getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
67.227.198.234301 Moved Permanently 316 B URL HTTP/1.1 getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9ab706d2583f394ffa5e76eadee58bf6
c9edb79ba00bd491b94682b9ec203d577c430915
057ce20bb96b8139a5351999205b85f4a962011e1121126d3f23cc90264e1a95
GET /discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 21:21:22 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Location: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Content-Length: 316
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6940
Expires: Wed, 28 Sep 2022 23:17:02 GMT
Date: Wed, 28 Sep 2022 21:21:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 20:37:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g7DNmQaIbOsP1SV5KxAZGoz5HTkv9psEGxBsrEzA-lDLARclmD1Ujw==
Age: 2658
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _O9EuMbpTpYqS1XMDOBNy_xKyIIVvJNup4BstocxyWlxd7pxyyU-og==
age: 57177
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 21:21:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
151.101.85.229200 OK 23 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (65324)
Hash f861342796feb5c1a463b5097ac9c57b
edb9ccd611b1763c4b432c68c510b9e3d9a07c33
36844fca25837b632c2a35cb10ecb41a3d4d169bb6b90d508adc7ced9586b01e
GET /npm/bootstrap@4.2.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"2565e-Oum7DnkpSJq9I3Nq6JKTnI/phkU"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 21:21:23 GMT
age: 2571231
x-served-by: cache-fra19179-FRA, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22966
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
151.101.85.229200 OK 15 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (55494)
Hash 3a23cd494f2294febc5ab709de787492
b304fe0fa818fe19621c3f7e03378907a631b17e
2283c0ea76acf6f96c40bf272fa4143a564ca2d4d7b47bf97cf86526b275a3ba
GET /npm/bootstrap@4.2.1/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"d9df-3pCMntGE1061Jfp6MESbZ/w6HBQ"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 21:21:23 GMT
age: 2574258
x-served-by: cache-fra19175-FRA, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14551
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 20:29:34 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 21:10:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9jkEiouyjZBWPlGor0apTHbPUNvR4UxMGXrKuLyXmTPtyhwmr_JD6g==
Age: 3110
cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
151.101.85.229200 OK 30 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (32058)
Hash 20532f68850fbf98301ee064978fe500
baa841180e3a637eec908fbe16446a1d3270c6f8
421607c7298f63a23569c71a3269c5ae3cfe15a36290039735c3ae3533de2c68
GET /npm/jquery@3.2.1/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.2.1
x-jsd-version-type: version
etag: W/"15283-EFUBjCirQQh++czv5BFgaJPavqI"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 21:21:23 GMT
age: 2270026
x-served-by: cache-fra19167-FRA, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30180
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8eb56ca84ce38713c2575c9d5506eabe
294a9ea859390bfe5d73cf810eefae10bf0f2f5e
6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
151.101.85.229200 OK 7.1 kB URL HTTP/2 cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (30837)
Hash c68c38b6f53bfc3bee6b736afa488757
871df21572c702142a7c237259326013ec2df26a
e2100c6e7b6f0d358ac92d33b11278661c9a80e4c62c056677e24bc572d6da34
GET /npm/font-awesome@4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"7918-USx9eQM+MCipvmG1QM8aaHDIlvg"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 21:21:23 GMT
age: 1208399
x-served-by: cache-fra19165-FRA, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7055
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8eb56ca84ce38713c2575c9d5506eabe
294a9ea859390bfe5d73cf810eefae10bf0f2f5e
6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash e13a02496ef7b9bd2078574934e1e2ca
257dedf2641241e29c4179d8974fc53f0034229b
04c5aa3a92287a61036d5a8322cbc46a9ed0abf1c3ed27411536838a02dfd2df
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:23 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "87F303F2642A1A0D769B61994B7502578585A5CA"
Expires: Thu, 29 Sep 2022 08:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2223
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751f874b1a80b52d-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8eb56ca84ce38713c2575c9d5506eabe
294a9ea859390bfe5d73cf810eefae10bf0f2f5e
6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5468
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Last-Modified: Wed, 28 Sep 2022 19:50:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 10163142de47e341a261fb1cc21e85bd
36b9adbb2df1843f4a6995833b1999b609bf56ed
9fd70e1dd91b24284547587848bebc8514df9f4ed745616fe75fe5de4e3e0e82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2805
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Last-Modified: Wed, 28 Sep 2022 20:34:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
67.227.198.234200 OK 98 kB URL HTTP/1.1 getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (899), with CRLF, LF line terminators
Hash 16990988f16ef4af9b5c15ce314a408d
