrRY7XIEXM&mute=1&enablejsapi=1&controls=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 13:39:57 GMT
expires: Sat, 21 Oct 2023 13:39:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 19 Oct 2022 00:20:59 GMT
content-type: text/javascript
age: 109456
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/24c6f8bd/player_ias.vflset/en_US/base.js | 142.250.74.110 | 200 OK | 585 kB |
URL HTTP/2www.youtube.com/s/player/24c6f8bd/player_ias.vflset/en_US/base.js IP142.250.74.110:0
File typeASCII text, with very long lines (554) Size585 kB (584928 bytes) Hash578283c1a9595644b0c4467c8152f15a fb4efc4467e6596f6bf550237e6dfa8047e25a01 c321e511cfce0b7a05ffd98411fa3dd1d03e014d1392e6f822e6a3aea4bf1e48
GET /s/player/24c6f8bd/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/DXrRY7XIEXM?autoplay=1&loop=1&playlist=DXrRY7XIEXM&mute=1&enablejsapi=1&controls=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 584928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 06:44:48 GMT
expires: Sat, 21 Oct 2023 06:44:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 19 Oct 2022 00:20:59 GMT
content-type: text/javascript
age: 134365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashc0398d0a4f3ee0a639781b41292087d9 a28f4548489aef440b505202a1c2df03cc33e584 51e4ae5ebae0fc42e1a60c52b58e6fa0fd37379578ccd912ae79026257eb8e83
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=165386
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Etag: "63542fc7-117"
Expires: Mon, 24 Oct 2022 18:00:39 GMT
Last-Modified: Sat, 22 Oct 2022 18:00:39 GMT
Server: nginx
Content-Length: 279
|
|
| renewdentalsupport.com/css/font-awesome.min.css | 69.172.200.220 | 200 OK | 7.8 kB |
URL HTTP/2renewdentalsupport.com/css/font-awesome.min.css IP69.172.200.220:0
File typeASCII text, with very long lines (30837) Hashd2e8f813d9cb5468ffe853ba079e2b47 e21887874be3bb19bdbdc09684390834dd066fd9 bd257751a9617f85486149e064c6b57ff10f0b098fd16d4b27179bf4a8aee43e
GET /css/font-awesome.min.css HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/css/style1.css
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:52:15 GMT
etag: W/"61d46d2f-7918"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: f42308330595016813cda45b3424681f
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash09f1d552877c07059a3c8debf4187f12 5832bc57522a3fda9a0fec7288076db87d4560c5 de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash9f84a11cd39c014fffc187f2a8b0d8df 1875e117dec3fc707db902e87df9ec691b2cc763 bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash78eb615608702c0b13883ec9a639897a b5370eef8ce454c3cdd4c82c02e06e2c071065e5 9d400e867c4a74f3f173b5b919eab8f4b2d32f7651ce484d12df063d03825c69
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2076
Cache-Control: max-age=103761
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Etag: "635336f2-1d7"
Expires: Mon, 24 Oct 2022 00:53:34 GMT
Last-Modified: Sat, 22 Oct 2022 00:18:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| prod.cbstatic.net/dist/assets/logo-header-two-tone-en.png | 143.204.55.111 | 200 OK | 3.5 kB |
URL HTTP/2prod.cbstatic.net/dist/assets/logo-header-two-tone-en.png IP143.204.55.111:0
File typePNG image data, 472 x 30, 8-bit/color RGBA, non-interlaced\012- data Hash47cdefc96f75be3d978d4b444737b00e c9d8540c17ed48b72be610bb5795120e4d560d6f 84986c117f6f9418eff2f7ce5e55940671f178542c58092c05ef539ebd4da308
GET /dist/assets/logo-header-two-tone-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3472
date: Sat, 22 Oct 2022 08:41:16 GMT
last-modified: Mon, 21 Dec 2020 21:57:35 GMT
x-amz-version-id: rgVoO.sKTwEpJN65bYI.UT4E8UVMZSpC
etag: "47cdefc96f75be3d978d4b444737b00e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LG9ymWc-sbtRBM6kL8qgXlvHbn5kLIUMEGRaQWHwjg2LyFFf_zeZlw==
age: 40978
X-Firefox-Spdy: h2
|
|
| prod.cbstatic.net/dist/assets/logo-tab-two-tone-en.png | 143.204.55.111 | 200 OK | 4.3 kB |
URL HTTP/2prod.cbstatic.net/dist/assets/logo-tab-two-tone-en.png IP143.204.55.111:0
File typePNG image data, 321 x 63, 8-bit/color RGBA, non-interlaced\012- data Hashc06ae1ecaaf7e0610c68af117658a7e0 337cc86d38734fd76333c063366ec36e7a7d343a 2f4d0823359307bdc2fbcc62d1004b361b02cc8ae5d6cb75f314658827ee1eeb
GET /dist/assets/logo-tab-two-tone-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4341
date: Sat, 22 Oct 2022 08:41:16 GMT
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: 65GBUS1AcRJNN3GRB3Nf3yY51OsdERt0
