r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b44b6d7bebf34d0393567b22a63a93fa
a1a85b268bc8073d8e4622ceb78b78a1b39af96a
4b69973af6e9c5a78d94e8661b08d9349176a515e7bfb3386b10ace4c6f1ae21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B69973AF6E9C5A78D94E8661B08D9349176A515E7BFB3386B10ACE4C6F1AE21"
Last-Modified: Tue, 28 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6626
Expires: Thu, 02 Mar 2023 03:43:36 GMT
Date: Thu, 02 Mar 2023 01:53:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5997f91ebc2eb50daf9983503bf68d86
9e173d1ec3154a6e77b673bc1ce382a531f01965
e2293a78d786cee4e424a86f17ffc821883a5da3628136dd3064c4c82ce68d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2293A78D786CEE4E424A86F17FFC821883A5DA3628136DD3064C4C82CE68D5A"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8575
Expires: Thu, 02 Mar 2023 04:16:05 GMT
Date: Thu, 02 Mar 2023 01:53:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Mar 2023 01:12:52 GMT
content-type: application/json
age: 2418
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1fc53096a9ed90534f34db55765fe755
00462323483a73d48261b8e8a0981bec58ef832a
bcfb9a09fd0882661e1eddc5bde947142897dfe816d535ed2cbfb1aa34823bd7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BCFB9A09FD0882661E1EDDC5BDE947142897DFE816D535ED2CBFB1AA34823BD7"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12734
Expires: Thu, 02 Mar 2023 05:25:24 GMT
Date: Thu, 02 Mar 2023 01:53:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ra4Xt+2CrYCokb+QSmLmlg4Fl2c3TOXFOA9KXGjRRdjK1gmAPvFifpdb3SC9hQoVm4u5vCfNgNJUIDHizWi2DA==
x-amz-request-id: K11YJ2C1Q8KG4RMN
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Mar 2023 01:15:12 GMT
age: 2278
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Mar 2023 01:53:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Cache-Control, Backoff, Pragma, Expires, Last-Modified, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Mar 2023 01:03:36 GMT
age: 2974
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fits.hotflightsdeal.com/ga/click/2-199534912-773-2758-5202-5064-2ac2c0f0ed-gb6c09a256
154.26.136.25302 Found 150 B URL HTTP/1.1 fits.hotflightsdeal.com/ga/click/2-199534912-773-2758-5202-5064-2ac2c0f0ed-gb6c09a256
IP 154.26.136.25:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 4899665747f8d4a041b199069a2f0350
be972e2e70fbf9461a13193b6c98220367452b88
e7d47c46b58a1433ece8e2921693118d65c870799254b9acf9838120042aeda1
Analyzer Verdict Alert fortinet Phishing
GET /ga/click/2-199534912-773-2758-5202-5064-2ac2c0f0ed-gb6c09a256 HTTP/1.1
Host: fits.hotflightsdeal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 02 Mar 2023 01:53:10 GMT
Server: Apache/2.4.52 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.33
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: d540de46d1cb0a1835ec39c66cdc5fe3
Location: http://shop.shopping-offers.com/iu7w8t6fyuiwbhiuigsi-suhgiyufsgiius/sigysghoihsougef
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.026309
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.12
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fdddc7cbd8ba19f4dde13325bc11ac8
5c8ea22f609187f7952c658a029d9fa9dc1c7fec
023903e256b75a839fa44d71f252cfa51f9ec26529c0a37a98cdbd6c10384365
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "023903E256B75A839FA44D71F252CFA51F9EC26529C0A37A98CDBD6C10384365"
Last-Modified: Mon, 27 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6220
Expires: Thu, 02 Mar 2023 03:36:50 GMT
Date: Thu, 02 Mar 2023 01:53:10 GMT
Connection: keep-alive
push.services.mozilla.com/
54.214.111.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.214.111.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qKELVpPsI71D+2aDtTmueA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X9gT81UEM/lI40+rt2aTEPHufOE=
shop.shopping-offers.com/iu7w8t6fyuiwbhiuigsi-suhgiyufsgiius/sigysghoihsougef
72.5.33.27302 Found 1 B URL HTTP/1.1 shop.shopping-offers.com/iu7w8t6fyuiwbhiuigsi-suhgiyufsgiius/sigysghoihsougef
IP 72.5.33.27:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /iu7w8t6fyuiwbhiuigsi-suhgiyufsgiius/sigysghoihsougef HTTP/1.1
Host: shop.shopping-offers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 02 Mar 2023 01:53:10 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.4.16
X-Powered-By: PHP/5.4.16
Location: https://mwebnice.com/6738/186/2/?subid=restoorjnymxnww
Content-Length: 1
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/s/gts1p5/ShhpkNB2lvo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ShhpkNB2lvo
IP 142.250.74.131:0
Hash f64d49f058af1ff3d2a4006bc9dab207
bdfcf48242f70796b6cd0cf6f537ae97d917b67b
d8ee556749697aa0c78385b105395ebcc9c778d70812de9fe12ceec1113275f9
POST /s/gts1p5/ShhpkNB2lvo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 278 B IP 192.229.221.95:0
Hash b2eb618c04696ed2b57b790863203060
9a6957fc5a666899f57a47bf887440c42e1736e3
712ef3bb2396818e14dc6d90e4becf9bbe34d66294f1b26cef1c5fd7598ff6e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 32186
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:11 GMT
Last-Modified: Wed, 01 Mar 2023 16:56:45 GMT
Server: ECAcc (amb/6B53)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
192.229.221.95200 OK 278 B IP 192.229.221.95:0
Hash b2eb618c04696ed2b57b790863203060
9a6957fc5a666899f57a47bf887440c42e1736e3
712ef3bb2396818e14dc6d90e4becf9bbe34d66294f1b26cef1c5fd7598ff6e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 32703
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:11 GMT
Last-Modified: Wed, 01 Mar 2023 16:48:08 GMT
Server: ECAcc (amb/6AD5)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2f2b86251851c15a6378051a85964269
376c0277369d9cf0f23b197ed42b20be02bb1a8c
e1b4055a26895e7eb7791d8ae2bbd0066dd897ca0f9c27d896480fb0e8ce7bca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1B4055A26895E7EB7791D8AE2BBD0066DD897CA0F9C27D896480FB0E8CE7BCA"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2510
Expires: Thu, 02 Mar 2023 02:35:02 GMT
Date: Thu, 02 Mar 2023 01:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2f2b86251851c15a6378051a85964269
376c0277369d9cf0f23b197ed42b20be02bb1a8c
e1b4055a26895e7eb7791d8ae2bbd0066dd897ca0f9c27d896480fb0e8ce7bca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1B4055A26895E7EB7791D8AE2BBD0066DD897CA0F9C27D896480FB0E8CE7BCA"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2510
Expires: Thu, 02 Mar 2023 02:35:02 GMT
Date: Thu, 02 Mar 2023 01:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2f2b86251851c15a6378051a85964269
376c0277369d9cf0f23b197ed42b20be02bb1a8c
e1b4055a26895e7eb7791d8ae2bbd0066dd897ca0f9c27d896480fb0e8ce7bca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1B4055A26895E7EB7791D8AE2BBD0066DD897CA0F9C27D896480FB0E8CE7BCA"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2510
Expires: Thu, 02 Mar 2023 02:35:02 GMT
Date: Thu, 02 Mar 2023 01:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2f2b86251851c15a6378051a85964269
376c0277369d9cf0f23b197ed42b20be02bb1a8c
e1b4055a26895e7eb7791d8ae2bbd0066dd897ca0f9c27d896480fb0e8ce7bca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1B4055A26895E7EB7791D8AE2BBD0066DD897CA0F9C27D896480FB0E8CE7BCA"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2510
Expires: Thu, 02 Mar 2023 02:35:02 GMT
Date: Thu, 02 Mar 2023 01:53:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc65f862a-23bb-447f-98c4-c7bdb442e1fe.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc65f862a-23bb-447f-98c4-c7bdb442e1fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df30be373b0d59ce754af229b2846059
8901a9ae409a2d84b5450599a529d8d27117385f
4fe8e7f3196851316e5cbcaff1f11fd296914ded9bc53ab4c772d99bc8c91905
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc65f862a-23bb-447f-98c4-c7bdb442e1fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10174
x-amzn-requestid: 477ce38b-e948-4349-9da5-699a19a1d41f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BHuzAHBkIAMFQZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ffc4df-3c6ab62d47fe8d794da8ecb7;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: LJ38TALPaoEv_JDm5EZ2gzOwrfsk6OjRmvZu_seMp_ZwZrqargo7jA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 21:44:01 GMT
age: 14951
etag: "8901a9ae409a2d84b5450599a529d8d27117385f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff44610ba-d58f-48f9-a4b7-079e7ecb50e4.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff44610ba-d58f-48f9-a4b7-079e7ecb50e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash beb4fc9e2d3e3455ce1a6b3a763b3539
c2730fcc943ea0802b59e5ec525cbe1578f3e3a1
11e739ab812e71e179dcaadc6681b84ac4c381b116e21240a06e867ec5b22c91
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff44610ba-d58f-48f9-a4b7-079e7ecb50e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9253
x-amzn-requestid: 22ae99a3-eb72-44b9-b770-a68188fe1a95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BHwJHEOiIAMF74A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ffc706-44e4069313e6832d704cbfc7;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 21:43:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: aDjrFvGrbA-TFgkkQPXIAdtGaon_EDL935s77f5jhmj_f9B4YOhXGQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 21:51:04 GMT
age: 14528
etag: "c2730fcc943ea0802b59e5ec525cbe1578f3e3a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: f160a6a5-c245-40ab-9e03-ca03ba05863a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BBNUOGorIAMFTlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fd28e7-74bb8ca33cc8d5ee7e48ad3a;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 22:04:23 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: OAXdgPPPK_4LyHpQ-v3GLo2UhBtMS9SwSM95pdWa4jhnlB9JzqBSvw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 21:42:10 GMT
age: 15062
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1c9e20-d9b2-40b1-a037-df83d7cd3cfa.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1c9e20-d9b2-40b1-a037-df83d7cd3cfa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f46b914879412b9d47f869ea8b9c28fc
4bb8a0bdaaaec0f2eb1423f4e7d6de88c4aa87c9
da0c81ace379c3233922124fd9a5fe802a7a9d82e90dc815d93342f28fdd00fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1c9e20-d9b2-40b1-a037-df83d7cd3cfa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10036
x-amzn-requestid: fae9afbe-7795-42a2-84a7-04ecd8c105ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BHuzKHQLoAMFolA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ffc4e0-260f3cf8432f90a56f2136d4;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 9r8T774qxcraPm1UXukzVUjg5PcAEZeAqz2J4BLgD2rgSQ9ACmAE6w==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 21:57:39 GMT
age: 14133
etag: "4bb8a0bdaaaec0f2eb1423f4e7d6de88c4aa87c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5892a1e5-e48c-4440-a62a-f4141b93c5c8.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5892a1e5-e48c-4440-a62a-f4141b93c5c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash befb69f3f8012ff20a8a4fe05f9ebf57
843a62f5879921c836d159c753650db42bc37798
d0d2b20e42f0021fb5206afe23cbe698fc9fdf77f261c1e7d598b0b4e936a063
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5892a1e5-e48c-4440-a62a-f4141b93c5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5425
x-amzn-requestid: ca1d00cb-9b8c-48ef-8ead-13e22a958670
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BHwMIHsRIAMFdoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ffc71a-1181edd031d103273f073af3;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 21:43:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: hMDiTsMDDOexr7RCOkH0B5C2l6tarVoSrjvuxInm_oMNbzp_uXaM8g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 22:00:07 GMT
etag: "843a62f5879921c836d159c753650db42bc37798"
content-type: image/jpeg
age: 13985
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid2023030201535445&aff_sub=186
188.114.97.1302 Found 3.8 kB URL HTTP/2 trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid2023030201535445&aff_sub=186
IP 188.114.97.1:0
Hash e1b9a930bf9cb7dbaa600845ec2768cb
84a50ce6f7400aac6552f7793c5a2a11ab039268
353fcb4fc8f7389c77aa6f3a9b36e6105d75508de77bf2475ce0263164210025
GET /aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid2023030201535445&aff_sub=186 HTTP/1.1
Host: trk.legendaff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:11 GMT
content-type: text/html; charset=iso-8859-1
location: https://renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid2023030201535445&trans_id=102500ec013a7dc02fc1dfb8c1a5ec&fix=186
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
p3p: CP="NOI CUR OUR NOR INT"
pragma: no-cache
set-cookie: enc_aff_session_67=ENC03c4f422c30fc5c336dd3dc09998882485da10b79f1b38aa765ad85dfe7e9e5d8f0413ee3ffc2c283d84095667c7865ade85cadb65b3a0f063d71a60b47ead73c7fc99a0344cbc106ca157ff2eceebe50978d15f5a54634bad5248152518b7cfb64c2d462621c643d0c964654e5a2dbd640eafba6ebcec93fab5d7f84579c638b604f701c8; expires=Sun, 02 Apr 2023 01:53:11 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImFjY2VwdF9sYW5ndWFnZSI6ImVuLVVTLGVuO3E9MC41IiwiY29ubmVjdGlvbl9zcGVlZCI6ImJyb2FkYmFuZCJ9; expires=Sat, 24 Jan 2026 12:33:11 GMT; path=/; SameSite=None; Secure
tracking_id: 102500ec013a7dc02fc1dfb8c1a5ec
x-robots-tag: noindex, nofollow
access-control-allow-origin: *
x-request-id: f84b98aeaa6ea9ab7a00ad25b4d777fa
access-control-allow-headers: Tune-SDK-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o2vNtIkov6g54ysbBVNV%2FN0tUDh%2BVO%2FIWCOji5n89%2Bpo1KksRr6XPRkJICGAKeMG96nJb%2FytpYuolIrl%2F8O%2B6P41QKEebcydeVywNAoJJlsnohhpSUgoBfjysHEFZX1U2qwrJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a160130bba2b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
104.16.12.194200 OK 61 kB URL HTTP/2 renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
IP 104.16.12.194:0
File type PNG image data, 350 x 447, 8-bit colormap, non-interlaced\012- data
Hash 3ba9bbf8b96770b459429940d92d7a79
00acbaaa9078346c74da3cf94d09e2b692bff5ef
b1ee42c7737ae65389682b1879a8d2e14b8a1c3574aae0a923ebe1f33c1773ac