23852232a02d9b9b6090c6b7cca512bb15240b0e
cc147220b793f81b079c5a647abbbb486ea77c119320e5154995107a9e9fd80c
GET /discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:23 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
getglucotrust.me/js/bounceback.min.js
67.227.198.234200 OK 2.8 kB URL HTTP/1.1 getglucotrust.me/js/bounceback.min.js
IP 67.227.198.234:0
File type ASCII text, with very long lines (2756), with CRLF line terminators
Hash 928ec014586629db7d8b4ad49c4bc93c
b436801b50738cca53b78e5c9e459495f26da5c9
1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282
Analyzer Verdict Alert fortinet Phishing
GET /js/bounceback.min.js HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:23 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Wed, 08 Sep 2021 15:39:06 GMT
ETag: "51ce9a-b20-5cb7daeb4fa80"
Accept-Ranges: bytes
Content-Length: 2848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
getglucotrust.me/style.css
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/style.css
IP 67.227.198.234:0
Hash 4600a875cbd599ba9f4c28222ef98065
3e3f9ea19b715aad333403e7bb46974b06355cf4
99647928529588b7e22232a06a4f3b90b8f7f6dbfc8b591445ba7fd91af797fe
GET /style.css HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:23 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 06:02:17 GMT
ETag: "51cebb-2b30-5d16e7bca0c40"
Accept-Ranges: bytes
Content-Length: 11056
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:40:23 GMT
expires: Thu, 28 Sep 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 6061
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.163200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:31:00 GMT
expires: Thu, 28 Sep 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 6624
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:32:09 GMT
expires: Thu, 28 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 6555
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:30:59 GMT
expires: Thu, 28 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 6625
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
getglucotrust.me/images/lesslie.jpg
67.227.198.234200 OK 27 kB URL HTTP/1.1 getglucotrust.me/images/lesslie.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 158c17c07a5e54fde7cf9d65de12dc9a
d33cf6ac8b1683acd31052a30f556ddba0b90c22
8d71208abab5f29dbc6d689dedab30d1bff9e99c7bbf83b8cec8b65dec2e6a2d
GET /images/lesslie.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cded-69f7-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 27127
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/glucotrust/payment-icons.png
67.227.198.234200 OK 3.7 kB URL HTTP/1.1 getglucotrust.me/glucotrust/payment-icons.png
IP 67.227.198.234:0
File type PNG image data, 315 x 76, 8-bit colormap, non-interlaced\012- data
Hash abec110a199f93c621dd12d5b8a3b6cf
9c96f6366ee3acfcafb84cde07b3ead09894d5fe
7a9bb60c6e2c926f9d1277648f551538a2df88eaf83342b293074cd3ac9c1fc2
GET /glucotrust/payment-icons.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:12 GMT
ETag: "519c21-e56-5ddafa942a630"
Accept-Ranges: bytes
Content-Length: 3670
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/great-value.png
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/images/great-value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 122, 8-bit/color RGBA, non-interlaced\012- data
Hash 12d7087196d3440fa24b36ae34bae649
ef955a957ac4323298d3123b9ad4e18f7789c55a
96f38f779f71616743f605c20a839096b02eb80611694cfdcc02dde9c5fb4aae
GET /images/great-value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc1-2a49-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 10825
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/best_value.png
67.227.198.234200 OK 10 kB URL HTTP/1.1 getglucotrust.me/glucotrust/best_value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 187008a4e7d351c042f9d7622312f9e2
7d23ade8847cfffcf0a15e5ca06c7d6726a47956
839e08dd077b29cdcff873ce9d21d070e3e1178f043a09b21fa2d2a82c0ed7e5
GET /glucotrust/best_value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:06 GMT
ETag: "519c14-27fb-5ddafa8e82638"
Accept-Ranges: bytes
Content-Length: 10235
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/atc-1.png
67.227.198.234200 OK 7.0 kB URL HTTP/1.1 getglucotrust.me/images/atc-1.png
IP 67.227.198.234:0
File type PNG image data, 358 x 89, 8-bit colormap, non-interlaced\012- data
Hash 68c2993c80c6a81e458afc917e14c1f6
eb3d52430277f6bb00840b92d38410753110c3a7
8391079e9917034c6ed2cbc2d8fea76882b9d537738567db83f3c9b92e96e72d
GET /images/atc-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd29-1b88-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 7048
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:30:59 GMT
expires: Thu, 28 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 6625
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.92.18101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.92.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gcpuo4AA3r+3yDu9M0GVpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RXxV+x4mCB+PFwyqYLjo9Yp7a10=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 21:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lizswannmiller.com/social-proof/gluco-trust/3bottle.js