server: AmazonS3
etag: "c06ae1ecaaf7e0610c68af117658a7e0"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vmrHfG6CuVQFIXLWEHVrFKTMNniA454vq78Dpv4Lj_McarRdrepkRg==
age: 40978
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (63792) Hashf09a39fdc62d017700eef57fa16bbdc8 329ceda3ef8848ee888f893f0f0a4ad4159c0b2a 6a3978c217733d3e66af5f263b1cd1271ad618b5be235e9492e6aee9ffd069ee
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: mcxcbuw0pulUfq695HVKnq2SK0A5nvR1C3x0ci7OyqV2RPFrD3bICik7t0TqgTDBoO6obEPK+zA8uDNwx2L3xg==
content-length: 27027
x-fb-trip-id: 1904183273
date: Sat, 22 Oct 2022 20:04:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| prod.cbstatic.net/dist/i18n/app-strings-en.json | 143.204.55.111 | 200 OK | 9 B |
URL HTTP/2prod.cbstatic.net/dist/i18n/app-strings-en.json IP143.204.55.111:0
File typeJSON data\012- , ASCII text, with no line terminators Hashcdfca8b09e61ae7324e48f01984c9b34 874b413675711909229ca228efea613383d6a9a4 00c89e0cd4c41144418e06885bb87e962fdb17567bf55adccb1678a1f6beca4c
GET /dist/i18n/app-strings-en.json HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewdentalsupport.com
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 9
date: Sat, 22 Oct 2022 08:41:16 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: ZlnvsWVay.azLO76UGrGFfzKmZRJT9PH
etag: "cdfca8b09e61ae7324e48f01984c9b34"
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b0mRNI6f9dhL7CHY2i0lGFsYy6MDFwqP6LR0_SHvaYmS2o7Gp9s8aw==
age: 40978
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/fonts/fontawesome-webfont.woff?v=4.7.0 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/fonts/fontawesome-webfont.woff?v=4.7.0 IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://renewdentalsupport.com/css/font-awesome.min.css
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1; affiliate=mweb1; affiliate.sig=rfKq6aOMuQWS8IVkJyBXNQTCyWI
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: font/woff
content-length: 0
last-modified: Tue, 04 Jan 2022 15:55:27 GMT
etag: "61d46def-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 6f23f4f0422260d09b7edb983096b257
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.maxweb.com/conversion/iframe/?a=7129&token=c18c63d75e056190574a1a4c170f5585 | 172.66.43.113 | 200 OK | 25 kB |
URL HTTP/2go.maxweb.com/conversion/iframe/?a=7129&token=c18c63d75e056190574a1a4c170f5585 IP172.66.43.113:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text Hashbcaf220671a7c0c3040729f9c1ea8172 20da9ec8242853784af68dd15f058c91caf03223 d1b0ec5d77dc5136f29948d547667a81fda648391bed76f3026a1d5c0e1da012
GET /conversion/iframe/?a=7129&token=c18c63d75e056190574a1a4c170f5585 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Sat, 22 Oct 2022 21:04:13 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75e4d73f1841b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash78eb615608702c0b13883ec9a639897a b5370eef8ce454c3cdd4c82c02e06e2c071065e5 9d400e867c4a74f3f173b5b919eab8f4b2d32f7651ce484d12df063d03825c69
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2076
Cache-Control: max-age=103761
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:13 GMT
Etag: "635336f2-1d7"
Expires: Mon, 24 Oct 2022 00:53:34 GMT
Last-Modified: Sat, 22 Oct 2022 00:18:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png | 82.102.27.18 | 200 OK | 4.3 kB |
URL HTTP/2seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png IP82.102.27.18:0
File typePNG image data, 153 x 100, 8-bit/color RGBA, non-interlaced\012- data Hash5939c27e9f4cfdba2dee6c366d3c7882 b2be48855b5c91e9e5819e4407c6e6725c6247db 5288ac4c4ac637e7586ac6e9d2f41a863f80720517050dc9c72efc8f7f3b9573
GET /seals/blue-seal-153-100-clickbank-5004291.png HTTP/1.1
Host: seal-boise.bbb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: image/png
content-length: 4344
cache-control: max-age=14400
expires: Sun, 23 Oct 2022 00:04:13 GMT
last-modified: Sun, 02 Oct 2022 22:47:17 GMT
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/fonts/fontawesome-webfont.ttf?v=4.7.0 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/fonts/fontawesome-webfont.ttf?v=4.7.0 IP69.172.200.220:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/css/font-awesome.min.css
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1; affiliate=mweb1; affiliate.sig=rfKq6aOMuQWS8IVkJyBXNQTCyWI
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: application/octet-stream