GET /hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 60796
cf-ray: 7a16013699bcb51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "f62bc6fe8d98125d91b9b7aef151a1f8"
last-modified: Mon, 28 Mar 2022 20:03:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=61050
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
104.16.12.194200 OK 246 kB URL HTTP/2 renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
IP 104.16.12.194:0
File type PNG image data, 1322 x 1522, 8-bit/color RGB, non-interlaced\012- data
Size 246 kB (246109 bytes)
Hash 8048cc0d6dbd055f000dce6d9d0d0657
f9a8acff4f374b3aaf19166a6f98ac34c158de7f
ad0619a0f61a25a4a8fffd18bc38112fa5a47ac2e73ce618523c336ae2761bd1
GET /hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 246109
cf-ray: 7a16013699c0b51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "bfce0f070b1cb993f2fac933823896c0"
last-modified: Wed, 19 May 2021 13:50:46 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=249933
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
104.16.12.194200 OK 22 kB URL HTTP/2 renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
IP 104.16.12.194:0
File type PNG image data, 350 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 371b09a6308c1cf5c90fdc625f894471
4326d9e8ab4f0cc68350044d070c4c9f03eebf66
0d8e069d00f8da07dbf10221a46db459be4c7e8edae88446728fe1cf8811b767
GET /hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 22343
cf-ray: 7a16013699bbb51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "4cddd1a405fcfe2a5b5eeeb50ac6fcff"
last-modified: Tue, 27 Oct 2020 13:36:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=22865
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
104.16.12.194200 OK 78 kB URL HTTP/2 renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
IP 104.16.12.194:0
File type PNG image data, 275 x 339, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ac43691fbbef0a73508aca781e38145
41b3c98f446e95430fcc62da38cdc7b92409c231
71da7fea00c24cdff5371bdda93015e107a55700efba4cef98d28ee413566824
GET /hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 78418
cf-ray: 7a16013689b9b51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "391f6e1eb952adcfdd76231a4c0fb0e1"
last-modified: Thu, 12 Nov 2020 06:12:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=78566
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
104.16.12.194200 OK 675 kB URL HTTP/2 renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
IP 104.16.12.194:0
File type PNG image data, 968 x 848, 8-bit/color RGB, non-interlaced\012- data
Size 675 kB (674934 bytes)
Hash 83fc6873518fe469af1fd3e13bf992c4
a08e1e3a49bf9df824db3ae7f62dc4aece355b93
6b47b4323d80411f07887e2af731d53764f1f86c46a633532463ce735d3edf36
GET /hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 674934
cf-ray: 7a16013699beb51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b17091089aa100beb2adf1cb4b57087a"
last-modified: Tue, 22 Mar 2022 16:16:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=679821
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a79d96dbf19e3f8bde91b4549f860038
6e4afbd1ede1bf15fc28cfc3f643dbaaf86a6792
b1360bd703ddeddda005cdf9a887890b89a733b6df31ecbb9b06f7dc4b15bb68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 279 B IP 192.229.221.95:0
Hash 6a278c0e8102d444004412df8f840e8f
a94b1f924e38e00b67f660b474984bd0d9e8177b
a9a8d6fd23f1a3265c6a1d2c94eee85ab1b5d07ee491e9d0286c14842cc2114f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113334
Cache-Control: max-age=150154
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:12 GMT
Etag: "63fdee5c-117"
Expires: Fri, 03 Mar 2023 19:35:46 GMT
Last-Modified: Tue, 28 Feb 2023 12:06:52 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
192.229.221.95200 OK 279 B IP 192.229.221.95:0
Hash fb97e8a8eb189a2107ce373e6ed5d700
78035417413b818bc432ede526f7df461ca60e96
54db1b9bb4f547ac50656bda2a423b5d4c5978b0b7334ded65c9fb28536b236b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 27019
Cache-Control: max-age=130787
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:12 GMT
Etag: "63fef3e0-117"
Expires: Fri, 03 Mar 2023 14:12:59 GMT
Last-Modified: Wed, 01 Mar 2023 06:42:40 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
192.229.221.95200 OK 280 B IP 192.229.221.95:0
Hash 07f2c0d55fbd1914fa95f479b9798656
586a51b55ee3ddea341fd748d031406d63d1858c
8aaf992f5549004021cdb73fb5db967aaaead39f3d889bb12c2c33860ac9d025
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113233
Cache-Control: max-age=145355
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:12 GMT
Etag: "63fddc02-118"
Expires: Fri, 03 Mar 2023 18:15:47 GMT
Last-Modified: Tue, 28 Feb 2023 10:48:34 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 280
renewyourknees.com/assets/userevents/application.js
104.16.12.194200 OK 2.1 kB URL HTTP/2 renewyourknees.com/assets/userevents/application.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (5244), with no line terminators
Hash c3fe891059624f9bc15a4cc1adcba33f
0d64bf8e7343c1b9118881f797ba12cd1e88335c
a6471f9c95714e4268f672e8633f4f4332ad463a87965d16818daa2a24ea808b
GET /assets/userevents/application.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: application/x-javascript
cf-ray: 7a16013689b4b51b-OSL
access-control-allow-origin: *
age: 6
cache-control: public, max-age=1200
etag: W/"63f3970a-147c"
expires: Thu, 02 Mar 2023 02:13:12 GMT
last-modified: Mon, 20 Feb 2023 15:51:38 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 280 B IP 192.229.221.95:0
Hash f1462dfdc6080cc94738efc620124570
e0c59ea99683af5aa107e70a92d8f2299c91ee7a
e371aea8c4f646821ab47aa2eeb22d21a2608f3eb37ac3eb151dc014ce5e3368
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 26806
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:12 GMT
Last-Modified: Wed, 01 Mar 2023 18:26:26 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 280
cdn01.basis.net/assets/up.js?um=1
178.79.212.177200 OK 1.6 kB URL HTTP/2 cdn01.basis.net/assets/up.js?um=1
IP 178.79.212.177:0
File type ASCII text, with very long lines (3275)
Hash 745340d954663bbef59f3e65c8aa728b
0af5bfef26b3eeec2000086014638c4d11821220
71bfd4fead77b57be5c1ffa6a3c49e4c5defba58cbcabf255a1757a4579c53e6
GET /assets/up.js?um=1 HTTP/1.1
Host: cdn01.basis.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
vary: Accept-Encoding
server: AC1.1
x-llid: edf4ea1bc9c11138d9073de86c02c4b3
age: 527946
date: Thu, 02 Mar 2023 01:53:12 GMT
last-modified: Wed, 16 Mar 2022 16:22:21 GMT
content-length: 1550
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.106200 OK 2.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.106:0
Hash bb2f340ea9cdf5cbe3afa6f76905584f
057acf92d45f5c81d0de443099a7f03a045197a0
580cc20064158ed0f1e0d777733a5ada33d2b650117633938573851233aa9373
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Mar 2023 01:53:12 GMT
date: Thu, 02 Mar 2023 01:53:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
classic.clickfunnels.com/images/closemodal.png
104.16.12.194200 OK 672 B URL HTTP/2 classic.clickfunnels.com/images/closemodal.png
IP 104.16.12.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /images/closemodal.png HTTP/1.1
Host: classic.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/webp
content-length: 672
cf-ray: 7a160137edd5b4f7-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 122693
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "63f3970a-314"
expires: Sun, 02 Apr 2023 01:53:12 GMT
last-modified: Mon, 20 Feb 2023 15:51:38 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
set-cookie: __cf_bm=0Qr5q4ZoDtHUNJKQ4aZnSpMGii7B9eBBsVQzxu_U9As-1677721992-0-AV1kTGyHdXrcWoK4T1P6Z2rYqDMWP3csyHZPktweJ3Loa0uldludoWRYvIbyjm28ykce/bhb4DAXxRY4UeBKN+uMhg4c3XVLM+I3wQgJgmE8; path=/; expires=Thu, 02-Mar-23 02:23:12 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
104.16.12.194200 OK 341 kB URL HTTP/2 renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
IP 104.16.12.194:0
File type PNG image data, 1018 x 564, 8-bit/color RGBA, non-interlaced\012- data
Size 341 kB (341245 bytes)
Hash a2e34c3ae57383e15887e5680d0badff
6e2913e84cd0a3549e044c545b93524550e1f170
6ef63fae9358d66f9130a085044c84f1ec67ede5a7efe5fa32a36894912f92fd
GET /hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: image/png
content-length: 341245
cf-ray: 7a16013689b7b51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "ccd66439e790bb40a687ea93e7563a63"
last-modified: Wed, 11 Nov 2020 12:28:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=341393
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.56.101200 OK 6.4 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.56.101:0
Hash 107f5bbaf04388102f1095e288c436e7
f5257079c897b15c098c6d0a0f88c8213813c68f
1acf47697e1bd6ee6aaf1536b5a98d8f577bec7085c48bce63b9036270be8679
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a160137ce96fab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 279 B IP 192.229.221.95:0
Hash 6a278c0e8102d444004412df8f840e8f
a94b1f924e38e00b67f660b474984bd0d9e8177b
a9a8d6fd23f1a3265c6a1d2c94eee85ab1b5d07ee491e9d0286c14842cc2114f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113419
Cache-Control: max-age=150238
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Etag: "63fdee5c-117"
Expires: Fri, 03 Mar 2023 19:37:11 GMT
Last-Modified: Tue, 28 Feb 2023 12:06:52 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 279
fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
142.250.74.106200 OK 19 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
IP 142.250.74.106:0
Hash c43245dc0cb77c71a498f6b02546db75
61fa0f6a061329ae85a286cb40ee28faf07276cd
380830725a37abb39ca6f510b2b7a5618d1d190206c55d884062e67e1456be8e
GET /css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Mar 2023 01:53:12 GMT
date: Thu, 02 Mar 2023 01:53:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 9649694992e239cdd3cf978da45d2fe0
5fc4ee9f062cf844fd1e4a61591695941ede9f29
0db0a250ab1f578486a555cc17ba6ee13bfbca4bb21c452fe0cabcaf6a512916
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166930
Date: Thu, 02 Mar 2023 01:53:12 GMT
Etag: "63fe45b5-1d7"
Expires: Sat, 04 Mar 2023 00:15:22 GMT
Last-Modified: Tue, 28 Feb 2023 18:19:33 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Oc6ni7r1bNoZaX5KneqQsYAic7TyqJC8F32u0zHyDwmh2-qVCCElvw==
Age: 107749
renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
104.16.12.194200 OK 2.7 kB URL HTTP/2 renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x108, components 1\012- data
Hash d016079a401645969522294fd89712cf
6a8ff7bf7514b355d7aafd404987018c218416e1
536dd1c2b04b2009bf25904cfb7725c846ff4f85328d09d8a77f24f350e330fd
GET /hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:13 GMT
content-type: image/jpeg
content-length: 2747
cf-ray: 7a1601386a88b51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "d016079a401645969522294fd89712cf"
last-modified: Tue, 10 Nov 2020 05:45:25 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
142.250.74.106200 OK 24 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
IP 142.250.74.106:0
Hash 1dc9b6408e81661ab7ee627670178c8e
c8862d645abf0edf09f39b57e74c384a3b069762
8530655736770fe6cac8f2b0c92fbe74bbafc9c26ccc59e1c39c2887265e4707
GET /css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Mar 2023 01:53:12 GMT
date: Thu, 02 Mar 2023 01:53:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
renewyourknees.com/assets/pushcrew.js
104.16.12.194200 OK 16 kB URL HTTP/2 renewyourknees.com/assets/pushcrew.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (637), with no line terminators
Hash 108344e47c2983d2ce948459d83e73d7
9b458acbe978dc74fb2fa88c6217e3589aa9a194
6aa16c0a1bbe31ded1bd72e496dec881eed4ef3afb586bdaac6f2346c988408e
GET /assets/pushcrew.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: application/x-javascript
cf-ray: 7a160136a9c5b51b-OSL
access-control-allow-origin: *
age: 964
cache-control: public, max-age=1200
etag: W/"63f39709-27d"
expires: Thu, 02 Mar 2023 02:13:12 GMT
last-modified: Mon, 20 Feb 2023 15:51:37 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Mar 2023 13:15:37 GMT
expires: Thu, 29 Feb 2024 13:15:37 GMT
cache-control: public, max-age=31536000
age: 45456
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mwebnice.com/6738/186/2/?subid=restoorjnymxnww
188.114.97.1302 Found 693 kB URL HTTP/2 mwebnice.com/6738/186/2/?subid=restoorjnymxnww
IP 188.114.97.1:0
Size 693 kB (693291 bytes)
Hash fd0817fbab094db4a0f34ad4c2da92a9
0c092ec15ab668811d61fee6c5880b9065128945
82a9d9cbf1f0202ac1cd4e195ca29f70d166cede29c02219b8b0004dd2f75a00
Analyzer Verdict Alert fortinet Phishing
GET /6738/186/2/?subid=restoorjnymxnww HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:11 GMT
content-type: text/html; charset=UTF-8
location: https://trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid2023030201535445&aff_sub=186
cache-control: max-age=3600, private
pragma: no-cache
expires: Thu, 02 Mar 2023 02:53:11 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7a16012e0e7fb4ff-OSL
X-Firefox-Spdy: h2
app.clickfunnels.com/mailcheck.min.js
104.16.12.194200 OK 17 kB URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP 104.16.12.194:0
File type C source, ASCII text, with very long lines (525)
Hash 148c9fce0de527e3cee6a35346be9218
06e94271a7f656b9ed02937ced68ca7ba2e5337e
fbcf07cd9fe17e7da6853fe03736aaab3d957b663278a767d88a37f088b13e4f
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: application/x-javascript
cf-ray: 7a160137ddc8b4f7-OSL
access-control-allow-origin: *
age: 1554
etag: W/"63f3970a-a8d"
last-modified: Mon, 20 Feb 2023 15:51:38 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
set-cookie: __cf_bm=UqyWeNOYS2c0EcKWZDi805bjP.o8wY5zRoyJkdGNvtY-1677721992-0-Ae3MYSsUVsCYnxltWTXKgX2qSoieSsn7Jl0Zjj4w+6dpU5YHeiJe7FyIHRXIhgurpoJXy3T40at/PEHfrWznUiH3yYgAvBLcuJ3JQgSDUzBP; path=/; expires=Thu, 02-Mar-23 02:23:12 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e18ff1e2252ecce939469b25f783640b
f620a4c0231151a300fd90adf7ee8cc9771d7769
d85391f2386974ba86f7e481ec3c5561f6da8097bf0ce792a08759698829fed5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 00e957f8456bb17f6e1f8d8827cda55c