67.227.198.234200 OK 2.4 kB URL HTTP/1.1 lizswannmiller.com/social-proof/gluco-trust/3bottle.js
IP 67.227.198.234:0
Hash d02e366eab353ba3c5dad95d29486770
e2826c4c48b50a5492a738df2d2206dc75d5e1ad
bfc7c4c521716b2a7101cdd97b532c543f1445b5792da0d805e64fe77a63a46a
GET /social-proof/gluco-trust/3bottle.js HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Mon, 05 Jul 2021 10:55:46 GMT
ETag: "1c0daa-963-5c65e25c37428"
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
getglucotrust.me/images/dave.png
67.227.198.234200 OK 33 kB URL HTTP/1.1 getglucotrust.me/images/dave.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 3e117397121639f822f1920bbfec4d60
4f4a0cc6a43a4e27fb19bca23e597b1a6baf3f86
ec6b2c2607c54a8a4cf050664356ca3aa7bcb592ae46567641cddb3d04903135
GET /images/dave.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:24 GMT
ETag: "51cd87-7fe7-5d17228c48d00"
Accept-Ranges: bytes
Content-Length: 32743
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/icon-man.png
67.227.198.234200 OK 5.1 kB URL HTTP/1.1 getglucotrust.me/images/icon-man.png
IP 67.227.198.234:0
File type PNG image data, 108 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b5040cf26dbe5820987b7573d9a2f5d
cbf40dc36a64ee839b6dcddf4676942041b2fca3
c92f673bfa45a5b598c4eede6e19da2da70d407849dbf3bed8fdaf7a681eaede
GET /images/icon-man.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd21-1402-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 5122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/cathy.jpg
67.227.198.234200 OK 21 kB URL HTTP/1.1 getglucotrust.me/images/cathy.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611f787be0fb38aaf88796c096f69463
cd315f8e7c5e02f5b1cd5221c8b87a9de11ec24f
28a5c4b2abc59624c5f703ef966167fe05cc731a0311434ffc7423e23430e876
GET /images/cathy.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdcf-5091-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 20625
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=
172.66.40.234200 OK 573 B URL HTTP/2 tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=
IP 172.66.40.234:0
File type ASCII text, with CRLF line terminators
Hash eeff78e472323390d4c44d756992d860
bc000908c486e51b57ed7c133f24e409d94412d0
e5affa5516cffa5996d8ca4e38aadf3ea00555479803e112a6d5d17bf4fe0850
GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2= HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 751f874cbcf30b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
getglucotrust.me/images/MBG.png
67.227.198.234200 OK 40 kB URL HTTP/1.1 getglucotrust.me/images/MBG.png
IP 67.227.198.234:0
File type PNG image data, 355 x 355, 8-bit colormap, non-interlaced\012- data
Hash 2f19e5d4473c4ec411ac0295d52fb187
6db2475ced9dae0fe46b3428a85307f420d4d396
1e384ca6d3d8d8279995ca77c3e3f8fd13106b0839fdae795e5b5b8b9ae52e2e
GET /images/MBG.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccc2-9bce-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 39886
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/sharon.jpg
67.227.198.234200 OK 19 kB URL HTTP/1.1 getglucotrust.me/images/sharon.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 011ec7e4c020d8e707b7baf1ffb3f4d4
0a9ff9c94443ebdec6584c1870df8ddd5153d805
f9f5f31a444e4c990d295f31fc01156df60a76bde89c4fd3c9f21911c26b9eb8
GET /images/sharon.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccf2-4a59-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 19033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/glucotrust/Glucotrust-1-add.png
67.227.198.234200 OK 78 kB URL HTTP/1.1 getglucotrust.me/glucotrust/Glucotrust-1-add.png
IP 67.227.198.234:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d03634d9b904321bac38acb827e33d19
881dc999f975608e2f851608a5411d140d13decd
ddabf7717e29126a45ec7d0c28966dee413aff5ecae502be363765c7c4c003d4
GET /glucotrust/Glucotrust-1-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:09 GMT
ETag: "519c1c-12ead-5ddafa9167d80"
Accept-Ranges: bytes
Content-Length: 77485
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/carl.png
67.227.198.234200 OK 30 kB URL HTTP/1.1 getglucotrust.me/images/carl.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 29348b4eb2cbe53f2ec87061dfb4dffc
19ad0691005733c296a751e2243e50e1945d7f3c
040f94a96f19b55290f43bbbd3566505b3bdd4b0f92d69093c8129d63683ef90
GET /images/carl.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd25-73f9-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 29689
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/tina.jpg
67.227.198.234200 OK 25 kB URL HTTP/1.1 getglucotrust.me/images/tina.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611ab6a42b1abf4848720bb5eea5b47a
080db01d0fbcfbe83213556fe2eeb74be37511cc
c29401fa52410bd8ba4c24531051e85b0bcac7885725304fb3c296924a5230a9
GET /images/tina.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc3-617f-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 24959
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/glucotrust.png
67.227.198.234200 OK 37 kB URL HTTP/1.1 getglucotrust.me/images/glucotrust.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 53cfcb39e348b241bb569be45143b5d8