content-length: 0
last-modified: Tue, 04 Jan 2022 15:55:28 GMT
etag: "61d46df0-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 77792d509b03e0329f5e1369ee406a5e
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/css/bootstrap-glyphicons.min.css | 69.172.200.220 | 200 OK | 56 kB |
URL HTTP/2renewdentalsupport.com/css/bootstrap-glyphicons.min.css IP69.172.200.220:0
Hash7a8627faf9642ef95ece9713ebb74a34 a0e14d1b993b557b7e1837c1b3809ec29f4d4a15 09a06c34b4ded1c920be7b35b6e910f6562335a66b380549aa755f1c07e23d82
GET /css/bootstrap-glyphicons.min.css HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/css/style1.css
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:52:15 GMT
etag: W/"61d46d2f-2df4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: ce4821eb5f7c1f8cabd782d0af5ee05a
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=617611915773516&ev=PageView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068858&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&it=1666469068721&coo=false&rqm=GET | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=617611915773516&ev=PageView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068858&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&it=1666469068721&coo=false&rqm=GET IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=617611915773516&ev=PageView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068858&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&it=1666469068721&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.maxweb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 22 Oct 2022 20:04:13 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=338281687895473&ev=PageView&dl=https%3A%2F%2Frenewdentalsupport.com%2Fstart%3Fhop%3D_removed_%26subid%3D1202%26_filteredParams%3D%257B%2522unwantedParams%2522%253A%255B%255D%252C%2522sensitiveParams%2522%253A%255B%252287a0acaec00fa34a3166f0b62b7352868c16752bf796a6af3baf0362c62361ed%2522%255D%257D&rl=&if=false&ts=1666469068891&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666469068888.1454961089&it=1666469068682&coo=false&rqm=GET | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=338281687895473&ev=PageView&dl=https%3A%2F%2Frenewdentalsupport.com%2Fstart%3Fhop%3D_removed_%26subid%3D1202%26_filteredParams%3D%257B%2522unwantedParams%2522%253A%255B%255D%252C%2522sensitiveParams%2522%253A%255B%252287a0acaec00fa34a3166f0b62b7352868c16752bf796a6af3baf0362c62361ed%2522%255D%257D&rl=&if=false&ts=1666469068891&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666469068888.1454961089&it=1666469068682&coo=false&rqm=GET IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=338281687895473&ev=PageView&dl=https%3A%2F%2Frenewdentalsupport.com%2Fstart%3Fhop%3D_removed_%26subid%3D1202%26_filteredParams%3D%257B%2522unwantedParams%2522%253A%255B%255D%252C%2522sensitiveParams%2522%253A%255B%252287a0acaec00fa34a3166f0b62b7352868c16752bf796a6af3baf0362c62361ed%2522%255D%257D&rl=&if=false&ts=1666469068891&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666469068888.1454961089&it=1666469068682&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 22 Oct 2022 20:04:13 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=617611915773516&ev=ContentView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068863&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=30&it=1666469068721&coo=false&exp=a1&rqm=GET | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=617611915773516&ev=ContentView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068863&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=30&it=1666469068721&coo=false&exp=a1&rqm=GET IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=617611915773516&ev=ContentView&dl=https%3A%2F%2Fgo.maxweb.com%2Fconversion%2Fiframe%2F%3Fa%3D7129%26token%3Dc18c63d75e056190574a1a4c170f5585&rl=https%3A%2F%2Frenewdentalsupport.com%2F&if=true&ts=1666469068863&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=30&it=1666469068721&coo=false&exp=a1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.maxweb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 22 Oct 2022 20:04:13 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash06210a4a9db522652fd6aabfa05b2653 630b4ef71ec82a3970927a328d279035eaaa1267 5100e1703020fdef7d473c91e1c88dfb734083057f431feeefaaa24838990a21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash78f2476e0e57d3c337ba3e29aafe7c32 8ca483064a69de5aef97b32126cb95c13dbd33c4 33459d0c1860c80ee0159e476727a4fb0e704de2c71ad01fdd5761702f90a0c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.166 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.166:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 19:58:39 GMT