53032fbcd10c61e0c0abca354a86b71599937ca3
31196f314a0cd96160ed1220bd851b3366a11351d62d6936a7972ef00ebefd75
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 05 Mar 2023 21:49:27 GMT
ETag: "53032fbcd10c61e0c0abca354a86b71599937ca3"
Last-Modified: Wed, 01 Mar 2023 21:49:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3059
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a16013a8e640b31-OSL
cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
151.139.128.10200 OK 401 B URL HTTP/2 cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
IP 151.139.128.10:0
Hash 34730015c60644eaf958b24ecc2eef38
e0fc3118fa90a55d8da8de00ccf498ac65367836
2bb143b2a338c7c672e87163c487924b07144fa57265f1bed6c4440bf5aece2e
GET /tracking/prosperwellness_lander.js HTTP/1.1
Host: cdn1.lockerdomecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:13 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 401
content-type: application/javascript
last-modified: Fri, 21 May 2021 18:48:24 GMT
accept-ranges: bytes
x-amz-id-2: YPwuunbl/nNwJ2eHwIZ0+hLKAC9huj2Edhj2lOjnN6tUWLbivrlaQxpn/fCcfhE2DRXz+N4j6Rs=
x-amz-request-id: 9ESP8B0BQY12KDRC
etag: "ded6fc3d3fa4c08bd8c3184513a12513"
x-amz-version-id: IXK4sDg7IhH.._0LH9j...5boykFnEd9
server: AmazonS3
x-hw: 1677721992.cds248.sk1.hn,1677721992.cds218.sk1.sc,1677721993.cds218.sk1.pr
timing-allow-origin: https://lockerdome.com
X-Firefox-Spdy: h2
www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
67.225.220.126200 OK 60 B URL HTTP/2 www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
IP 67.225.220.126:0
File type ASCII text, with no line terminators
Hash d7ccb5dc7f9d9fcf48ca4602cc089ea9
4ee87a669ab38ab3cab7bbd7384527ed7c769c8d
ca07fa3313b5e3a483c08d111fdb61b9d2f9bb49203ca8d865d3d20beaba10ca
GET /tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js HTTP/1.1
Host: www.rtb123.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 01 Aug 2019 19:17:17 GMT
accept-ranges: bytes
etag: "bd3d9ebb9d48d51:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-origin: *
date: Thu, 02 Mar 2023 01:53:12 GMT
content-length: 60
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
151.101.193.91200 OK 10 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
IP 151.101.193.91:0
File type ASCII text, with very long lines (42307), with CRLF, LF line terminators
Hash 71d06c47bd18538ba8002cb4568f7542
ac12fef2343744645dfdacda9ec0cab41976b19e
4d2a796920e5730a07196c7511a4ddd1101d91ca4ebd0b1baac4be8ac6222d54
GET /embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtpbf3bfSflua74hVWtKn_rdy6wVrVK82l63m_f6ehMWTEiWC_7slvSm1YJpRyerxifi7jMtrvlj18OnCUnph3kK9ICz6mG
expires: Thu, 02 Mar 2023 01:53:13 GMT
last-modified: Thu, 12 Jan 2023 10:50:42 GMT
etag: "71d06c47bd18538ba8002cb4568f7542"
x-goog-generation: 1673520642261647
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10526
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=gd+1Nw==, md5=cdBsR70YU4uoACy0Vo91Qg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:13 GMT
age: 0
x-served-by: cache-iad-kcgs7200059-IAD, cache-bma1624-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1677721994.635151,VS0,VE122
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
cache-control: public, max-age=180, s-maxage=180
x-cdn-info: loader
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10526
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1677721992884
151.101.193.91200 OK 2.8 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1677721992884
IP 151.101.193.91:0
File type JSON data\012- , ASCII text, with very long lines (2814), with no line terminators
Hash 4a72f10cb1bc39671a6eb4c236daa41a
2e975e502ae7a8e3742bf783fb3141dce60918b2
010ccdc07db39608f46aefbcc54e41070369a4aea48df9909a29017d9ce36225
GET /embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1677721992884 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvABcCHWZQD64Tx4sr1MOOzFKSEwV9n3H3xTkB0rOLgIogRnbyKRKPFILYFyPB8iZB_rON7s67XFmXPgC-jxti__mBpnN_L
cache-control: public, max-age=300, s-maxage=2592000
expires: Sat, 01 Apr 2023 01:53:13 GMT
last-modified: Thu, 12 Jan 2023 10:49:12 GMT
etag: "4a72f10cb1bc39671a6eb4c236daa41a"
x-goog-generation: 1673520552504162
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2814
content-type: application/json
x-goog-hash: crc32c=+pK0iw==, md5=SnLxDLG8OWcabrTCNtqkGg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:13 GMT
age: 0
x-served-by: cache-iad-kcgs7200040-IAD, cache-bma1662-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1677721994.636926,VS0,VE126
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2814
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 8e70a2dd13fad0e814c37f28700713ef
cff584b6f69f133777a123c6776e93897e9c2eed
e4d57cf0b6458d0cf86f073cfb9681e2945f81dc3877a7b71e0d81572640af83
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Mar 2023 01:53:13 GMT
Last-Modified: Wed, 01 Mar 2023 18:48:40 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uXW-A8GMIEwAp7t6gF6usYo3sBekxF_nUawmlAnmEdQz2f58t5iJcg==
Age: 25473
quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js?hash=woqeoyo
151.101.193.91200 OK 510 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js?hash=woqeoyo
IP 151.101.193.91:0
File type Unicode text, UTF-8 text, with very long lines (65399)
Size 510 kB (509536 bytes)
Hash 8a3267ad4d4005ee24e1169e0528ee6d
5dc80a2d4a16f16877921176d831cba996c55268
66cb6c3e396298971e387dbc48cbd5d15d40cb9b98f9fdb11915ecd268dc8c0a
GET /embeds/Gzq_USs6/pBrrlABfvNSTASm0/player-dash-mse.min.js?hash=woqeoyo HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtcCzITbH4LIigrO5UmtNcCQPEusNq4eREYVlUmksOWvGVtjYZThj2wCXj2Uiym1bVkdUdGNCCmqG0hJI78f_9dFw
cache-control: public, max-age=300, s-maxage=2592000
expires: Fri, 10 Mar 2023 10:05:53 GMT
last-modified: Thu, 12 Jan 2023 10:50:42 GMT
etag: "8a3267ad4d4005ee24e1169e0528ee6d"
x-goog-generation: 1673520642646214
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 509536
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=HvmQNg==, md5=ijJnrU1ABe4k4RaeBSjubQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:13 GMT
age: 1871240
x-served-by: cache-iad-kjyo7100135-IAD, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 2620, 1
x-timer: S1677721994.786946,VS0,VE2
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 509536
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c1f49c8ca5bc4d89e173abedaa891bf1
2fce04e5dc64def179c2c0aa8318a9d7e9f0fdad
bc2d2d71ea1d62847389557e54e486d124ca4156603766fe8c08e93c740c7880
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Mar 2023 13:50:20 GMT
Expires: Wed, 08 Mar 2023 13:50:19 GMT
Etag: "2fce04e5dc64def179c2c0aa8318a9d7e9f0fdad"
Cache-Control: max-age=560825,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a16013d2fe40afe-OSL
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash d7a8fa994f19e5b1d7301386e773b316
7323b114d962dad154c3a6f1c49a5c92dcbe14f1
9c5a18c01a749b4d2e3f47b7f85c498702ea5fdb6b014a480decfa69550f821e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113420
Cache-Control: max-age=118226
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:13 GMT
Etag: "63fd714f-2d7"
Expires: Fri, 03 Mar 2023 10:43:39 GMT
Last-Modified: Tue, 28 Feb 2023 03:13:19 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 727
pixel.sitescout.com/dmp/asyncPixelSync
98.98.134.242302 Found 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync
IP 98.98.134.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: ssi=bbe29685-70d0-48f4-b1cb-da4872e524b0#1677721993982; Domain=.sitescout.com; Expires=Fri, 01-Mar-2024 01:53:13 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
content-length: 0
date: Thu, 02 Mar 2023 01:53:13 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
98.98.134.242204 No Content 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
IP 98.98.134.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Thu, 02 Mar 2023 01:53:13 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
98.98.134.242302 Found 0 B URL HTTP/2 pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
IP 98.98.134.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: ssi=3c580e25-3e3e-4ab5-b66f-11f6a48a83f0#1677721994051; Domain=.sitescout.com; Expires=Fri, 01-Mar-2024 01:53:14 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
content-length: 0
date: Thu, 02 Mar 2023 01:53:13 GMT
server: AC1.1
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
2.18.173.74200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 2.18.173.74:0
File type ASCII text, with very long lines (17769), with no line terminators
Hash 939f95ffc91ae8a9eacb6998ec5a635f
e122fe07195821f6abf871cc65f315c6b9e27f4a
49462b3c223095ac3fc223f11a29e4bceed96feba62e167d444e9a082626fc17
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b07048fb19f7c325242e254218118e14:1675339769.124179"
Last-Modified: Thu, 02 Feb 2023 09:48:30 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 02 Mar 2023 02:13:14 GMT
Date: Thu, 02 Mar 2023 01:53:14 GMT
Content-Length: 5911
Connection: keep-alive
X-RG: EU
X-CC: NO
s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
52.218.250.40200 OK 0 B URL HTTP/1.1 s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
IP 52.218.250.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jsstore/a/150HK5G/ge.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: U+I8Opsd7SWPKQ2pZLiMGscbvke5/KntmUABDp0kLzkQ7TWL2xYjBuCPw5nVX2hjw/GHH8K85p4=
x-amz-request-id: 9ESX2GWSQJZH3ZP4
Date: Thu, 02 Mar 2023 01:53:14 GMT
Last-Modified: Mon, 08 Nov 2021 15:43:30 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 0
pixel.sitescout.com/up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
98.98.134.242200 OK 43 B URL HTTP/2 pixel.sitescout.com/up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
IP 98.98.134.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
content-type: image/gif
content-length: 43
date: Thu, 02 Mar 2023 01:53:14 GMT
server: AC1.1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 95e893745105e71d23c6d353b90d2cb9
0f1392e453835ba0885a760d2a49557535ca71a7
36c8801dd99f83185d4331e07221971d010e76c6d8cb73be4b73562440adb2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Mar 2023 00:12:30 GMT
expires: Thu, 02 Mar 2023 02:12:30 GMT
cache-control: public, max-age=7200
age: 6044
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 2180c843ed74ed98c0a2c3dc96e67f06
fce124eb13562b0c6ac7dc53ae93d86243f537fb
7ecd0c64bbf5ad247fd8582a855123f59b95f8210bba4dc979e8094db21b028d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 26935
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Last-Modified: Wed, 01 Mar 2023 18:24:19 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
192.229.221.95200 OK 279 B IP 192.229.221.95:0
Hash e66bbeab4a9ded3193a5f66a1579bc08
e153a75d22eb4cd39af73c5aa6acec1d009f6918
4dc899ce07f7cc9b71b36d91dbb54002e2790bb458a7f030cfb1cb67e46c16e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=101260
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63feea16-117"
Expires: Fri, 03 Mar 2023 06:00:54 GMT
Last-Modified: Wed, 01 Mar 2023 06:00:54 GMT
Server: nginx
Content-Length: 279
www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
172.67.144.251200 OK 88 kB URL HTTP/2 www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
IP 172.67.144.251:0
File type PNG image data, 1518 x 1496, 8-bit/color RGBA, non-interlaced\012- data
Hash e57817426681b6646dcfe95823f7f8c6
6d396e821718c0aedb62e2cc6ebf0669de500d3b
dbe8a2099e602f4f0055133f84e970ef2d01f5ff33428d575aeebc697f27575a
GET /wp-content/uploads/2018/06/2018-06-08_0911.png HTTP/1.1
Host: www.prosperwellness.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: image/png
content-length: 88111
last-modified: Fri, 08 Jun 2018 15:12:16 GMT
etag: "1582f-56e22d345470a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4734164
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cv%2BE3mJKlM3KNZ3hGOMgAqiOTwLdk2DZd5gTTIp0PIq4o3zyRiRpVRqRqr3CVPqghBINb62Iy0NoMadxW7K9A1XdvMFD4eNf8F8km0hpyq7XQNCO6lU1RtiHD9vor8mBylV9KJDVFfH1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a16013f6f87b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 95e893745105e71d23c6d353b90d2cb9
0f1392e453835ba0885a760d2a49557535ca71a7
36c8801dd99f83185d4331e07221971d010e76c6d8cb73be4b73562440adb2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=488380028&t=pageview&_s=1&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&ul=en-us&de=UTF-8&dt=JointRestore&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=978541953&gjid=1540537839&cid=562218731.1677721994&tid=UA-66238646-1&_gid=2055681504.1677721994&_r=1&_slc=1&z=490420356
216.239.36.178200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=488380028&t=pageview&_s=1&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&ul=en-us&de=UTF-8&dt=JointRestore&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=978541953&gjid=1540537839&cid=562218731.1677721994&tid=UA-66238646-1&_gid=2055681504.1677721994&_r=1&_slc=1&z=490420356
IP 216.239.36.178:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=488380028&t=pageview&_s=1&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&ul=en-us&de=UTF-8&dt=JointRestore&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=978541953&gjid=1540537839&cid=562218731.1677721994&tid=UA-66238646-1&_gid=2055681504.1677721994&_r=1&_slc=1&z=490420356 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://renewyourknees.com
date: Thu, 02 Mar 2023 01:53:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 279 B IP 192.229.221.95:0
Hash e66bbeab4a9ded3193a5f66a1579bc08
e153a75d22eb4cd39af73c5aa6acec1d009f6918
4dc899ce07f7cc9b71b36d91dbb54002e2790bb458a7f030cfb1cb67e46c16e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=101260
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63feea16-117"
Expires: Fri, 03 Mar 2023 06:00:54 GMT
Last-Modified: Wed, 01 Mar 2023 06:00:54 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash ad7bffdb96ea36addae9a41d897880f5
3268ba24e226f69dbf1344f1a54429e63dbb3079