0abcdb57812052155f1f7eb250d68a1d2500d901
c01480ae798b31763d796108f27fa01687a9a327c48e71709e4e959645af91f2
GET /images/glucotrust.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:21 GMT
ETag: "51ce31-91e9-5d3c99ab51840"
Accept-Ranges: bytes
Content-Length: 37353
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 196 kB URL HTTP/1.1 getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 196 kB (195998 bytes)
Hash 26a130aee3d414211206d19e145b0a7c
ad41d34bf6df6bd41b49803ef4b88293990f307c
e2be3110ec3740f65e3665a7d8c72ea0a819af0ac7f8e9fbb58a93ed251ebaa4
GET /glucotrust/3-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0c-2fd9e-5ddafa8bafbb8"
Accept-Ranges: bytes
Content-Length: 195998
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/night-reset.png
67.227.198.234200 OK 38 kB URL HTTP/1.1 getglucotrust.me/images/night-reset.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 51a3a329948e7e8898c0a8c41b574317
cfb3ae7f51f06dba1e693051fe87ec4cefd2b5d2
8c4eb614a7e798e4de91e1dc248150210eaa1a61e3460a06da850b666293eef6
GET /images/night-reset.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:28 GMT
ETag: "51cd15-9401-5d3c99b1fe800"
Accept-Ranges: bytes
Content-Length: 37889
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/365-detox.png
67.227.198.234200 OK 28 kB URL HTTP/1.1 getglucotrust.me/images/365-detox.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash cbd38301847e02b324a846f78d52e7e5
3ffd514da6fb3c1ebd3f4ac94f738474f811ccd9
c9a7cb9f404a032a1b118583f67039670b40fd96da7172c8b90861e06664974d
GET /images/365-detox.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:11 GMT
ETag: "51ce23-6d64-5d3c99a1c81c0"
Accept-Ranges: bytes
Content-Length: 28004
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 172 kB URL HTTP/1.1 getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 172 kB (172441 bytes)
Hash a3d16efe395db4a4fa5efb51cc3b7649
f0ea95f994eeb5582f9eab96eb6c74a85a0b269f
b524a3ffe3077d3da64e9a457eac4ea8fe4f86913b5f65d9bcfa27b88271dffc
GET /glucotrust/6-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0e-2a199-5ddafa8bb9fc8"
Accept-Ranges: bytes
Content-Length: 172441
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/gtrust-1.png
67.227.198.234200 OK 91 kB URL HTTP/1.1 getglucotrust.me/images/gtrust-1.png
IP 67.227.198.234:0
File type PNG image data, 300 x 588, 8-bit/color RGBA, non-interlaced\012- data
Hash cf9ec0841bfaabe6f228f3c4146af775
f57be27f37aa6c3425d61b2f788e95b4c1bd040b
1b590ebee0c1adace4f629c87f52fd244159447b65f3881133eb12f54d9bf1d1
GET /images/gtrust-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd0d-163ec-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 91116
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/favicon.png
67.227.198.234200 OK 22 kB URL HTTP/1.1 getglucotrust.me/images/favicon.png
IP 67.227.198.234:0
File type PNG image data, 320 x 246, 8-bit/color RGBA, non-interlaced\012- data
Hash 61b181bb52538ccc14223673337d3749
47bc04f230809896515b3ee4f36200e8a870b239
1fc5cad9875d157c654813ee74ea41ac9cab2678b445dbe9f683d5036536aa19
GET /images/favicon.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery/?aff_id=318&subid=10362&subid2=XMclleprmltvb&subid3=517426713
Cookie: visitor_name=old
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:24 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd02-5748-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 22344
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
151.139.128.11200 OK 4.7 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
IP 151.139.128.11:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash abace24d047031da912f090b739571fb
fe031474a108bb50ed558193a30c6a99c7d43306
966f54e46d2c696ba7d416f596d482b46b5e23dcdcbac258d8419a8594dd9ce7
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Tue, 26 Oct 2021 09:57:25 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvI7uDYQySNqp_WSx91fAFP4-7wLxotNFqr41smyWIugov_2Sg-vWhLDyedd7dOe8Vb1zG17y5Ht5GF0vDCidsqrg
x-goog-generation: 1635242245257388
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=eL7dqQ==, md5=q6ziTQRwMdqRLwkLc5Vx+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "abace24d047031da912f090b739571fb"
age: 1059
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds065.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 223e48478bf943631163f5d0d469bdc7
53a31c9f97e30a20a87095f144d4d5d31790b5b7
9b1ca232e570984146132ed74083f46cfa341c75150b5cbe7c28d650f98de758
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 21:21:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 19:40:07 GMT
Expires: Thu, 29 Sep 2022 19:40:07 GMT
ETag: "53a31c9f97e30a20a87095f144d4d5d31790b5b7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 103
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:24 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 223e48478bf943631163f5d0d469bdc7
53a31c9f97e30a20a87095f144d4d5d31790b5b7
9b1ca232e570984146132ed74083f46cfa341c75150b5cbe7c28d650f98de758
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 21:21:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 19:40:07 GMT
Expires: Thu, 29 Sep 2022 19:40:07 GMT