expires: Sat, 22 Oct 2022 20:13:39 GMT
cache-control: public, max-age=900
age: 335
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.130 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.130:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 22 Oct 2022 20:04:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash06210a4a9db522652fd6aabfa05b2653 630b4ef71ec82a3970927a328d279035eaaa1267 5100e1703020fdef7d473c91e1c88dfb734083057f431feeefaaa24838990a21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe3ae8884dbbabf14b5929dbc3b512794 de6193115a075ac52ce357860db2e2ef9a83be8f b28c05d5d828380e6afebdb13654fa0c2acdd6a074df31f17930612195eae656
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 22 Oct 2022 20:04:14 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashbcf48eba9bdad5a32871b65c70abcf1a 3d4fc6b752ebc65daf075f1f6193e80496a2ce91 37cb2fdeace86beae56f9e0090bad1afec1948126a4d4c835b2d028423dc8407
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 22 Oct 2022 20:04:14 GMT
server: ESF
cache-control: private
content-length: 30987
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash60fcf0b588f9927fde2759de6b3e3fed f564b9ea498a878638fa3a374bf6fdfe468559ad ae3eb07b4b347d54014f24971dafb4dccbc009c397caec6a78403e92e65f3cbc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/js/th/wjh_uz0vV4kvmBh32RTA-9oL3vnIf1WTq69pxsOy-vU.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/wjh_uz0vV4kvmBh32RTA-9oL3vnIf1WTq69pxsOy-vU.js IP142.250.74.164:0
File typeASCII text, with very long lines (36203) Hash7fad220f08527f2421ab50b585cd9197 50926e20c7975ba47a898b51202a48985a00d17c d2aa2b28a64c445da3f8dba666d9a7cb3869634b4e88b0d00939f30d0facba30
GET /js/th/wjh_uz0vV4kvmBh32RTA-9oL3vnIf1WTq69pxsOy-vU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14314
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 14:11:02 GMT
expires: Sat, 21 Oct 2023 14:11:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 11 Oct 2022 09:30:00 GMT
content-type: text/javascript
age: 107592
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashf96ac762d30b83cae7295985490c2cae 89d68d84b4e07c646faaf2963a1ffb8138fd032c 77516306cb47126a2241789eb352056a45b3068d8145a66e1001264822c14b7e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 22 Oct 2022 20:04:14 GMT
server: ESF
cache-control: private
content-length: 31139
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashf5a0403c34dd256feacb1af3a533cac1 f0433e15b73b22d61caff3a718a2ec745bdf7421 ca62e818ba50bcf980f8fca10ded9c1f190d0909ddc8d3de32b76eb7a9d99204
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/ytc/AMLnZu8uSlM8nmgMwvM4f_y23cTJndgehw3M3G2hZdH16w=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.3 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu8uSlM8nmgMwvM4f_y23cTJndgehw3M3G2hZdH16w=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data Hashc419adb9aea05dbf68cb497bc4ba5618 1a7c93f0dfe5ad8f965b5bdd235d73ac3c5f978d 900ed7efc1f63c2740b04317c41a7167236ef0542c2c9f840057266323f7e98b
GET /ytc/AMLnZu8uSlM8nmgMwvM4f_y23cTJndgehw3M3G2hZdH16w=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2338
x-xss-protection: 0
date: Sat, 22 Oct 2022 19:04:44 GMT
expires: Sat, 08 Oct 2022 20:46:32 GMT
cache-control: public, max-age=86400, no-transform
age: 3570
etag: "v2710"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash82e1fb2837307446cd302daaa4aa6424 ecd26b044c1c0a86696b5abdbea7f99f3417d42f efc4ec157b10442ff47f10d75ae2cab3ea285719bd9615186b69f8afdc2cc9de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash82e1fb2837307446cd302daaa4aa6424 ecd26b044c1c0a86696b5abdbea7f99f3417d42f efc4ec157b10442ff47f10d75ae2cab3ea285719bd9615186b69f8afdc2cc9de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash2f92e194fd751a123c6d75cb30628e6e 1be6c632f4402240b95dd820cc96987f9b1a95a3 c26dd5239250b99337d76273e0d350ac70767dc1131384187c320720366483f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=242&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=video%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=37247100&dur=2701.406&lmt=1649000873106566&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5437434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIkURVF8xKxe7XLm1_CV51FLSDCfXUnALDHUJy1hHnBcAiALPwoVGrWvO0GLI6rKvFhGSvkvZwytPtVqjBD3lwnahw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-109619&rn=1&rbuf=0 | 91.90.45.172 | 200 OK | 110 kB |
