firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 21:06:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VAGTxB3yEwXKshkg1h0nUqI8uXo-58hbZ-wLxPd4tstRd3ZMMX4v9g==
Age: 2411
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16615
Expires: Thu, 08 Sep 2022 02:23:50 GMT
Date: Wed, 07 Sep 2022 21:46:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 05:03:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qWtRakrbJ1J8aKxSWggKySX84xlA8Io9y0Gm_dG7H47-UyUtTAfKxg==
age: 64821
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:46:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mwebnice.com/6738/186/2/?subid=tismm7
172.67.146.245302 Found 0 B URL HTTP/1.1 mwebnice.com/6738/186/2/?subid=tismm7
IP 172.67.146.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /6738/186/2/?subid=tismm7 HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 21:46:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=3600, private
pragma: no-cache
location: https://trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid20220907214630904&aff_sub=186
expires: Wed, 07 Sep 2022 22:46:55 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7472a3ccbc26b515-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 21:38:18 GMT
Expires: Wed, 07 Sep 2022 22:05:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zAqhBIJDEKFwu6FCZ8hRbG8RpE0uPTVUsdZONy6foUr9bU2W3ybZxw==
Age: 517
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a81b0f5b5d11bf95fc176833b2f6e808
5b194aa5a8bf3a6b0d117ccfd0f487f6db0587b5
8f6ae83f2b85db7174bbbc6553e2921617b5c8a401315e76082682949a0bd9cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4399
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:55 GMT
Last-Modified: Wed, 07 Sep 2022 20:33:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.88.220.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.220.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uLFz/0Rm8PhYdFNa/7N3Ow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IeeJvtcgx1yClxwlLf6UICkNUr4=
renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
104.16.12.194200 OK 341 kB URL HTTP/2 renewyourknees.com/hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png
IP 104.16.12.194:0
File type PNG image data, 1018 x 564, 8-bit/color RGBA, non-interlaced\012- data
Size 341 kB (341245 bytes)
Hash a2e34c3ae57383e15887e5680d0badff
6e2913e84cd0a3549e044c545b93524550e1f170
6ef63fae9358d66f9130a085044c84f1ec67ede5a7efe5fa32a36894912f92fd
GET /hosted/images/ed/8afffddd394e8d8023a2236d06f56b/joint-restore-gummies-6-pack.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 341245
cf-ray: 7472a3d62b240b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "ccd66439e790bb40a687ea93e7563a63"
last-modified: Wed, 11 Nov 2020 12:28:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=341393
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
104.16.12.194200 OK 78 kB URL HTTP/2 renewyourknees.com/hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png
IP 104.16.12.194:0
File type PNG image data, 275 x 339, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ac43691fbbef0a73508aca781e38145
41b3c98f446e95430fcc62da38cdc7b92409c231
71da7fea00c24cdff5371bdda93015e107a55700efba4cef98d28ee413566824
GET /hosted/images/80/33a6d622c245f0be7ce955e69f8b94/jointrestore-gummies.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 78418
cf-ray: 7472a3d62b2c0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "391f6e1eb952adcfdd76231a4c0fb0e1"
last-modified: Thu, 12 Nov 2020 06:12:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=78566
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
104.16.12.194200 OK 22 kB URL HTTP/2 renewyourknees.com/hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png
IP 104.16.12.194:0
File type PNG image data, 350 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 371b09a6308c1cf5c90fdc625f894471
4326d9e8ab4f0cc68350044d070c4c9f03eebf66