ETag: "53a31c9f97e30a20a87095f144d4d5d31790b5b7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
151.139.128.11200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
IP 151.139.128.11:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 4f3d84d2d528408dfe561eb3d1dd7e1e
ee2797b545300bda74178a1d9b23f4644010fa23
9d19d8e0f9ef924887894759458dbbf61baa018fb750e9d5d1b1159cc472df07
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:53 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtQyCao_LZfOgCXP92kVCU7vkl8xC3ZEjgSs3Y_XtsyZy1FaTgSDscOmZGiULVJEIPPigyPwGLGeyId7G91m9fSGa21VQCl
x-goog-generation: 1635241733761536
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=bNOOUA==, md5=Tz2E0tUoQI3+Vh6z0d1+Hg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "4f3d84d2d528408dfe561eb3d1dd7e1e"
age: 773
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds210.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1243
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:24 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=sBLUNzmU
107.178.211.97200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=sBLUNzmU
IP 107.178.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=sBLUNzmU HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 28 Sep 2022 21:21:25 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, public, max-age=2592000
etag: "sBLUNzmU/ChC6Mq2rsCLRaq71"
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
x-envoy-upstream-service-time: 23
access-control-allow-origin: *
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 147
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10473
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 21:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10473
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 21:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10473
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 21:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10473
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 21:21:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yprErfM7s7P7jJPJT-HQZ2Z_AAN4946Tjwyn1g4r7yiA6IF0yLdQTQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:22:11 GMT
age: 57554
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 84747
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:39:01 GMT
age: 85344
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 84681
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 84922
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 84767
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 223e48478bf943631163f5d0d469bdc7
53a31c9f97e30a20a87095f144d4d5d31790b5b7
9b1ca232e570984146132ed74083f46cfa341c75150b5cbe7c28d650f98de758
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 21:21:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 19:40:07 GMT
Expires: Thu, 29 Sep 2022 19:40:07 GMT
ETag: "53a31c9f97e30a20a87095f144d4d5d31790b5b7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
151.139.128.11200 OK 142 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
IP 151.139.128.11:0
Size 142 kB (141872 bytes)
Hash 0efe32a3d51ac33dea20b21e3192ed4c
84cd6e318ce2c38b0f0ed30919c87e14ac0df994
6d8b04775ab140d3e2de28b68aea8e4f8207b959463ea4525121893569fd4d5c
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 141872
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduVu2rILdDr_wmy5Fb_CAxxmNAVCqhsEkR9j8gmdYa6Mv2UmXLol_uqZa6nGX7GnO-Zq0YBuOcDmaYlYRsozfkk7Osw0Iel
cache-control: public, max-age=31104000
etag: "0efe32a3d51ac33dea20b21e3192ed4c"
x-goog-generation: 1635241759020672
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141872
x-goog-hash: crc32c=ZicahA==, md5=Dv4yo9Uawz3qILIeMZLtTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds215.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County
67.227.198.234200 OK 7 B URL HTTP/1.1 lizswannmiller.com/social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County
IP 67.227.198.234:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST /social-proof/recordVisit.php?locationInfo=Oslo,%20Oslo%20County HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 21:21:25 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 410
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 16
x-envoy-upstream-service-time: 1
access-control-allow-origin: *
server: istio-envoy
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
151.139.128.11200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
IP 151.139.128.11:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtOrlGStWAXgunEQNOFc8dZDU0ozBYQm9j453pLfubY7frEtF5Tt27vzIcvL45wgLu0vxjEgrIdyx0cvJPRW-ug-XrV_xId
x-goog-generation: 1635241734900204
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
age: 1090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds017.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 112
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Wed, 28 Sep 2022 21:21:25 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 543
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 16
x-envoy-upstream-service-time: 1
access-control-allow-origin: *
server: istio-envoy
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 16