206a9597c6745069cccd0ab85025b48f516019f2fb46c94610aab93b302fd86e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113217
Cache-Control: max-age=149340
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63fdeba5-138"
Expires: Fri, 03 Mar 2023 19:22:14 GMT
Last-Modified: Tue, 28 Feb 2023 11:55:17 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 312
tr.outbrain.com/cachedClickId?marketerId=undefined
64.202.112.95200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 64.202.112.95:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:14 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 33161a38703bf3114fb5e9b355e80a7a
tr.outbrain.com/unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&g=0&optOut=false&bust=03116246203712769&referrer=
64.202.112.95200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&g=0&optOut=false&bust=03116246203712769&referrer=
IP 64.202.112.95:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&g=0&optOut=false&bust=03116246203712769&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:14 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: e2eb1d4d701a919fcf673ec024040d45
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 16a5f4c70d6df61e8382799e1a22dc3d
c5ad5cc84ad68a45857a3d4f8430eedee2fa3d7c
1ddee698ae77c502da33e24fb5e82fca802095cdfc99d1f6374d760112ecd0c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113419
Cache-Control: max-age=155612
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63fe035b-139"
Expires: Fri, 03 Mar 2023 21:06:46 GMT
Last-Modified: Tue, 28 Feb 2023 13:36:27 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:13 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=q8rQx180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScFEwMThGcHVOYUZOdXdNN3clMkZudWVB; expires=Tue, 26 Mar 2024 01:53:14 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 337271
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 4d55add7c385f487e8d87b4de040e81c
9452d88461eb449b3f806f661fd2df187603ff2f
b6a9889285847ad2684616e867f86abb1debf6faf5083ed1eee8d48ac3df0032
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113433
Cache-Control: max-age=131876
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63fda695-138"
Expires: Fri, 03 Mar 2023 14:31:10 GMT
Last-Modified: Tue, 28 Feb 2023 07:00:37 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 4d55add7c385f487e8d87b4de040e81c
9452d88461eb449b3f806f661fd2df187603ff2f
b6a9889285847ad2684616e867f86abb1debf6faf5083ed1eee8d48ac3df0032
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113417
Cache-Control: max-age=131860
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:14 GMT
Etag: "63fda695-138"
Expires: Fri, 03 Mar 2023 14:30:54 GMT
Last-Modified: Tue, 28 Feb 2023 07:00:37 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 312
rp.liadm.com/j?dtstmp=1677721993669&aid=a-0690&se=e30&duid=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q&tna=v2.6.0&pu=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&wpn=lc-bundle&c=PHRpdGxlPkpvaW50UmVzdG9yZTwvdGl0bGU-PG1ldGEgY2xhc3M9Im1ldGFUYWdUb3AiIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJidWlsdCB3aXRoIG5vZG8uaW8iPjxsaW5rIHJlbD0iY2Fub25pY2FsIiBocmVmPSJodHRwczovL3JlbmV3eW91cmtuZWVzLmNvbS92c2wxNjUxNjUyNTk5MDY4YmJiYiI-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj48Yj5FbnRlciBZb3VyIEVtYWlsIEFkZHJlc3MgVG8gUmVzZXJ2ZSBZb3VyIFBsYWNlIEluIExpbmU8L2I-PC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMjgiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogMzRweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPlcgQSBJIFQmbmJzcDsgQiBFIEYgTyBSIEUmbmJzcDsgWSBPIFUmbmJzcDsgRyBPPC9iPjwvaDE-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-CjxiPlJlc2VydmUgWW91ciBPcmRlciBGb3IgSm9pbnRSZXN0b3JlICdLbmVlIENhbmR5JyZuYnNwOzwvYj48YiBzdHlsZT0iY29sb3I6IGluaGVyaXQ7Ij5SaWdodCBOb3c8L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj4KPGI-UHJlc2VudGVkIEJ5OiBEci4gR3JlZ29yeSBTbWl0aCwgTUQ8L2I-PGRpdj48Yj5NUEggSGFydmFyZCBVbml2ZXJzaXR5Jm5ic3A7PC9iPjwvZGl2Pgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIiBzdHlsZT0idGV4dC1hbGlnbjogY2VudGVyO2ZvbnQtc2l6ZTogMzJweCIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-CjxiPlByZXNlbnRlZCBCeTogRHIuIEdyZWdvcnkgU21pdGgsIE1EPC9iPjxkaXY-PGI-TVBIIEhhcnZhcmQgVW5pdmVyc2l0eSZuYnNwOzwvYj48L2Rpdj4KPC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMzYiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogNTRweDsgY29sb3I6IHJnYigwLCAwLCAwKTsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkZSRVFVRU5UTFkgQVNLRUQgUVVFU1RJT05TPC9iPjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgZG8gdGhlIEpvaW50UmVzdG9yZSBndW1taWVzIHRhc3RlIGxpa2U_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPiA8Yj5Ib3cgbXVjaCBpcyBpdD88L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgaXMgaW4gaXQ_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkhvdyBkbyBJIGdldCBpdD88L2I-PC9oMT4
3.92.246.80302 Found 0 B URL HTTP/2 rp.liadm.com/j?dtstmp=1677721993669&aid=a-0690&se=e30&duid=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q&tna=v2.6.0&pu=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&wpn=lc-bundle&c=PHRpdGxlPkpvaW50UmVzdG9yZTwvdGl0bGU-PG1ldGEgY2xhc3M9Im1ldGFUYWdUb3AiIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJidWlsdCB3aXRoIG5vZG8uaW8iPjxsaW5rIHJlbD0iY2Fub25pY2FsIiBocmVmPSJodHRwczovL3JlbmV3eW91cmtuZWVzLmNvbS92c2wxNjUxNjUyNTk5MDY4YmJiYiI-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj48Yj5FbnRlciBZb3VyIEVtYWlsIEFkZHJlc3MgVG8gUmVzZXJ2ZSBZb3VyIFBsYWNlIEluIExpbmU8L2I-PC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMjgiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogMzRweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPlcgQSBJIFQmbmJzcDsgQiBFIEYgTyBSIEUmbmJzcDsgWSBPIFUmbmJzcDsgRyBPPC9iPjwvaDE-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-CjxiPlJlc2VydmUgWW91ciBPcmRlciBGb3IgSm9pbnRSZXN0b3JlICdLbmVlIENhbmR5JyZuYnNwOzwvYj48YiBzdHlsZT0iY29sb3I6IGluaGVyaXQ7Ij5SaWdodCBOb3c8L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj4KPGI-UHJlc2VudGVkIEJ5OiBEci4gR3JlZ29yeSBTbWl0aCwgTUQ8L2I-PGRpdj48Yj5NUEggSGFydmFyZCBVbml2ZXJzaXR5Jm5ic3A7PC9iPjwvZGl2Pgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIiBzdHlsZT0idGV4dC1hbGlnbjogY2VudGVyO2ZvbnQtc2l6ZTogMzJweCIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-CjxiPlByZXNlbnRlZCBCeTogRHIuIEdyZWdvcnkgU21pdGgsIE1EPC9iPjxkaXY-PGI-TVBIIEhhcnZhcmQgVW5pdmVyc2l0eSZuYnNwOzwvYj48L2Rpdj4KPC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMzYiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogNTRweDsgY29sb3I6IHJnYigwLCAwLCAwKTsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkZSRVFVRU5UTFkgQVNLRUQgUVVFU1RJT05TPC9iPjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgZG8gdGhlIEpvaW50UmVzdG9yZSBndW1taWVzIHRhc3RlIGxpa2U_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPiA8Yj5Ib3cgbXVjaCBpcyBpdD88L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgaXMgaW4gaXQ_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkhvdyBkbyBJIGdldCBpdD88L2I-PC9oMT4
IP 3.92.246.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j?dtstmp=1677721993669&aid=a-0690&se=e30&duid=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q&tna=v2.6.0&pu=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&wpn=lc-bundle&c=PHRpdGxlPkpvaW50UmVzdG9yZTwvdGl0bGU-PG1ldGEgY2xhc3M9Im1ldGFUYWdUb3AiIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJidWlsdCB3aXRoIG5vZG8uaW8iPjxsaW5rIHJlbD0iY2Fub25pY2FsIiBocmVmPSJodHRwczovL3JlbmV3eW91cmtuZWVzLmNvbS92c2wxNjUxNjUyNTk5MDY4YmJiYiI-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj48Yj5FbnRlciBZb3VyIEVtYWlsIEFkZHJlc3MgVG8gUmVzZXJ2ZSBZb3VyIFBsYWNlIEluIExpbmU8L2I-PC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMjgiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogMzRweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPlcgQSBJIFQmbmJzcDsgQiBFIEYgTyBSIEUmbmJzcDsgWSBPIFUmbmJzcDsgRyBPPC9iPjwvaDE-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-CjxiPlJlc2VydmUgWW91ciBPcmRlciBGb3IgSm9pbnRSZXN0b3JlICdLbmVlIENhbmR5JyZuYnNwOzwvYj48YiBzdHlsZT0iY29sb3I6IGluaGVyaXQ7Ij5SaWdodCBOb3c8L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj4KPGI-UHJlc2VudGVkIEJ5OiBEci4gR3JlZ29yeSBTbWl0aCwgTUQ8L2I-PGRpdj48Yj5NUEggSGFydmFyZCBVbml2ZXJzaXR5Jm5ic3A7PC9iPjwvZGl2Pgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIiBzdHlsZT0idGV4dC1hbGlnbjogY2VudGVyO2ZvbnQtc2l6ZTogMzJweCIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-CjxiPlByZXNlbnRlZCBCeTogRHIuIEdyZWdvcnkgU21pdGgsIE1EPC9iPjxkaXY-PGI-TVBIIEhhcnZhcmQgVW5pdmVyc2l0eSZuYnNwOzwvYj48L2Rpdj4KPC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMzYiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogNTRweDsgY29sb3I6IHJnYigwLCAwLCAwKTsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkZSRVFVRU5UTFkgQVNLRUQgUVVFU1RJT05TPC9iPjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgZG8gdGhlIEpvaW50UmVzdG9yZSBndW1taWVzIHRhc3RlIGxpa2U_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPiA8Yj5Ib3cgbXVjaCBpcyBpdD88L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgaXMgaW4gaXQ_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkhvdyBkbyBJIGdldCBpdD88L2I-PC9oMT4 HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:14 GMT
content-length: 0
trace-id: a361a3f2cab8d816
vary: Origin
location: /j?dtstmp=1677721993669&aid=a-0690&se=e30&duid=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q&tna=v2.6.0&pu=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&wpn=lc-bundle&c=PHRpdGxlPkpvaW50UmVzdG9yZTwvdGl0bGU-PG1ldGEgY2xhc3M9Im1ldGFUYWdUb3AiIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJidWlsdCB3aXRoIG5vZG8uaW8iPjxsaW5rIHJlbD0iY2Fub25pY2FsIiBocmVmPSJodHRwczovL3JlbmV3eW91cmtuZWVzLmNvbS92c2wxNjUxNjUyNTk5MDY4YmJiYiI-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj48Yj5FbnRlciBZb3VyIEVtYWlsIEFkZHJlc3MgVG8gUmVzZXJ2ZSBZb3VyIFBsYWNlIEluIExpbmU8L2I-PC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMjgiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogMzRweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPlcgQSBJIFQmbmJzcDsgQiBFIEYgTyBSIEUmbmJzcDsgWSBPIFUmbmJzcDsgRyBPPC9iPjwvaDE-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-CjxiPlJlc2VydmUgWW91ciBPcmRlciBGb3IgSm9pbnRSZXN0b3JlICdLbmVlIENhbmR5JyZuYnNwOzwvYj48YiBzdHlsZT0iY29sb3I6IGluaGVyaXQ7Ij5SaWdodCBOb3c8L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7Zm9udC1zaXplOiAzMnB4IiBkYXRhLWJvbGQ9ImluaGVyaXQiIGRhdGEtZ3JhbW09ImZhbHNlIiBjb250ZW50ZWRpdGFibGU9ImZhbHNlIj4KPGI-UHJlc2VudGVkIEJ5OiBEci4gR3JlZ29yeSBTbWl0aCwgTUQ8L2I-PGRpdj48Yj5NUEggSGFydmFyZCBVbml2ZXJzaXR5Jm5ic3A7PC9iPjwvZGl2Pgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIiBzdHlsZT0idGV4dC1hbGlnbjogY2VudGVyO2ZvbnQtc2l6ZTogMzJweCIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-CjxiPlByZXNlbnRlZCBCeTogRHIuIEdyZWdvcnkgU21pdGgsIE1EPC9iPjxkaXY-PGI-TVBIIEhhcnZhcmQgVW5pdmVyc2l0eSZuYnNwOzwvYj48L2Rpdj4KPC9oMT48aDEgY2xhc3M9Im5lIGVsSGVhZGxpbmUgaHNTaXplMyBsaDQgZWxNYXJnaW4wIGVsQkdTdHlsZTAgaHNUZXh0U2hhZG93MCBtZnNfMzYiIHN0eWxlPSJ0ZXh0LWFsaWduOiBjZW50ZXI7IGZvbnQtc2l6ZTogNTRweDsgY29sb3I6IHJnYigwLCAwLCAwKTsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkZSRVFVRU5UTFkgQVNLRUQgUVVFU1RJT05TPC9iPjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgZG8gdGhlIEpvaW50UmVzdG9yZSBndW1taWVzIHRhc3RlIGxpa2U_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPiA8Yj5Ib3cgbXVjaCBpcyBpdD88L2I-CjwvaDE-PGgxIGNsYXNzPSJuZSBlbEhlYWRsaW5lIGhzU2l6ZTMgbGg0IGVsTWFyZ2luMCBlbEJHU3R5bGUwIGhzVGV4dFNoYWRvdzAgbWZzXzI2IiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDsgZm9udC1zaXplOiAzMHB4OyIgZGF0YS1ib2xkPSJpbmhlcml0IiBkYXRhLWdyYW1tPSJmYWxzZSIgY29udGVudGVkaXRhYmxlPSJmYWxzZSI-IDxiPldoYXQgaXMgaW4gaXQ_PC9iPgo8L2gxPjxoMSBjbGFzcz0ibmUgZWxIZWFkbGluZSBoc1NpemUzIGxoNCBlbE1hcmdpbjAgZWxCR1N0eWxlMCBoc1RleHRTaGFkb3cwIG1mc18yNiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7IGZvbnQtc2l6ZTogMzBweDsiIGRhdGEtYm9sZD0iaW5oZXJpdCIgZGF0YS1ncmFtbT0iZmFsc2UiIGNvbnRlbnRlZGl0YWJsZT0iZmFsc2UiPjxiPkhvdyBkbyBJIGdldCBpdD88L2I-PC9oMT4&n3pc=true
set-cookie: lidid=acf1a007-7871-42bc-be59-45fc83a71edc; Max-Age=63072000; Expires=Sat, 01 Mar 2025 01:53:14 GMT; SameSite=None; Path=/; Domain=.liadm.com; Secure; HTTPOnly
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://renewyourknees.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
js-agent.newrelic.com/async-api.6bb277af-1226.min.js
151.101.66.137200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/async-api.6bb277af-1226.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (2040), with no line terminators
Hash 58d9e96cdc32504fb45373f15ebdedda
26d4bd4290dad12187fb807c1bf3e5bbe13841e7
96aa6e169e4b557b3c12652ea21fa40e6dc30c8d4ee7fd2d5dfaa89d40d8110e
GET /async-api.6bb277af-1226.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rVd0vqPZIjRAAuBdBGZKYmI41xTgfl3efuuBgz8ZAzLRotLQh+0DasFalfCjPc5dZlT5A6aKsOY=
x-amz-request-id: DTG4KCZFJMCPZFRE
last-modified: Tue, 21 Feb 2023 17:58:28 GMT
etag: "dd573d973dfb2a2559befdfb616d511d"
x-amz-server-side-encryption: AES256
x-amz-version-id: UGVV8ZwcOVei2szXaq59iUl1hO_.ecPe
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 355
x-timer: S1677721995.726158,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1094
X-Firefox-Spdy: h2
js-agent.newrelic.com/lazy-loader.48127245-1226.min.js
151.101.66.137200 OK 520 B URL HTTP/2 js-agent.newrelic.com/lazy-loader.48127245-1226.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (1626), with no line terminators
Hash dac2dcb0be1ec3567fd43c71533f9349
7884cfed34956988b073997edea42ef48bf12bbb
e64fd50eed1865917d16e1cfaf4cf06eeae9c5c8ebcb17485fbc6ccf87fe254e
GET /lazy-loader.48127245-1226.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /GF34eAOW4uvyywChoTfDzcbIZyIakiTwd9RtpvZgH0IvXOexlbfeG765NKO+llG7kL7HQwtPiE=
x-amz-request-id: DTG894CRS46Z4VNE
last-modified: Tue, 21 Feb 2023 17:58:28 GMT
etag: "a3759bbbd15fffd73531bda1e8166ae7"
x-amz-server-side-encryption: AES256
x-amz-version-id: RYYlcbWqAQXd8NZu5sGHRVd.T5RkMgvi
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 352
x-timer: S1677721995.728447,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 520
X-Firefox-Spdy: h2
renewyourknees.com/cdn-cgi/rum?