URL HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=242&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=video%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=37247100&dur=2701.406&lmt=1649000873106566&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5437434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIkURVF8xKxe7XLm1_CV51FLSDCfXUnALDHUJy1hHnBcAiALPwoVGrWvO0GLI6rKvFhGSvkvZwytPtVqjBD3lwnahw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-109619&rn=1&rbuf=0 IP91.90.45.172:0 ASN#50304 Blix Solutions AS
File typeWebM\012- EBML file, creator webmB\20\012- data Size110 kB (109620 bytes) Hash3b8942fc10f150f0c0ea0486d7f3aff8 f629e67cfb0a5ffa7457d18cc54efaad6672dffc 09974f8ab8e356e2418c8d475a2f30624c90be22dda5ad014ed824bf1a7caacd
GET /videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=242&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=video%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=37247100&dur=2701.406&lmt=1649000873106566&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5437434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIkURVF8xKxe7XLm1_CV51FLSDCfXUnALDHUJy1hHnBcAiALPwoVGrWvO0GLI6rKvFhGSvkvZwytPtVqjBD3lwnahw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-109619&rn=1&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 03 Apr 2022 15:47:53 GMT
Content-Type: video/webm
Date: Sat, 22 Oct 2022 20:04:14 GMT
Expires: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 109620
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash82e1fb2837307446cd302daaa4aa6424 ecd26b044c1c0a86696b5abdbea7f99f3417d42f efc4ec157b10442ff47f10d75ae2cab3ea285719bd9615186b69f8afdc2cc9de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=251&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=audio%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=49503965&dur=2701.421&lmt=1649000035450225&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5432434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAO435dt_5XqYl83Y4ohThyXMvlhzhW8m4KtU0F_U3ra9AiEA0MaXOTEWXDVP6TPYoXMQTwLQnlsfe8k-dV5rlaAFVR4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-70583&rn=2&rbuf=0 | 91.90.45.172 | 200 OK | 71 kB |
URL HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=251&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=audio%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=49503965&dur=2701.421&lmt=1649000035450225&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5432434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAO435dt_5XqYl83Y4ohThyXMvlhzhW8m4KtU0F_U3ra9AiEA0MaXOTEWXDVP6TPYoXMQTwLQnlsfe8k-dV5rlaAFVR4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-70583&rn=2&rbuf=0 IP91.90.45.172:0 ASN#50304 Blix Solutions AS
File typeWebM\012- EBML file, creator webmB\20\012- data Hash3c1a86aaa14272db94b61a4b22d4a0cd bb0caae25a751dced62b4450aa8086ddfe4d3e5f 29f0f42df2ddfc84f58ea9d91d92df88c8d6eac7f7f7e70df6c6ed070a841fbc
GET /videoplayback?expire=1666490654&ei=vkxUY-a4GoO7yQXF9o-4BA&ip=91.90.42.154&id=o-AEbhPCABVWP1SSFafNeJruxaMZ9MWS6-q6g1rRXzcgR9&itag=251&source=youtube&requiressl=yes&mh=pE&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1402500&spc=yR2vp2gj1dESIpId8Zw9Bdc91UYjTqo&vprv=1&mime=audio%2Fwebm&ns=xRcCYZoRPWQrwyGC8oHmyigI&gir=yes&clen=49503965&dur=2701.421&lmt=1649000035450225&mt=1666468642&fvip=3&keepalive=yes&fexp=24001373%2C24007246&beids=24277544&c=WEB_EMBEDDED_PLAYER&txp=5432434&n=zGov2D3jJI389g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAO435dt_5XqYl83Y4ohThyXMvlhzhW8m4KtU0F_U3ra9AiEA0MaXOTEWXDVP6TPYoXMQTwLQnlsfe8k-dV5rlaAFVR4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXSXd_wLGR6soR2Du9LSmlqXhCzQKlKMdjSyp_20mqzICIFRRYZh-3vT_P0ztQQ7F8Vd5jLfZ7J3xEv989rsDYus9&alr=yes&cpn=ZSoMNYBVqHL6LqnD&cver=1.20221018.01.00&range=0-70583&rn=2&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 03 Apr 2022 15:33:55 GMT
Content-Type: audio/webm
Date: Sat, 22 Oct 2022 20:04:14 GMT
Expires: Sat, 22 Oct 2022 20:04:14 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 70584