x-envoy-upstream-service-time: 0
access-control-allow-origin: *
server: istio-envoy
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
151.139.128.11200 OK 453 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
IP 151.139.128.11:0
Size 453 kB (452963 bytes)
Hash 503dabff6a8c19e003b8d50a87955024
8fff1767eecbeee2a02b8c7f932e099c683c6e12
2f63c517550b5278c4c29babe84792c12e3ec58c1960829ef3456738e376d916
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 452963
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvLSCjpLZ2n910sD7_tpiE_rNorl5uhG_Mgm4RjXKNEH81vcM77wl2wAPyE8U9QuITAoWwYQZ7SX2fOzVVhZmSoAg
x-goog-generation: 1635241759821716
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 452963
x-goog-hash: crc32c=+f4GVw==, md5=UD2r/2qMGeADuNUKh5VQJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "503dabff6a8c19e003b8d50a87955024"
age: 1090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds003.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
151.139.128.11200 OK 501 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
IP 151.139.128.11:0
Size 501 kB (500741 bytes)
Hash 4c9ae4acf4f41c4141a868ef8928c500
4312e0a0ae930f79a93b38ee2a643af87ca1c491
53149be550b49003b97069c9530c655222737f4d78422f22c4b4308c65441ffb
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 500741
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:50:10 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu4Vkp2I-9jKji0e8JbOBG7tehV7KtQujARe1OnSs9m3y4GT6UJRf-PgHHc-v7kiiJlPSlS5ynJTtxHfxhYI2hGlA
cache-control: public, max-age=31104000
etag: "4c9ae4acf4f41c4141a868ef8928c500"
x-goog-generation: 1635241810385100
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500741
x-goog-hash: crc32c=G1mmkA==, md5=TJrkrPT0HEFBqGjviSjFAA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds069.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
151.139.128.11200 OK 440 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
IP 151.139.128.11:0
Size 440 kB (440220 bytes)
Hash 2ce7ceeecec22620296b359f23daf34e
4967eeb2847fd5f13006de3f62f00b5d43cdf857
63c11ac2e648ad07644a3e5d99a14bd56455be889b2f98cb8fd6b9200cf404b6
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-length: 440220
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtPo0FgGzIy0z-7omoQqr9kW3KKJakh9wPY7BqrPlKaDHj5mKwk574wOlIrJlRXg4Wn_Sc_tl6hdyKkzGBUNwc3Sz_eLipV
cache-control: public, max-age=31104000
etag: "2ce7ceeecec22620296b359f23daf34e"
x-goog-generation: 1635241757315848
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 440220
x-goog-hash: crc32c=a0DuSw==, md5=LOfO7s7CJiApazWfI9rzTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400085.cds256.sk1.hn,1664400085.cds227.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1845
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:25 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm
151.139.128.11200 OK 492 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm
IP 151.139.128.11:0
Size 492 kB (491965 bytes)
Hash f03e4e195ed7d7047c3a3b9c5508edb3
3551a120e35a7c125d675d932ed8d2680195a76e
160bd0cbe90f159603bdc739329bd33539459e4e111faca9c2361f049ce8dd6f
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_4.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 491965
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:51 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycds6R6GZKX_ycUzW0-T6gnZONmLpDGnUshM9jPdeDj671MkLdxicNOtQYhHXHCwSsBJ54p7NTrWs19ceDtzB0cItjveIexhH
x-goog-generation: 1635241791214577
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 491965
x-goog-hash: crc32c=Wk1Ctw==, md5=8D5OGV7X1wR8OjucVQjtsw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "f03e4e195ed7d7047c3a3b9c5508edb3"
age: 1089
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds258.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1809
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:25 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1799
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:26 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm
151.139.128.11200 OK 447 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm
IP 151.139.128.11:0
Size 447 kB (447138 bytes)
Hash a9a33f9aa83b707543d950a95bcaf51a
59666d5532557034819d2298807261c2b7cd95c7
023b5b607c059d919776ff493343b225450fa56b15da92ca340bec031c4601a9
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_5.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 447138
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:47 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycds5zEQeMUaICl3OfU5u-qu6frC4TqR7bCPmGjedm3OOTjnotht0lYqpwhLTWwPqcDSjJqZ4lFMnTDhZlyObBfz5_w
cache-control: public, max-age=31104000
etag: "a9a33f9aa83b707543d950a95bcaf51a"
x-goog-generation: 1635241787837593
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 447138
x-goog-hash: crc32c=rySNnA==, md5=qaM/mqg7cHVD2VCpW8r1Gg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds238.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm
151.139.128.11200 OK 484 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm
IP 151.139.128.11:0
Size 484 kB (484518 bytes)
Hash c641d46daea5a95512488256e12f34fb