104.16.12.194204 No Content 0 B URL HTTP/2 renewyourknees.com/cdn-cgi/rum?
IP 104.16.12.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 20465
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr; cf:aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=f0a45de9-751c-4266-9b08-eaeb292e0e1c; aff_sub=1143; aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; affiliate_id=; click_id=6738_sessid2023030201535445; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=102500ec013a7dc02fc1dfb8c1a5ec; addevent_track_cookie=37cd62ca-9810-4fec-47db-6e3238adc636; _li_dcdm_c=.renewyourknees.com; _lc2_fpi=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q; _ga=GA1.2.562218731.1677721994; _gid=GA1.2.2055681504.1677721994; _gat=1; outbrain_cid_fetch=true; _no_tracky_101126271=1; bitmovin_analytics_uuid=e0115b84-f9ab-4884-bd3a-50fd0469bad5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Mar 2023 01:53:15 GMT
access-control-allow-origin: https://renewyourknees.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7a1601471843b51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
151.101.193.91200 OK 5.8 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
IP 151.101.193.91:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 814f641dd619cf540cb27f001ce4bc38
ad3ada9f5cd36098dc48116ba3e8458ea37ffb8a
3e124cdf2182ed6112e6e9feaf75aa4dd2b7f3d6dca829e44ef23647535f8483
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu78JuAqigCqHwvuCdMeEwNz-1qvMltYqUGPT-j-JfV6KamUu_164fy7OypMn9n2jGjB2IE_oKpShAzwh3OKgbgHg
cache-control: public, max-age=31104000
expires: Sat, 20 Jan 2024 13:20:15 GMT
last-modified: Mon, 11 Apr 2022 18:52:17 GMT
etag: "814f641dd619cf540cb27f001ce4bc38"
x-goog-generation: 1649703137121846
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5842
content-type: application/dash+xml
x-goog-hash: crc32c=2Ike4A==, md5=gU9kHdYZz1QMsn8AHOS8OA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:15 GMT
age: 3069180
x-served-by: cache-iad-kiad7000116-IAD, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1677721995.433203,VS0,VE1
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5842
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
172.64.133.15200 OK 6.0 kB URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 172.64.133.15:0
File type ASCII text, with very long lines (26440)
Hash 0d2fbdde5dfa227b1b12e51a46468107
86a5717fe22778feae9d27d6e8b7a4bc2126d6d9
d711618de4d0efb7ba8881e7086a2dd98830f7e003b75844b4cb47446ec629f7
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/css
x-amz-id-2: HpuDfuJOnoRBIn1oGWh6kpnFISyPAhBcUuSh2sgaSOixf+diILYpFUsoF1uDkiR93wgKGECAn7k=
x-amz-request-id: F0PPGVAN5CXAHSGM
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 218480
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pZBLp3UkBcmV3CRPjZvYHOtDq11Ue0gbdKkuXQrKXcru0jwLrC3jNN3I5bNf21uWP97wZlTxzKHT%2Ff9zvVbqkmPkvdZt%2FAVRR4GOxGoBcQmsRIHtrcQW2gFXXOuiZ1U8aC92DjtH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a160137e8b9417d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 105
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 25dd6b7e9e67060ddc275d4bddcb22d5
f1889040c8185001bb36fe30aeb3de3a52c26589
8da85c0fee13629949620746452d09acaf3f853716f29a6800a866f03e5129ac
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Mar 2023 01:53:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Mar 2023 19:49:10 GMT
Expires: Thu, 02 Mar 2023 19:49:10 GMT
ETag: "f1889040c8185001bb36fe30aeb3de3a52c26589"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1267
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 878729dffce70c3dd1674361a9abdf66
6ed9efc320ac26bf973bf46fa0634fe01c52f606
58d7f7243c069e6db5467bbe8576f771d2c71f8491969562400d89990befec9b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Mar 2023 12:55:57 GMT
Expires: Wed, 08 Mar 2023 12:55:56 GMT
Etag: "6ed9efc320ac26bf973bf46fa0634fe01c52f606"
Cache-Control: max-age=557560,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a1601484aa50afe-OSL
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 149
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Thu, 02 Mar 2023 01:53:15 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.87.238200 OK 82 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.87.238:0
Hash 625d4ec62cf00495dfae4c70c398dd02
cd33f8eed2b282f9820a1cb6a09f7097649a3419
e104f8b35a0e3224a80404588d23c378e7f53e9c873434e62436fb8aec381ed2
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 62137
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/118.34a59fa6-1226.min.js
151.101.66.137200 OK 3.4 kB URL HTTP/2 js-agent.newrelic.com/118.34a59fa6-1226.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (8082), with no line terminators
Hash d58584cb1dae4f27cca2eb7eefe0f56c
756e2972e24b07b284fa8a183802d452abbf10df
4428e6d9386bf61704f938b19d26ef519a7df0db4228eae13ed7fb296f3daecd
GET /118.34a59fa6-1226.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9PVMeEDhzjllf/5G+gfkLcrlTiyqJb/9FOQeRNHKbRT6y00t/HbmyjEitdO1tv6MSd/igfkvmI0=
x-amz-request-id: ZQ5DKHJ3W292FE48
last-modified: Tue, 21 Feb 2023 17:58:28 GMT
etag: "9c8a05b5703a1c30e0418f9ba42337df"
x-amz-server-side-encryption: AES256
x-amz-version-id: y3DJX7IlrJ72OYul3G3TdP3MeN5PgTuf
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 353
x-timer: S1677721996.762072,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3412
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=bEd-d180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScUlwJTJCWk5jV01QWDJWMzNpVUM0ckVE&idsd=97421311,1943003328&cw=1&lsw=1
178.250.0.157200 OK 2.0 kB URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=bEd-d180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScUlwJTJCWk5jV01QWDJWMzNpVUM0ckVE&idsd=97421311,1943003328&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (4154), with no line terminators
Hash 31771122a0c1866a3663daa0ebb1edfb
f356f733910edee043887a8823113435263d2e99
af20984786bbe9d0750cfe7f48c144d4dc16e1694d40e3b6e0e1971e3b0a1516
GET /sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=bEd-d180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScUlwJTJCWk5jV01QWDJWMzNpVUM0ckVE&idsd=97421311,1943003328&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 968473
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_timing-aggregate.6b3fec7f-1226.min.js
151.101.66.137200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/page_view_timing-aggregate.6b3fec7f-1226.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (5426), with no line terminators
Hash eca947081b7118e8dca797069b2b819f
91e73e2e6dbe8c11e6d5d70cac4bc902c4d2ae3f
55f78b476838913f4274434f2e883f0fa8d0fca135cbb21d8bfdf6968fe393d2
GET /page_view_timing-aggregate.6b3fec7f-1226.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Jgj8mPgFGDKjsvld4nOVljaB/B0oKkcXyTrUkRBe4iLZcmGb/4Jl4DNapiIv/c3sYsNMAQnQ5/4=
x-amz-request-id: ZQ573Z9HQEVKVPXC
last-modified: Tue, 21 Feb 2023 17:58:28 GMT
etag: "bb17c46ee7bcc843be2e73f3e5b65d46"
x-amz-server-side-encryption: AES256
x-amz-version-id: DO9Gty5K_gvhdqVoKBcMxYBpxtUKYiFC
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 357
x-timer: S1677721996.762499,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2226
X-Firefox-Spdy: h2
js-agent.newrelic.com/metrics-aggregate.7dcaee1b-1226.min.js
151.101.66.137200 OK 730 B URL HTTP/2 js-agent.newrelic.com/metrics-aggregate.7dcaee1b-1226.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (1462), with no line terminators
Hash 06622b57d0fe9bcec8836283465164e6
6db00be57d42f5a8f460482d584f35e9c8005419
e17522a6f7c054873528f4367f7ee8609a40a68d8d905e7e9e323fc084cfcb6b
GET /metrics-aggregate.7dcaee1b-1226.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zvFm2+3qBBsCMZ7lO9WI3d3J0eBN6bJKNhmmqPbfOqB2mhfxOd25p2CmRYd7FYNd49dL4EvOJ6I=
x-amz-request-id: ZQ58DCWJ6PDG6S6E
last-modified: Tue, 21 Feb 2023 17:58:28 GMT
etag: "395608505dac1e4fbe08bd146e09f5c0"
x-amz-server-side-encryption: AES256
x-amz-version-id: UG0CzkEimlrXJ77FXLLaJQP0HdTD7Ej0
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Mar 2023 01:53:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 354
x-timer: S1677721996.762976,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 730
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 25dd6b7e9e67060ddc275d4bddcb22d5
f1889040c8185001bb36fe30aeb3de3a52c26589
8da85c0fee13629949620746452d09acaf3f853716f29a6800a866f03e5129ac
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Mar 2023 01:53:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Mar 2023 19:49:10 GMT
Expires: Thu, 02 Mar 2023 19:49:10 GMT
ETag: "f1889040c8185001bb36fe30aeb3de3a52c26589"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 977424dac88e6af66fa8862b98f78ed9
de756208b5c5d467d71b6db7b25534c2919a9796
e9d3199a4738d9b13d0cba3c0ecde2fbd6e1da77a6e106177378cba972a8ff92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&gjid=1540537839&_gid=2055681504.1677721994&_u=IEBAAEAAAAAAACAAI~&z=1622407156
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&gjid=1540537839&_gid=2055681504.1677721994&_u=IEBAAEAAAAAAACAAI~&z=1622407156
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&gjid=1540537839&_gid=2055681504.1677721994&_u=IEBAAEAAAAAAACAAI~&z=1622407156 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://renewyourknees.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Mar 2023 01:53:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
b-code.liadm.com/a-0690.min.js
143.204.55.54200 OK 12 kB URL HTTP/2 b-code.liadm.com/a-0690.min.js
IP 143.204.55.54:0
Hash 1b02ebaa08fcda91499479382c046c86
23e64c60779929221fad8a72e615048038b1e346
9f83d84032c4a8baff19f42cf73980cb4e10ed6632e983f258b10613d2caef48
GET /a-0690.min.js HTTP/1.1
Host: b-code.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 01 Mar 2023 02:40:40 GMT
cache-control: "public, max-age=86400"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sy4KUUWPKW-MMylUtvRykXiCEUpBCljLyyhR5nlCblYvU-7Zt27QoA==
age: 83554
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 105
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452
178.250.0.163302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452
IP 178.250.0.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:15 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 10966981
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 794
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Thu, 02 Mar 2023 01:53:15 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1261
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 977424dac88e6af66fa8862b98f78ed9
de756208b5c5d467d71b6db7b25534c2919a9796
e9d3199a4738d9b13d0cba3c0ecde2fbd6e1da77a6e106177378cba972a8ff92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fcb83c68702ee0bad8e24e465bb46c8e
0c749da0d81902991aaa30a2d27289d74ea0c957
9de4092ca370da7c156cc9db7714654cf2045b915ffe2b63ad55bba3579b85b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db4225785e088fc5f1218be34d3bd63a
4ce463c6586a1bd4d0d14d4b102262e256cdac36
069d05c2bace9af63a46fbac561762e21bc83c62416096c1365357a859caa8a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Mar 2023 01:53:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-66238646-1&cid=562218731.1677721994&jid=978541953&_u=IEBAAEAAAAAAACAAI~&z=2113427897 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Mar 2023 01:53:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db4225785e088fc5f1218be34d3bd63a
4ce463c6586a1bd4d0d14d4b102262e256cdac36
069d05c2bace9af63a46fbac561762e21bc83c62416096c1365357a859caa8a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3b42baf847f833fa442676cfb999df72
a6bbdf1621670d1626b90ddcf6fb8f1339850f8d
0e8fb2d4746d2d516d3a8dd2916e087a94ad8a285e7784e78c9099bed59d5a26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 114
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Thu, 02 Mar 2023 01:53:16 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 902
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1226.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=5994&ck=0&s=8250c074bc4986f3&ref=https://renewyourknees.com/vsl1651652599068bbbb&ap=312&be=2893&fe=2010&dc=676&perf=%7B%22timing%22:%7B%22of%22:1677721989222,%22n%22:0,%22f%22:2399,%22dn%22:2399,%22dne%22:2399,%22c%22:2399,%22s%22:2399,%22ce%22:2399,%22rq%22:2404,%22rp%22:2856,%22rpe%22:2856,%22dl%22:2865,%22di%22:3561,%22ds%22:3568,%22de%22:3692,%22dc%22:4899,%22l%22:4899,%22le%22:5021%7D,%22navigation%22:%7B%7D%7D&fcp=3308&jsonp=NREUM.setToken
162.247.243.29200 OK 49 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1226.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=5994&ck=0&s=8250c074bc4986f3&ref=https://renewyourknees.com/vsl1651652599068bbbb&ap=312&be=2893&fe=2010&dc=676&perf=%7B%22timing%22:%7B%22of%22:1677721989222,%22n%22:0,%22f%22:2399,%22dn%22:2399,%22dne%22:2399,%22c%22:2399,%22s%22:2399,%22ce%22:2399,%22rq%22:2404,%22rp%22:2856,%22rpe%22:2856,%22dl%22:2865,%22di%22:3561,%22ds%22:3568,%22de%22:3692,%22dc%22:4899,%22l%22:4899,%22le%22:5021%7D,%22navigation%22:%7B%7D%7D&fcp=3308&jsonp=NREUM.setToken
IP 162.247.243.29:0
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1226.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=5994&ck=0&s=8250c074bc4986f3&ref=https://renewyourknees.com/vsl1651652599068bbbb&ap=312&be=2893&fe=2010&dc=676&perf=%7B%22timing%22:%7B%22of%22:1677721989222,%22n%22:0,%22f%22:2399,%22dn%22:2399,%22dne%22:2399,%22c%22:2399,%22s%22:2399,%22ce%22:2399,%22rq%22:2404,%22rp%22:2856,%22rpe%22:2856,%22dl%22:2865,%22di%22:3561,%22ds%22:3568,%22de%22:3692,%22dc%22:4899,%22l%22:4899,%22le%22:5021%7D,%22navigation%22:%7B%7D%7D&fcp=3308&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 49