0d8e069d00f8da07dbf10221a46db459be4c7e8edae88446728fe1cf8811b767
GET /hosted/images/10/56a652960b4e47a2fcd84cd77bd3d1/Group-6890.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 22343
cf-ray: 7472a3d62b2f0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "4cddd1a405fcfe2a5b5eeeb50ac6fcff"
last-modified: Tue, 27 Oct 2020 13:36:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=22865
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
104.16.12.194200 OK 61 kB URL HTTP/2 renewyourknees.com/hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png
IP 104.16.12.194:0
File type PNG image data, 350 x 447, 8-bit colormap, non-interlaced\012- data
Hash 3ba9bbf8b96770b459429940d92d7a79
00acbaaa9078346c74da3cf94d09e2b692bff5ef
b1ee42c7737ae65389682b1879a8d2e14b8a1c3574aae0a923ebe1f33c1773ac
GET /hosted/images/a8/7722bc4d3b48b19638ac52da9e58a9/design-f5b0667e-6ab9-478a-8460-8d665f99455c-1.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 60796
cf-ray: 7472a3d62b310b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "f62bc6fe8d98125d91b9b7aef151a1f8"
last-modified: Mon, 28 Mar 2022 20:03:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=61050
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
104.16.12.194200 OK 675 kB URL HTTP/2 renewyourknees.com/hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png
IP 104.16.12.194:0
File type PNG image data, 968 x 848, 8-bit/color RGB, non-interlaced\012- data
Size 675 kB (674934 bytes)
Hash 83fc6873518fe469af1fd3e13bf992c4
a08e1e3a49bf9df824db3ae7f62dc4aece355b93
6b47b4323d80411f07887e2af731d53764f1f86c46a633532463ce735d3edf36
GET /hosted/images/38/1f4ea064214882ad58073240f9cdb6/Screen-Shot-2022-03-22-at-10.16.08-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 674934
cf-ray: 7472a3d63b3b0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b17091089aa100beb2adf1cb4b57087a"
last-modified: Tue, 22 Mar 2022 16:16:36 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=679821
x-amz-cf-pop: OSL50-C1
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=NyEnLgx1sFYfC6Tc5SiPEOSnveF_XsFGyju7CRxtyUM-1662587216-0-AZvzB0useygLhdqoJKlj6-h6N_Rgqa1kKY6nDUqAGaR4s6tVdJYrEGyjiAvXSlfJZpJ_oLMRxguxqcKJgr2tDS_IVp5Ls6IMEpH8GZXGcE2P"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=NyEnLgx1sFYfC6Tc5SiPEOSnveF_XsFGyju7CRxtyUM-1662587216-0-AZvzB0useygLhdqoJKlj6-h6N_Rgqa1kKY6nDUqAGaR4s6tVdJYrEGyjiAvXSlfJZpJ_oLMRxguxqcKJgr2tDS_IVp5Ls6IMEpH8GZXGcE2P; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
104.16.12.194200 OK 246 kB URL HTTP/2 renewyourknees.com/hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png
IP 104.16.12.194:0
File type PNG image data, 1322 x 1522, 8-bit/color RGB, non-interlaced\012- data
Size 246 kB (246109 bytes)
Hash 8048cc0d6dbd055f000dce6d9d0d0657
f9a8acff4f374b3aaf19166a6f98ac34c158de7f
ad0619a0f61a25a4a8fffd18bc38112fa5a47ac2e73ce618523c336ae2761bd1
GET /hosted/images/0f/dc7ebd7889437e93b4d189b856a842/Screen-Shot-2021-05-19-at-7.50.12-AM.png HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/png
content-length: 246109
cf-ray: 7472a3d63b3c0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "bfce0f070b1cb993f2fac933823896c0"
last-modified: Wed, 19 May 2021 13:50:46 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=249933
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
54.230.111.43200 OK 733 B URL HTTP/2 cdn1.lockerdomecdn.com/tracking/prosperwellness_lander.js
IP 54.230.111.43:0
Hash ded6fc3d3fa4c08bd8c3184513a12513
aac0d0a584bef69586142ff02496d06bc641494f
aba9ceb251ecd2af35adf37daa0a2d64760fd399c91c2c332cc30f7d315c3650
GET /tracking/prosperwellness_lander.js HTTP/1.1
Host: cdn1.lockerdomecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 733
last-modified: Fri, 21 May 2021 18:48:24 GMT
x-amz-version-id: IXK4sDg7IhH.._0LH9j...5boykFnEd9
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 09:41:39 GMT
etag: "ded6fc3d3fa4c08bd8c3184513a12513"