f43348e46e1f94c665b8ba9aa6d6c5e66da608e9
0ebe7539a9def9eda564a1a392f08b0146a81fdf809974abaa3622e660875739
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_6.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 484518
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvcgcRIeKIhCGNkwyPPmRLm7Q1hmiE-V7V0avHB7DjKHsXCX-OsPgLaOrhlh6rq_7kaIPOlfKs9Tqy5IQ6TFZmyXxM7DyGl
cache-control: public, max-age=31104000
etag: "c641d46daea5a95512488256e12f34fb"
x-goog-generation: 1635241757168366
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 484518
x-goog-hash: crc32c=9K0fMA==, md5=xkHUba6lqVUSSIJW4S80+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds219.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm
151.139.128.11200 OK 499 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm
IP 151.139.128.11:0
Size 499 kB (499123 bytes)
Hash 5b8eaabe4bdddebb428e5b1e959662b1
c07b14b836318ac88f718caffeb613871ee4fa50
abcea0e7876d37212369a56b1e81aa9ae77a8e04733015b76b2594fecb49213f
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_7.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 499123
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvMxY7w6gde0sGQE9sjxWr7y5AEJZGV_3B4lC6c-UHV-yzROjZ4uWjRAhR76BRSMkSybJVzXQRGErhPectsW2k7z49ZemlI
cache-control: public, max-age=31104000
etag: "5b8eaabe4bdddebb428e5b1e959662b1"
x-goog-generation: 1635241756875923
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 499123
x-goog-hash: crc32c=42Xo/w==, md5=W46qvkvd3rtCjlselZZisQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds251.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm
151.139.128.11200 OK 477 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm
IP 151.139.128.11:0
Size 477 kB (477148 bytes)
Hash 6644e390056c19c58731ea84f51c6919
a52cc3ab11508ce3e1a38a499d3e1a13fc8fd4f2
b163bdf3b287321d3737c41ae3de8d3bfd59a7f18d0e3b5fdcf09772a78dafb6
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_8.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 477148
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:16 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtaVqE7G7rdiMROiwX15AYgUK48TXjmjqreSRqqGD4EGWJtoX6bDzaG-F5yjdFu2MtkZEl5PHJ1o422dzO3o17kbroi9ucJ
cache-control: public, max-age=31104000
etag: "6644e390056c19c58731ea84f51c6919"
x-goog-generation: 1635241756513450
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 477148
x-goog-hash: crc32c=kDyJLw==, md5=ZkTjkAVsGcWHMeqE9RxpGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds229.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm
151.139.128.11200 OK 505 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm
IP 151.139.128.11:0
Size 505 kB (505398 bytes)
Hash fd066e69f546add1b29a973ea01db226
deaf496cba053030e8b4479124c311c0007b0c0e
975ea0d61146206d06070095f654a44df4dd167d19027cefd0db421893f22ffe
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_9.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 505398
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:52 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu427DdG4_3ONkGBerszL2NDijYMRVCXiugWHOtYAMdOlBFsu78p33UOdL7UNBoaK-9mqSS9h5UaQEfaDauLRJ0BQ
x-goog-generation: 1635241792725950
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 505398
x-goog-hash: crc32c=izeeMA==, md5=/QZuafVGrdGympc+oB2yJg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "fd066e69f546add1b29a973ea01db226"
age: 1088
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds205.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm
151.139.128.11200 OK 498 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm
IP 151.139.128.11:0
Size 498 kB (498012 bytes)
Hash 4e718dd7f246267c7f280f45f767237b
c2637e81b13e33b9f7b493df0962d070b8ca657b
93a8425afbb2a7d9792906b37950fafa97db9e541663dac96cdd7680fa3ee967
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_10.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:26 GMT
content-length: 498012
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsX_PzbiYDHdwP13D1ZvmR0zJliyBdgTa3v-OCX1TU4TR9FohTOERHLVkNrse1ZqP1Q5awLqu9glY36ET9ppF6WrrhiKwgY
x-goog-generation: 1635241797140802
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 498012
x-goog-hash: crc32c=oRtITg==, md5=TnGN1/JGJnx/KA9F92cjew==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "4e718dd7f246267c7f280f45f767237b"
age: 1088
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400086.cds256.sk1.hn,1664400086.cds228.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1914
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:28 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1823
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:29 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm
151.139.128.11200 OK 502 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm
IP 151.139.128.11:0
Size 502 kB (501925 bytes)
Hash 318cc5f1cf29a1f69296f42bdc210d51
ae18a24bf2da96053a36ddaade81e5d0d949110f
223e81e6a1649a1e3534ff48615c4e12c7bfb060b9f17653e98a4da4c3e3a328
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_11.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:29 GMT
content-length: 501925