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: text/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: *
x-served-by: cache-bma1621-BMA
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 4003a630014debe3a875d4dcf31efe89
eaa32177d144deae5f1aa0db76a17d077c36b668
24ff4aa2c9a0ac5fae5fb838341a71ff77eb17608b618a71016b67a8cf1a0d10
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113405
Cache-Control: max-age=150937
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fdf128-139"
Expires: Fri, 03 Mar 2023 19:48:53 GMT
Last-Modified: Tue, 28 Feb 2023 12:18:48 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 313
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 259
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1880
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1845
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1837
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e906ee5917211c1b0989f241a6ad01b
e5a9336dd89191abe1370e5a6fa70035ec8c2bc7
d235b5b8e1e0a6deffed47e8fdfbae86de47f88b905d4c5c98038d31e83fbacf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D235B5B8E1E0A6DEFFED47E8FDFBAE86DE47F88B905D4C5C98038D31E83FBACF"
Last-Modified: Mon, 27 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12863
Expires: Thu, 02 Mar 2023 05:27:39 GMT
Date: Thu, 02 Mar 2023 01:53:16 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-NC82C_egbxjANi6a4zJeYd4hZoNzIE6I6s8cKA
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-NC82C_egbxjANi6a4zJeYd4hZoNzIE6I6s8cKA
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-NC82C_egbxjANi6a4zJeYd4hZoNzIE6I6s8cKA HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.getclicky.com/js
104.16.160.16200 OK 6.0 kB IP 104.16.160.16:0
Hash fed16c9e2c174de2db79a9d0fe0e175a
e7c27230dbc9624f09256046da0d9d7dc65cdb2c
84d431d175c3055f7946a2bde3b676558af4fcf72e3e00c5c5c0f841c5eac327
GET /js HTTP/1.1
Host: static.getclicky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
expires: Wed, 08 Mar 2023 20:55:44 GMT
cache-control: max-age=604800
x-proxy-cache: HIT
content-encoding: gzip
last-modified: Wed, 01 Mar 2023 20:55:44 GMT
cf-cache-status: HIT
age: 17845
server: cloudflare
cf-ray: 7a160137d8c7b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:15 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 755609
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 280 B IP 192.229.221.95:0
Hash a58f39c42cb12e0cade707900acbefd1
ea37055eaa11f6ada310a63be76c282c62b3b190
7370cddc67cdaa6b1f1494b95835baee0926f68b48be4da485ef395f8e019678
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 26915
Cache-Control: max-age=95076
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fe68cd-118"
Expires: Fri, 03 Mar 2023 04:17:52 GMT
Last-Modified: Tue, 28 Feb 2023 20:49:17 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 280
widget.us.criteo.com/event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452
74.119.119.150200 OK 4.3 kB URL HTTP/2 widget.us.criteo.com/event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452
IP 74.119.119.150:0
Hash 2ff98b5644310194fca76acdaca3ba67
eb0699c06aaa3090e6ef164902a8355d4a8bce0d
61dac56c666c52ae347310c53c081cbb8466875e3bdaf228020fd14c831e00ed
GET /event?a=68378&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bbbb%253Faff_sub%253D1143%2526aff_sub2%253D102500ec013a7dc02fc1dfb8c1a5ec%2526affiliate_id%253D%2526click_id%253D6738_sessid2023030201535445%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D102500ec013a7dc02fc1dfb8c1a5ec&dtycbr=15452 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:15 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 16356684
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg
104.18.25.185302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg
IP 104.18.25.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg&C=1
cf-ray: 7a16014fcbfd0b02-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=ZAABjH91-zyDQ01bYvVhpAAA; Path=/; Domain=casalemedia.com; Expires=Fri, 01 Mar 2024 01:53:16 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=678; Path=/; Domain=casalemedia.com; Expires=Wed, 31 May 2023 01:53:16 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=678; Path=/; Domain=casalemedia.com; Expires=Wed, 31 May 2023 01:53:16 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gARiegYK4ONyFLuE49JGQnV0VImTH88c7kFaYOXZUporQ%2B70TWl0rE0xse8UP3ItzvYUJtm%2BdPQzVizznfZ8wG0TUh318ku3XAyadCGxqPo1sFt9bkpqdacpn9JPBWsUOtW3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-aCYoRPegbxjANi6a4zJeYd4hZoOKUXg2mZ0HXA
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-aCYoRPegbxjANi6a4zJeYd4hZoOKUXg2mZ0HXA
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-aCYoRPegbxjANi6a4zJeYd4hZoOKUXg2mZ0HXA HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Thu, 02 Mar 2023 01:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Mar 2023 01:53:16 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f2210efe5125d0b9376a71816d67e683
c49e5cb091afe36016b158d5cc1bcd38c7ae07b2
123df08d78f191def811a56ac98a6f5c9f9fc65d37c338d76b8c786c656b35ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113436
Cache-Control: max-age=160310
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fe15a7-1d7"
Expires: Fri, 03 Mar 2023 22:25:06 GMT
Last-Modified: Tue, 28 Feb 2023 14:54:31 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dt_id=8664&ext_id=k-FZruXvegbxjANi6a4zJeYd4hZoNpXc27x0QzTw
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-FZruXvegbxjANi6a4zJeYd4hZoNpXc27x0QzTw
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-FZruXvegbxjANi6a4zJeYd4hZoNpXc27x0QzTw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Wed, 01 Mar 2023 01:53:16 GMT
Date: Thu, 02 Mar 2023 01:53:16 GMT
Connection: keep-alive
Set-Cookie: id=c4abb89c-f8a4-4aae-ae5d-aa933bc4ffb0; Path=/; Domain=prod.svc.y6b.de; Expires=Fri, 01-Mar-2024 01:53:16 GMT; Max-Age=31536000; Secure; SameSite=None
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-j2Pf8fegbxjANi6a4zJeYd4hZoMRpeFn0UeDaA
23.38.200.22200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-j2Pf8fegbxjANi6a4zJeYd4hZoMRpeFn0UeDaA
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-j2Pf8fegbxjANi6a4zJeYd4hZoMRpeFn0UeDaA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3207235963580225000V10; Expires=Fri, 01 Mar 2024 01:53:16 GMT; domain=.media.net; Path=/;
data-c-ts=1677721996;Expires=Sat, 01 Apr 2023 01:53:16 GMT;path=/;domain=.media.net;
data-c=k-j2Pf8fegbxjANi6a4zJeYd4hZoMRpeFn0UeDaA~~3;Expires=Sat, 01 Apr 2023 01:53:16 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 02 Mar 2023 01:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Mar 2023 01:53:16 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51e3476b8e5931fa6fd1aa6f7a3079a5
5744c1a68debc7c5313e198e09a209d2f6b3fa6a
d4093083b6a8152bfb0002abfca40b5b2085dc7308370a0612782ff2a2296f58
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4093083B6A8152BFB0002ABFCA40B5B2085DC7308370A0612782FF2A2296F58"
Last-Modified: Mon, 27 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11621
Expires: Thu, 02 Mar 2023 05:06:57 GMT
Date: Thu, 02 Mar 2023 01:53:16 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 9676d70dfe04c8003b7ade3dc7a467d7
88355ede5857b8ddb53dd3a03e75e70be82b9150
033fd76196fb16c3f44cf1e7891c3d7ff40ddd55404095a51fc8672a0c8c9b46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113419
Cache-Control: max-age=149901
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fded0e-1d7"
Expires: Fri, 03 Mar 2023 19:31:37 GMT
Last-Modified: Tue, 28 Feb 2023 12:01:18 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg&C=1
104.18.25.185200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg&C=1
IP 104.18.25.185:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-IkHpu_egbxjANi6a4zJeYd4hZoP81k-HbYZlsg&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: image/gif
content-length: 43
cf-ray: 7a1601503c110b02-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YpuQNNaC9PhwvZegoGmXevjvenp1n7FIpf%2BaPxrk2YsOIBNfdOs2L4xmhNmp4u73HoqTglx37UZbSfq9MyLqKFRhAupEPPgCt05jZfKQkXbKmJowfGK24Rkdx16qJ3njR3Wa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-arpS6fegbxjANi6a4zJeYd4hZoMm4NrFtTYcVA
37.157.6.246200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-arpS6fegbxjANi6a4zJeYd4hZoMm4NrFtTYcVA
IP 37.157.6.246:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-arpS6fegbxjANi6a4zJeYd4hZoMm4NrFtTYcVA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 22 May 2018 12:14:37 GMT
etag: "5b0409ad-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ
142.250.74.66302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d6880fb854f99ac30b4748e5661325c7
2c6d87d6a4870f88e46a3c9abdd56a7a3863d602
5b62c5f7c48f017dd2d22e7a4981e912447b3df5b255a9cfb9b714f4003a2252
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm=&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ&google_tc=
date: Thu, 02 Mar 2023 01:53:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Mar-2023 02:08:16 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 983cc1e141b76cd590218f889a9bfdc2
9f6878c3398cafba237d055b7dc9cbb2f9475005
d2560e454d9b6027ed0c9a79127ef841d567b8aeaf2de45a51114fd1a082eb26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 26829
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Last-Modified: Wed, 01 Mar 2023 18:26:07 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash efade9c33f90697bfa6ff7db6ac335af
8cb954047ebd0f16ce83357db2eb4f32f4d083f7
ae4f04d81f7ead3f636714e6fda943bb85ed8b4dc95b35722f37f6c111c650f1
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Mar 2023 01:53:16 GMT
Last-Modified: Wed, 01 Mar 2023 18:22:32 GMT
Server: ECAcc (nya/7968)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yQfXZf8GdGvpwBx99dxj1DtxVIJSwpRaDrC807Dh5P4GELCgzUCWBQ==
Age: 27044
id5-sync.com/s/966/9.gif?puid=k-I43WRvegbxjANi6a4zJeYd4hZoO876Ina0Fekw
162.19.138.83200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-I43WRvegbxjANi6a4zJeYd4hZoO876Ina0Fekw
IP 162.19.138.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-I43WRvegbxjANi6a4zJeYd4hZoO876Ina0Fekw HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Mar-2023 01:58:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Mar 2023 01:53:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ
3.75.62.37302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ
IP 3.75.62.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIwBAGQCEPmQFnRG_18OlDDiHLV3_PEFEgEBAQFTAWQJZAAAAAAA_eMAAA&S=AQAAAolL-OlH3Cyf-9NLR3KCjJI; Expires=Fri, 1 Mar 2024 07:53:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
secure.adnxs.com/setuid?entity=52&code=k-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA
37.252.171.84307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/setuid?entity=52&code=k-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA
IP 37.252.171.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=52&code=k-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Mar 2023 01:53:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA
AN-X-Request-Uuid: 00683654-48b0-4df4-a0fa-f5b1fd5dca07
Set-Cookie: uuid2=5738829333121308218; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 31-May-2023 01:53:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 68eab7b4c5e2a567f4090c23f61a6e0f
bce96f852917ea18fe2725e147da076071b3393d
cc84e49d10bfded3a56cc9b83167add4cb8d807528a55be680872bbf46811fb8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113317
Cache-Control: max-age=141110
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fdcb1d-1d7"
Expires: Fri, 03 Mar 2023 17:05:06 GMT
Last-Modified: Tue, 28 Feb 2023 09:36:29 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-n4OdXfegbxjANi6a4zJeYd4hZoNDCtDEoL1y-w&expires=30
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-n4OdXfegbxjANi6a4zJeYd4hZoNDCtDEoL1y-w&expires=30
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-n4OdXfegbxjANi6a4zJeYd4hZoNDCtDEoL1y-w&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 28e1e7d28d06b07ec669bc9e43057b8e
Content-Type: image/gif
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm=&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ&google_tc=
142.250.74.66302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm=&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ&google_tc=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a1c0aa8ad3676a2348f4c0e7d7852c2a
ab25434d1c32fb24f358cedae599261f94a167fd
88ca9aa6d64d5322fc3f240c7b8cc7b4e8357af5774ff02ec932f94051174f55
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_cm=&google_hm=ay1qVkxLRl9lZ2J4akFOaTZhNHpKZVlkNGhab09uTkdGYldLTy10UQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_error=3
date: Thu, 02 Mar 2023 01:53:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ&verify=true
3.75.62.37204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ&verify=true
IP 3.75.62.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-JnaYufegbxjANi6a4zJeYd4hZoMZcOh9Z3Q6PQ&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Mar 2023 01:53:16 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIwBAGQCEBT9fXTp0oQh0r3zF4cgfmwFEgEBAQFTAWQJZAAAAAAA_eMAAA&S=AQAAAg6iJ34zhV_lYkUWwBWZ9TE; Expires=Fri, 1 Mar 2024 07:53:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-2H56sPegbxjANi6a4zJeYd4hZoMwh9HZ-ctnFg&dongle=013b
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-2H56sPegbxjANi6a4zJeYd4hZoMwh9HZ-ctnFg&dongle=013b