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| renewdentalsupport.com/start?hop=mweb1&subid=1202 | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/start?hop=mweb1&subid=1202 IP69.172.200.220:0
GET /start?hop=mweb1&subid=1202 HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: user_id=288469c2409ebdd823759b1a337dc7f8; path=/; expires=Fri, 22 Oct 2032 20:04:11 GMT; secure
user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; path=/; expires=Fri, 22 Oct 2032 20:04:11 GMT; secure
persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
uid=wKhaAmNUTLuU4QBFA2h4Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
cnid=1; path=/
content-security-policy: frame-ancestors 'self' cbsplit.com;
content-encoding: gzip
cache-control: private
x-dis-request-id: c0c8165a55be9fc121282bf017b34684
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/css/bootstrap.min.css | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/css/bootstrap.min.css IP69.172.200.220:0
GET /css/bootstrap.min.css HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:31:57 GMT
etag: W/"61d4686d-235ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: b2e8d110ad8a765e79c0ab993a4f4d7d
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/js/jquery-1.11.0.js | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/js/jquery-1.11.0.js IP69.172.200.220:0
GET /js/jquery-1.11.0.js HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: application/javascript
last-modified: Tue, 04 Jan 2022 15:31:15 GMT
etag: W/"61d46843-1787c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: cae6d65e03bc0258012aefd99c2f8300
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/css/popup.css | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/css/popup.css IP69.172.200.220:0
GET /css/popup.css HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:31:56 GMT
etag: W/"61d4686c-1b50"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 906e1eb30ca98d72ad4758a1ac5710c8
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/js/bootstrap.min.js | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/js/bootstrap.min.js IP69.172.200.220:0
GET /js/bootstrap.min.js HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: application/javascript
last-modified: Tue, 04 Jan 2022 15:47:50 GMT
etag: W/"61d46c26-bf30"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 6df161d32c9d1cd3892ec927d57fa063
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| prod.cbstatic.net/dist/injectable.js | 143.204.55.111 | 200 OK | 0 B |
URL HTTP/2prod.cbstatic.net/dist/injectable.js IP143.204.55.111:0
GET /dist/injectable.js HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 22 Oct 2022 08:41:15 GMT
last-modified: Mon, 21 Dec 2020 21:57:37 GMT
x-amz-version-id: RdcimFzJWwtinCAQ.f3F8OeQrj2.m2uJ
etag: W/"af651c30e1a69f6f2124e9c1d094a300"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1VyV1WsH5SHebIQsm3MMLQr_ERSDahCADPw2m4pJEA-Nw8vvXvRVeA==
age: 40978
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/css/style1.css | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/css/style1.css IP69.172.200.220:0
GET /css/style1.css HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:12 GMT
content-type: text/css
last-modified: Tue, 11 Jan 2022 14:33:09 GMT
etag: W/"61dd9525-5183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 049102aeb996c45489cd813a645f65b3
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| renewdentalsupport.com/favicon.ico | 69.172.200.220 | 200 OK | 0 B |
URL HTTP/2renewdentalsupport.com/favicon.ico IP69.172.200.220:0
GET /favicon.ico HTTP/1.1
Host: renewdentalsupport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/start?hop=mweb1&subid=1202
Cookie: user_id=288469c2409ebdd823759b1a337dc7f8; user_id.sig=pTC2gEAGqAXXuRCzcDesSxAx3rI; uid=wKhaAmNUTLuU4QBFA2h4Ag==; cnid=1; affiliate=mweb1; affiliate.sig=rfKq6aOMuQWS8IVkJyBXNQTCyWI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 20:04:13 GMT
content-type: image/x-icon
last-modified: Tue, 11 Jan 2022 15:39:20 GMT
etag: W/"61dda4a8-47e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 5fb4ee9cbe62de866e18a93146052717
server: DOSarrest
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap IP142.250.74.10:0
GET /css2?family=Montserrat:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewdentalsupport.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Oct 2022 20:04:12 GMT
date: Sat, 22 Oct 2022 20:04:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|