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:54 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsxgvL8Cxl6i-L8pXg8nhWmxBWEOf95bij-FsYBzcsKNdYFat9C5j7qfZUpykXZXPSreA_8uZlT_xRqHQeXK80i56PXfuO8
x-goog-generation: 1635241794182465
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 501925
x-goog-hash: crc32c=ucE85A==, md5=MYzF8c8pofaSlvQr3CENUQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "318cc5f1cf29a1f69296f42bdc210d51"
age: 1088
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1664400089.cds256.sk1.hn,1664400089.cds216.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 186
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 28 Sep 2022 21:21:30 GMT
content-length: 16
x-envoy-upstream-service-time: 1
access-control-allow-origin: *
server: istio-envoy
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1854
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:31 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1816
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.1
date: Wed, 28 Sep 2022 21:21:31 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3DXMclleprmltvb%26subid3%3D517426713
172.66.40.234200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3DXMclleprmltvb%26subid3%3D517426713
IP 172.66.40.234:0
GET /track/?a=7223&firstcookie=0&referrer=&product=trust1,trust3,trust6&sessid2=&caller_url=https%3A%2F%2Fgetglucotrust.me%2Fdiscovery%2F%3Faff_id%3D318%26subid%3D10362%26subid2%3DXMclleprmltvb%26subid3%3D517426713 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:25 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_7223=318; expires=Tue, 27-Dec-2022 21:21:24 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_7223=10362%7CXMclleprmltvb; expires=Tue, 27-Dec-2022 21:21:24 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7223=91.90.42.154::getglucotrust.me%2Fdiscovery; expires=Tue, 27-Dec-2022 21:21:24 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_7223=sessid20220928212134909; expires=Tue, 27-Dec-2022 21:21:24 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_7223=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 751f874ebea10b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
IP 142.250.74.10:0
GET /css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 21:21:23 GMT
date: Wed, 28 Sep 2022 21:21:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ipapi.co/json/
172.67.69.226200 OK 0 B IP 172.67.69.226:0
GET /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:24 GMT
content-type: application/json
allow: OPTIONS, OPTIONS, POST, GET, HEAD
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://getglucotrust.me
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ImEaVCW66yoaTkhvOzOzf1VVf38oe%2F1xe%2FBH4IIyFl%2FOYh3jaOjDx6RnSTtj%2FyCObWD0BC3H5AspyCunspH4Z21LhASFKnmJnwJmNi4%2FJ7Y%2BWPhVpbpmujdL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751f874e38cdb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:900
IP 142.250.74.10:0
GET /css?family=Roboto:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 21:21:23 GMT
date: Wed, 28 Sep 2022 21:21:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=bzahhfzc
151.139.128.11200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=bzahhfzc
IP 151.139.128.11:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=bzahhfzc HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:24 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 11:56:58 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdv65_pB0NSW9tlFjbQnzEvoM53GtdHLffAMTlH5ci3hi6hCMa4zNEuRJnOwCBWCZNqEnFX4-56UJ5_Dhs-Ccd9kGiap4X2g
x-goog-generation: 1664279818092374
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 498561
x-goog-hash: crc32c=xnwWYQ==, md5=n9vAYStxcAGOBfEX6f0+9Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
cache-control: public, max-age=300, s-maxage=2592000
etag: "9fdbc0612b7170018e05f117e9fd3ef5"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn: 4
content-encoding: gzip
x-hw: 1664400084.cds256.sk1.hn,1664400084.cds256.sk1.hc,1664400084.cds229.sk1.c,1664400084.cds256.sk1.sl
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
151.139.128.11200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
IP 151.139.128.11:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:24 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 11:56:57 GMT
x-guploader-uploadid: ADPycds9afN3D7NJXICDhNg0GxYTZTvK8StkZG_vcf5kdFPTjFo0hu3Ol1Bg0fQIEKMOeGYS3PoIH7bBC7KoZo4GfVoZNg
expires: Wed, 28 Sep 2022 21:21:24 GMT
etag: "35eb1186945f6620949773eff8783e98"
x-goog-generation: 1664279817738150
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10094
x-goog-hash: crc32c=jvaIhw==, md5=NesRhpRfZiCUl3Pv+Hg+mA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1664400084.cds023.sk1.hn,1664400084.cds023.sk1.hc,1664400084.cds210.sk1.sc,1664400084.cds210.sk1.p,1664400084.cds023.sk1.sl
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
172.66.43.115200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
IP 172.66.43.115:0
GET /v1/disclaimer?id=disclaimer&account_id=XXXX HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 21:21:24 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 751f874baaf5b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2