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-2H56sPegbxjANi6a4zJeYd4hZoMwh9HZ-ctnFg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1c9d954f7097c1a36517d89ecfd2207f
acd23d414b49a28d7cd7e895d36186de4be6c7a7
8b5b441e5bc475bfac9a84e6e89be6c0ccd5258e2c2d7a57c994c059b8a84669
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 28 Feb 2023 14:03:27 GMT
Expires: Tue, 07 Mar 2023 14:03:26 GMT
Etag: "acd23d414b49a28d7cd7e895d36186de4be6c7a7"
Cache-Control: max-age=475209,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a1601509cd80afe-OSL
secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA
37.252.171.84200 OK 43 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA
IP 37.252.171.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-wGBk4vegbxjANi6a4zJeYd4hZoPmdkaYfpV1IA HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Mar 2023 01:53:16 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 70d489f0-d0a0-45a0-bea1-02dcabd60ce4
Set-Cookie: anj=dTM7k!M4/rCxrEQF']wIg2C%3]q3<D!1yIE`TLrfSBBmHfSZvjKOQkr=526cfI%uw4jX`+sp.r<4!/9t()1Nj>8mox$[+-u)c3:OAQU=#(EWos>wL5L!!$9[+2kOX; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 31-May-2023 01:53:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 64d14c75c54926e54870a8dea01c3eed
4434bf4f9c72a2ee4183df4a449419a123415130
a5c0bfb5d748e1507c47827690ddf05c8d01be4e519846fdef9ea7c8fa0d5383
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Mar 2023 01:53:16 GMT
Last-Modified: Wed, 01 Mar 2023 18:22:44 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6UdmNyhzCxSa72PPWe7SsbvIfZBBTxgfVdkraFsnE8r1wxaao6pQSQ==
Age: 27032
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 7fd2a071825f2235f3224d13924f1891
ad1861cd370740bbfa2ccd4972d710cb1877b080
f757870001bce6ec4fcca4bef3b58544111730f5e8c6b89464d6c880e7cce7a5
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86402
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63feaef7-1d7"
Expires: Fri, 03 Mar 2023 01:53:18 GMT
Last-Modified: Wed, 01 Mar 2023 01:48:39 GMT
Server: ECAcc (nya/7946)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 89Y-z1EJ9ZDdI-xuUrmxaG2nCrVTJkRo6-KjkL52Wg4TR0TjK8-fUw==
Age: 279
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 4dc2a9d025775ae83a0b55d1dbb6cb8d
071a050117f974e9c30a5b795c920315451778f8
b645c376ed4b6332ade9cd3d6307e1fb321de0050557b43c32a306b5718ff6e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 112732
Cache-Control: max-age=125431
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fd9027-139"
Expires: Fri, 03 Mar 2023 12:43:47 GMT
Last-Modified: Tue, 28 Feb 2023 05:24:55 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
192.229.221.95200 OK 280 B IP 192.229.221.95:0
Hash a58f39c42cb12e0cade707900acbefd1
ea37055eaa11f6ada310a63be76c282c62b3b190
7370cddc67cdaa6b1f1494b95835baee0926f68b48be4da485ef395f8e019678
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 18242
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:16 GMT
Last-Modified: Wed, 01 Mar 2023 20:49:14 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 280
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw&KRTB&23144-uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw&KRTB&23286-uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw&KRTB&23287-uid:k-SiTDAfegbxjANi6a4zJeYd4hZoNYfNsCQYR9sw; domain=pubmatic.com; secure; expires=Sat, 01-Apr-2023 01:53:14 GMT; path=/
PugT=1677721994; domain=pubmatic.com; secure; expires=Sat, 01-Apr-2023 01:53:14 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30
35.156.231.131302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30
IP 35.156.231.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=526a4874-1743-4254-a381-d38f35242de1; path=/; expires=Fri, 01-Mar-2024 01:53:16 GMT; domain=.bidswitch.net; samesite=none; secure
c=1677721996; path=/; expires=Fri, 01-Mar-2024 01:53:16 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1677721996; path=/; expires=Fri, 01-Mar-2024 01:53:16 GMT; domain=.bidswitch.net; samesite=none; secure
c=1677721996; path=/; expires=Fri, 01-Mar-2024 01:53:16 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-JIu-aPegbxjANi6a4zJeYd4hZoO1JFCGratVaA
3.69.121.179204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-JIu-aPegbxjANi6a4zJeYd4hZoO1JFCGratVaA
IP 3.69.121.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-JIu-aPegbxjANi6a4zJeYd4hZoO1JFCGratVaA HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Mar 2023 01:53:16 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f79b7ced91cab26fb795c62ff5a0259b
11a0c8bb1a152902d19ed04d6ff0bb248e2839d3
2ecee8079c0bd54406991d8c89dd9c7926925b070e26db258e040bfa7d90bf34
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 113454
Cache-Control: max-age=128677
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:17 GMT
Etag: "63fd9a04-1d7"
Expires: Fri, 03 Mar 2023 13:37:54 GMT
Last-Modified: Tue, 28 Feb 2023 06:07:00 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A
3.70.39.209302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A
IP 3.70.39.209:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A
set-cookie: tuuid=6a94d71a-d4c1-4756-af10-85842519f7cf; Expires=Wed, 31 May 2023 01:53:16 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1677721996; Expires=Wed, 31 May 2023 01:53:16 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 31afa7d2c6c01450bb279589fe474cd5
4509523e9e7bd01bc97b414881cb754bebe65189
2c5d9cc3517b17c68614c2c04a5b08aa627cfd8b43ae53a2e4010a0b3b3ec82f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100466
Date: Thu, 02 Mar 2023 01:53:16 GMT
Etag: "63fe7dc4-1d7"
Expires: Fri, 03 Mar 2023 05:47:42 GMT
Last-Modified: Tue, 28 Feb 2023 22:18:44 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BV7sdQrkWXsZuqcdmXejVCrBQofpCmCf36jh99TkZ6Mp-nTxtRmMBg==
Age: 26938
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30
35.156.231.131200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30
IP 35.156.231.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-vRQCzfegbxjANi6a4zJeYd4hZoM43jP25UwJ6A&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:17 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A
3.70.39.209200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A
IP 3.70.39.209:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-dk9gPfegbxjANi6a4zJeYd4hZoNRNF6mdNgF6A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:17 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-xqChxvegbxjANi6a4zJeYd4hZoOrK00RVQ2m4A&pn_id=criteo&ext=1
54.77.226.36200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-xqChxvegbxjANi6a4zJeYd4hZoOrK00RVQ2m4A&pn_id=criteo&ext=1
IP 54.77.226.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-xqChxvegbxjANi6a4zJeYd4hZoOrK00RVQ2m4A&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:17 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g2c50d7418ff0b131631%7C1677721997036%7C0%7C; Domain=.yieldmo.com; Expires=Fri, 01-Mar-2024 01:53:17 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-xqChxvegbxjANi6a4zJeYd4hZoOrK00RVQ2m4A; Domain=ads.yieldmo.com; Expires=Fri, 01-Mar-2024 01:53:17 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.171.149307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Mar 2023 01:53:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: b0ecf57e-4979-4d7e-9a93-2d3a078c91e2
Set-Cookie: uuid2=4070804796477146205; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 31-May-2023 01:53:17 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dpm.demdex.net/ibs:dpid=28645&dpuuid=
52.211.39.111302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 52.211.39.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-0d826ede1.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=89500173043674186790021477712032840398; Max-Age=15552000; Expires=Tue, 29 Aug 2023 01:53:17 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: ZAvFPPS7QqQ=
Content-Length: 0
Connection: keep-alive
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.171.149302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 02 Mar 2023 01:53:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 403c193f-31b4-44ed-b912-440057780349
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 36035abbd09eb8b385b849fde9389c9d
e3793d29c245b317008d429da3c3f97bac1c44f0
f1b861dd840562a433fa67609c6dff2d93605bc4e457dee7c981df1cc975fba3
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Mar 2023 01:53:17 GMT
Last-Modified: Wed, 01 Mar 2023 18:23:45 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0xkfszjrmV6Qe2SYcBwAtTVQXyJXSeH_BPQLA67SREKc43vaShDrIw==
Age: 26972
sync.outbrain.com/cookie-sync?p=criteo&uid=k-2scz4fegbxjANi6a4zJeYd4hZoOoCVEPTSecoQ&initiator=partner
70.42.32.223200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-2scz4fegbxjANi6a4zJeYd4hZoOoCVEPTSecoQ&initiator=partner
IP 70.42.32.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-2scz4fegbxjANi6a4zJeYd4hZoOoCVEPTSecoQ&initiator=partner HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:17 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 5c91385acc8ad49079c8483279602c13
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
52.211.39.111200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 52.211.39.111:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-025f2aae7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: vdbGajuAQi0=
Content-Length: 59
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 96ff8c621c8798e08f560ace7d8b3e88
3d2e9d086cedc051dd3ab9b8983b5731b88c03d3
de66f8b5c532db8ce1a5bca1bd155dbbd680cf5fe14ac3b687fb8632da2baebb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Mar 2023 01:53:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Mar 2023 03:28:45 GMT
Expires: Wed, 08 Mar 2023 03:28:44 GMT
Etag: "3d2e9d086cedc051dd3ab9b8983b5731b88c03d3"
Cache-Control: max-age=523526,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a1601510cf20afe-OSL
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 775584
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lr9W4PegbxjANi6a4zJeYd4hZoPII6Qe4qtyUg
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lr9W4PegbxjANi6a4zJeYd4hZoPII6Qe4qtyUg
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lr9W4PegbxjANi6a4zJeYd4hZoPII6Qe4qtyUg HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=a47105efa138d97d6ffe91e677e33845; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 02 Mar 2023 01:53:16 GMT
content-length: 49
x-envoy-upstream-service-time: 8
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 59f55b3ac514398b2084081d85d22b53
7694827c61b64ec244ea2df4b38e213c52a2bbbf
ab5b28891d0c5aae7d56daf63de5a39b02cc06d1cdf44baaabe6e61d4f4084cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 16628
Cache-Control: max-age=91638
Content-Type: application/ocsp-response
Date: Thu, 02 Mar 2023 01:53:17 GMT
Etag: "63fe838f-1d7"
Expires: Fri, 03 Mar 2023 03:20:35 GMT
Last-Modified: Tue, 28 Feb 2023 22:43:27 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
108.128.244.129204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 108.128.244.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Mar 2023 01:53:17 GMT
set-cookie: _kuid_=PaNx5DFz; Expires=Tue, 29-Aug-23 01:53:17 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n023-dub-prod.krxd.net
x-request-time: D=37 t=1677721997
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Mar 2023 01:53:16 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 494109
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 47e35ad4a745693681da9b46b12671d8
58aebd6020ddc566bd2963cbaecb02ddc93b66a2
fc56db9664c0984bfb92d30f386856c51ed16de38717b11430a02e61013c526a
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "FC56DB9664C0984BFB92D30F386856C51ED16DE38717B11430A02E61013C526A"
Last-Modified: Wed, 01 Mar 2023 14:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2925
Expires: Thu, 02 Mar 2023 02:42:02 GMT
Date: Thu, 02 Mar 2023 01:53:17 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.14.121.110200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.14.121.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:17 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 00b1ec30-b89d-11ed-8449-0000ac1701fc
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4b6a552-99ee-4553-9f49-e91b95645e26.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4b6a552-99ee-4553-9f49-e91b95645e26.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25cb830d4f133b58ecf680cadf8801d3
0b832c73eca6a196fe66c4b2f2a95c6440360295
960eef032353ba6c36f7495e1884222536af3c5577e880270be927374738361d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4b6a552-99ee-4553-9f49-e91b95645e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13658
x-amzn-requestid: 66b11a7b-6720-4be4-a874-c52e7e2bc738
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BHwNYGLUIAMFrqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ffc722-1159cbbf3448ee55435d73bf;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 21:44:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: IbJnp3QbzRlqH6eao_8qRAWnsZ0dsE5HmOn2Q8nNQPgJtyU8HslYCg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5c35539543902c678280929df206948c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Mar 2023 21:51:16 GMT
etag: "0b832c73eca6a196fe66c4b2f2a95c6440360295"
content-type: image/jpeg
age: 14523
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1892
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:19 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1852
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.55.1
date: Thu, 02 Mar 2023 01:53:18 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
renewyourknees.com/cdn-cgi/rum?
104.16.12.194204 No Content 0 B URL HTTP/2 renewyourknees.com/cdn-cgi/rum?
IP 104.16.12.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 657
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr; cf:aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=f0a45de9-751c-4266-9b08-eaeb292e0e1c; aff_sub=1143; aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; affiliate_id=; click_id=6738_sessid2023030201535445; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=102500ec013a7dc02fc1dfb8c1a5ec; addevent_track_cookie=37cd62ca-9810-4fec-47db-6e3238adc636; _li_dcdm_c=.renewyourknees.com; _lc2_fpi=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q; _ga=GA1.2.562218731.1677721994; _gid=GA1.2.2055681504.1677721994; _gat=1; outbrain_cid_fetch=true; _no_tracky_101126271=1; bitmovin_analytics_uuid=e0115b84-f9ab-4884-bd3a-50fd0469bad5; is_eu=false; 6k37lq76vuqjyyzr=true; 12069231_viewed_1=4; cto_bundle=YtAer19uUHNMTnhXbE83ZXZDRE9IZWY1eHJEM0F3RDlxek8wZ3JxbnVqT2FONVAxSDhlNjBjNyUyQlA0Q0x5VzB4aSUyRlpGWSUyQmtnJTJCOHZ5UE5maWg3JTJCVkVIdWgySWhlczNlQkUwYXlqUXo4Y0pldEclMkJEVWVlczNOa3hUQyUyRmNLdk5WU21rWFZWTjZsREZwVUZOb3M0SktlJTJGZGxNclZnJTNEJTNE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Mar 2023 01:53:19 GMT
access-control-allow-origin: https://renewyourknees.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7a16015ff94cb51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-Rtlwv_egbxjANi6a4zJeYd4hZoNkpRligjdQZQ
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-Rtlwv_egbxjANi6a4zJeYd4hZoNkpRligjdQZQ
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-Rtlwv_egbxjANi6a4zJeYd4hZoNkpRligjdQZQ HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Mar 2023 01:53:16 GMT
x-fastly-to-nlb-rtt: 21882
access-control-allow-credentials: true
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 172.64.133.15:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/css
x-amz-id-2: vC8KBN503iyWKZzHxfJc5rs99Ocw4DSTaifdaL1SsWTbuhhIHZc4Cm+BPlh6dJ7ueugjQrc5cWE=
x-amz-request-id: F0PHW7H6699FG8TW
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 218482
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1c1NDhJJ6no8k5lI8h4C1nS9e94LU9GfKQluUMNj37998TiwixsZy%2BjAdH623mwfqC%2BFtmk8ULnqPESXTK%2Bh8G%2BUn35b7uY4bJLszok9BWKDr5zywKmsUtnUKGbtVJ%2BCsVyufd1n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a160137c892417d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.1.3200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.1.3:0
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: text/javascript
last-modified: Mon, 02 Jan 2023 16:36:54 GMT
etag: W/"63b30826-aae4"
expires: Fri, 03 Mar 2023 01:53:14 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
renewyourknees.com/images/background.png?_unique=0.24528175331865198&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/images/background.png?_unique=0.24528175331865198&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec
IP 104.16.12.194:0
GET /images/background.png?_unique=0.24528175331865198&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr; cf:aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=f0a45de9-751c-4266-9b08-eaeb292e0e1c; aff_sub=1143; aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec; affiliate_id=; click_id=6738_sessid2023030201535445; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=102500ec013a7dc02fc1dfb8c1a5ec; addevent_track_cookie=37cd62ca-9810-4fec-47db-6e3238adc636; _li_dcdm_c=.renewyourknees.com; _lc2_fpi=1a79128f2243--01gtg0c0aajxr5ee4f38tx5c2q; _ga=GA1.2.562218731.1677721994; _gid=GA1.2.2055681504.1677721994; _gat=1; outbrain_cid_fetch=true; _no_tracky_101126271=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 7a160142ee74b51b-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: d917f10f485dff3231f92f34dd1b614f
x-runtime: 0.013532
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=q8rQx180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScFEwMThGcHVOYUZOdXdNN3clMkZudWVB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=bEd-d180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dKQVhxJTJCa012VkRPOUtXbTV0OHBScUlwJTJCWk5jV01QWDJWMzNpVUM0ckVE; expires=Tue, 26 Mar 2024 01:53:15 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 337936
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
IP 104.16.12.194:0
GET /vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/html; charset=utf-8
cf-ray: 7a1601332893b51b-OSL
access-control-allow-origin: *
cache-control: no-cache, private
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: ecebf7c54e1f88852cdac5e2cda75514
x-runtime: 0.307629
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3cd34ee3-4e24-4260-84f3-e4143ce7ecab&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
104.16.12.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3cd34ee3-4e24-4260-84f3-e4143ce7ecab&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
IP 104.16.12.194:0
GET /userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3cd34ee3-4e24-4260-84f3-e4143ce7ecab&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 02 Mar 2023 01:53:13 GMT
content-type: text/html
cf-ray: 7a16013a8eddb4f7-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: a6e031488f82d012d03dd9527152e2eb
x-runtime: 0.029774
set-cookie: __cf_bm=rHl.MU1jMdJ3.3uE83wvFYKe6V356WEuJX9pH1CTWS0-1677721993-0-ARO9anpGZK+kQidz0Exya514HzRxmmY3Z4TaFM2fdWJMEAA2GwT/EsCWc+kFDPfzI8ex+BCaXx22UY54kizqZa2f+62/360Ftey1IaZt2EWN; path=/; expires=Thu, 02-Mar-23 02:23:13 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-3ohSGvegbxjANi6a4zJeYd4hZoNcbXqkgLUKoA
18.233.216.139200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-3ohSGvegbxjANi6a4zJeYd4hZoNcbXqkgLUKoA
IP 18.233.216.139:0
GET /sync?UICR=k-3ohSGvegbxjANi6a4zJeYd4hZoNcbXqkgLUKoA HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:17 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-jVLKF_egbxjANi6a4zJeYd4hZoOnNGFbWKO-tQ&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 233264
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 392529
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=ffc09735-3a83-4f39-ad14-638e0deb4cfa&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
104.16.12.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=ffc09735-3a83-4f39-ad14-638e0deb4cfa&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
IP 104.16.12.194:0
GET /userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=ffc09735-3a83-4f39-ad14-638e0deb4cfa&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 02 Mar 2023 01:53:13 GMT
content-type: text/html
cf-ray: 7a16013a8edbb4f7-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: fc51340dfcbfd8a70be7a829a119289f
x-runtime: 0.022115
set-cookie: __cf_bm=JMkSQ3pnwy2sQEonKFh9GKyXivui1NIfkXt8QQEczZY-1677721993-0-AX9sNsj7ovii/DGlNULMhKc9RCnoamc4CFmqT8aEpnL5g0mhpeyglt0snGW2dD+0YIrzHxdf5/FNh26P+JfhoWVxktlnD2ciAeqg/49a9T2+; path=/; expires=Thu, 02-Mar-23 02:23:13 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=dfZ_Stvbq0x7tdQuKnVAGt1JRliw.tHzCJ38KrBctIs-1677721993-0-AbWm6u_eOpjwx1wpiAnhWt1laDewLXEdeHacl67QUn0ob52TNJvyByIG--vTZn2IuhLy0qzmVM9hSqxnqga7e6J0WxNBE4KSJoKbTBBBeVfzZlV7YqHattiCvVJQ4R5XGg"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=dfZ_Stvbq0x7tdQuKnVAGt1JRliw.tHzCJ38KrBctIs-1677721993-0-AbWm6u_eOpjwx1wpiAnhWt1laDewLXEdeHacl67QUn0ob52TNJvyByIG--vTZn2IuhLy0qzmVM9hSqxnqga7e6J0WxNBE4KSJoKbTBBBeVfzZlV7YqHattiCvVJQ4R5XGg; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-0LNZ6_egbxjANi6a4zJeYd4hZoOKIv1ny4frLQ
185.86.139.102200 OK 0 B URL HTTP/2 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-0LNZ6_egbxjANi6a4zJeYd4hZoOKIv1ny4frLQ
IP 185.86.139.102:0
ASN #201081 SmartAdServer SAS
GET /redir/?partnerid=79&partneruserid=k-0LNZ6_egbxjANi6a4zJeYd4hZoOKIv1ny4frLQ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Thu, 02 Mar 2023 01:53:16 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=1831328395643253057; expires=Sat, 30 Mar 2024 01:53:17 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 30 Mar 2024 01:53:17 GMT; domain=smartadserver.com; path=/
csync=79:k-0LNZ6_egbxjANi6a4zJeYd4hZoOKIv1ny4frLQ; expires=Fri, 01 Mar 2024 01:53:17 GMT; domain=smartadserver.com; path=/
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-Firefox-Spdy: h2
www.clickfunnels.com/images/closemodal.png
104.18.39.181301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/images/closemodal.png
IP 104.18.39.181:0
GET /images/closemodal.png HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 02 Mar 2023 01:53:12 GMT
location: https://classic.clickfunnels.com/images/closemodal.png
cache-control: max-age=3600
expires: Thu, 02 Mar 2023 02:53:12 GMT
set-cookie: __cf_bm=njbRxE.sF2HpEPVUq1jwiC1nEnJ0guh7xbgiMROy3LA-1677721992-0-Ad0wfkWIg1q4uS5oKlAtHvjzX+IndHUXVQAphhYsd2E8eVee/o4kjNTu09ztQcrjdnidUlPoisCZTvLmNXFJd4w=; path=/; expires=Thu, 02-Mar-23 02:23:12 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a1601375a6fb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=e65ae125-69b9-4a38-953c-217a9b1e597e&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
104.16.12.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=e65ae125-69b9-4a38-953c-217a9b1e597e&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec
IP 104.16.12.194:0
GET /userevents/?funnel_id=UnNZT3BEZG8zd1doQ01Jd1VwNHlFUT09LS16eWQ2cGJYdWx1Z1E1Tm1iSDNpZStRPT0%3D--d221384ec489434a68074e5ad8ef845588582e70&page_id=dkZiMW55WVUzZkJGVmM4a3JjTmRoZz09LS1DUlV0ZDNtY1UvdnY3cVlTQjB5SnFnPT0%3D--76bd679f5eac680fe20610df0ce9c7dbc3dd91c6&funnel_step_id=NW1WKzQyOXJZazk2UCtuSm5qUzVmUT09LS1FMWZYcG51dE1tYmk0ZmxOd0RrNU9BPT0%3D--c6b76c6aa3d838f9c8279d227f2638e1d335ac41&user_id=Z1IrZ2o2c1BPdUVEOUFxV2FNWnk2dz09LS1FM2FZOTc5NUw0VUNHM3ViRjd3TFpRPT0%3D--5508069d2039d7afa7fb159802a62198051e0560&account_id=U3VYTXp0MjJ6VHZsVksxU3JteTJyUT09LS1zc3Rwanl6RklyN2NHN0d6QXhpMHl3PT0%3D--15a780c91433abf6a3c3ab57720546f491c72d03&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=e65ae125-69b9-4a38-953c-217a9b1e597e&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bbbb%3Faff_sub%3D1143%26aff_sub2%3D102500ec013a7dc02fc1dfb8c1a5ec%26affiliate_id%3D%26click_id%3D6738_sessid2023030201535445%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D102500ec013a7dc02fc1dfb8c1a5ec HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 02 Mar 2023 01:53:13 GMT
content-type: text/html
cf-ray: 7a16013a8ee0b4f7-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: e5403e0c2d106516bf4636d5b528990e
x-runtime: 0.059766
set-cookie: __cf_bm=CkqigDQYjFQ37R.H_p2JZ7CPAixIno27lZOLSFZp35U-1677721993-0-AX0myhkDzlp7RjwP0lxwwlzQfNeGkMGQ2AfbDMY3ofEwcE0xdV7jFEykBaFryxGxBNp9XCPZuoSM5APzov/9RD/26/DcIoVrEEhprQHXH2mG; path=/; expires=Thu, 02-Mar-23 02:23:13 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
assets.mantisadnetwork.com/analytics.min.js
143.204.55.86200 OK 0 B URL HTTP/2 assets.mantisadnetwork.com/analytics.min.js
IP 143.204.55.86:0
GET /analytics.min.js HTTP/1.1
Host: assets.mantisadnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Aug 2020 16:12:44 GMT
x-amz-version-id: Ck1Ya2WWYBt8azQIxoUFopCW7mWWtikS
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Mar 2023 01:20:39 GMT
cache-control: max-age=3600
etag: W/"d982d874969783cad1711ce501e9f999"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3yPkFt-ZS1XaaSqo9sOuLIfrTjvn08rP2iFqsZw6k6Lbq-IdHOuz4g==
age: 1955
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-zgBj4_egbxjANi6a4zJeYd4hZoP8f7_j1pG7QIv_AZTN3pum
3.74.211.17200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-zgBj4_egbxjANi6a4zJeYd4hZoP8f7_j1pG7QIv_AZTN3pum
IP 3.74.211.17:0
GET /usersync/push?partner=criteo&partnerId=k-zgBj4_egbxjANi6a4zJeYd4hZoP8f7_j1pG7QIv_AZTN3pum HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22fffe2c90-b89c-11ed-bcb4-4ba24c04a53c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Mar 2023 01:53:16 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22fffe2c90-b89c-11ed-bcb4-4ba24c04a53c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Mar 2023 01:53:16 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22fffe2c90-b89c-11ed-bcb4-4ba24c04a53c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Mar 2023 01:53:16 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22fffe2c90-b89c-11ed-bcb4-4ba24c04a53c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Mar 2023 01:53:16 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-zgBj4_egbxjANi6a4zJeYd4hZoP8f7_j1pG7QIv_AZTN3pum%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Thu, 16 Mar 2023 01:53:16 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
IP 178.250.0.157:0
GET /syncframe?topUrl=renewyourknees.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=b0a8df3f-e5e2-4580-ba96-bd94d1238d52; expires=Tue, 26 Mar 2024 01:53:13 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 511198
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.126200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.126:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 100956
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
renewyourknees.com/vendor.js
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/vendor.js
IP 104.16.12.194:0
GET /vendor.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:13 GMT
content-type: application/javascript
cf-ray: 7a16013a5b89b51b-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 07380e95ad5bd79f63341849d7a5903e
x-runtime: 0.019901
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
renewyourknees.com/assets/lander.css
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/assets/lander.css
IP 104.16.12.194:0
GET /assets/lander.css HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bbbb?aff_sub=1143&aff_sub2=102500ec013a7dc02fc1dfb8c1a5ec&affiliate_id=&click_id=6738_sessid2023030201535445&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=102500ec013a7dc02fc1dfb8c1a5ec
Cookie: __cf_bm=Pr9dzOCfZqR7NrZpQ455EUApkndRsSmcwkXvHSmLq5c-1677721992-0-ASQnAWmobahEteNOS6lXMutIlVnzcdoLBEHbzv3GMlpiKum4fAyTfFzaySH5sObUDBa4mRiElzjEu67iejymplyN8d2zyn82lNp2srjvJBSr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Mar 2023 01:53:12 GMT
content-type: text/css
cf-ray: 7a16013679b2b51b-OSL
access-control-allow-origin: *
age: 528
cache-control: public, max-age=1200
etag: W/"63f3970a-6a514"
expires: Thu, 02 Mar 2023 02:13:12 GMT
last-modified: Mon, 20 Feb 2023 15:51:38 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-max-age: 1728000
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2