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B0YDzgR2ySD_eo0JughNn_o4zn3MBIMhCNTMI9ZXm2oVMufbzglLUw==
age: 43518
X-Firefox-Spdy: h2
cdn01.basis.net/assets/up.js?um=1
95.140.228.46200 OK 1.6 kB URL HTTP/2 cdn01.basis.net/assets/up.js?um=1
IP 95.140.228.46:0
File type ASCII text, with very long lines (3275)
Hash 745340d954663bbef59f3e65c8aa728b
0af5bfef26b3eeec2000086014638c4d11821220
71bfd4fead77b57be5c1ffa6a3c49e4c5defba58cbcabf255a1757a4579c53e6
GET /assets/up.js?um=1 HTTP/1.1
Host: cdn01.basis.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
vary: Accept-Encoding
server: AC1.1
x-llid: 01661bfa15982544fa67457f9f1a6bdd
age: 136029
date: Wed, 07 Sep 2022 21:46:56 GMT
last-modified: Wed, 16 Mar 2022 16:22:21 GMT
content-length: 1550
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
renewyourknees.com/assets/lander.css
104.16.12.194200 OK 72 kB URL HTTP/2 renewyourknees.com/assets/lander.css
IP 104.16.12.194:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (53232)
Hash 199e1a4d2d6a7db87a9b04c2afbd38f5
47ec940a7ded6aa138b121c8cb9e3dc143e5a2bf
cc41987b3cf8fced2578310afb50f4645fb7aa6ed7a3a487edbf8c705504a1c0
GET /assets/lander.css HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/css
cf-ray: 7472a3d60ae60b39-OSL
access-control-allow-origin: *
age: 881
cache-control: public, max-age=1200
etag: W/"630e9cfc-6a514"
expires: Wed, 07 Sep 2022 22:06:56 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
renewyourknees.com/assets/userevents/application.js
104.16.12.194200 OK 2.2 kB URL HTTP/2 renewyourknees.com/assets/userevents/application.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (4947), with no line terminators
Hash 087f7f3947104e1bfe0fb089f2e5a424
548e90575d3100beeed917cc31b0dbb53530e4e7
dab5355de89e63273f5c500f7a8f3bf6fb17c9de3119d7ae41ce7181164bbac5
GET /assets/userevents/application.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: application/x-javascript
cf-ray: 7472a3d61b0c0b39-OSL
access-control-allow-origin: *
age: 849
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Wed, 07 Sep 2022 22:06:56 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.clickfunnels.com/images/closemodal.png
104.16.13.194200 OK 1.1 kB URL HTTP/2 www.clickfunnels.com/images/closemodal.png
IP 104.16.13.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e022ab0d53337f7a0fb2792f51325e04
5999e65cc12d61001f3e930cac21f76a3994c20a
704a949f4f61e94abbbf95822668386c66fc91849c8f8de4f6d22ca49d50d6c3
GET /images/closemodal.png HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/webp
cf-ray: 7472a3d72e1f1c0e-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 536712
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "630e9cfc-314"
expires: Sat, 08 Oct 2022 21:46:56 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
set-cookie: __cf_bm=.zXz3EMG.iqltdOkO868tcH9vkdWC.Ino_HLBQrYlQ0-1662587216-0-AY/wVOnOxk8sQ7ZcZiIBBpQYpN6reMZLpMEcQpowVwOLsCcb6amOrRJjderLddR2YqAyPTFpoZsjRZk6dJc1zasHb+/L8wFgG8euKrMvZjqL; path=/; expires=Wed, 07-Sep-22 22:16:56 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
104.16.12.194200 OK 2.7 kB URL HTTP/2 renewyourknees.com/hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x108, components 1\012- data
Hash d016079a401645969522294fd89712cf
6a8ff7bf7514b355d7aafd404987018c218416e1
536dd1c2b04b2009bf25904cfb7725c846ff4f85328d09d8a77f24f350e330fd
GET /hosted/images/55/7d443214c54c46999cd7600e665dac/top-header-bg.jpg HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/jpeg
content-length: 2747
cf-ray: 7472a3d7fcf30b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "d016079a401645969522294fd89712cf"
last-modified: Tue, 10 Nov 2020 05:45:25 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg
104.16.12.194200 OK 18 kB URL HTTP/2 renewyourknees.com/hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x816, components 3\012- data
Hash 2607b786029ba4eeec16a43b4bf8ea3c
eb2cb30099d29811b1f03ee9959a8f025a1a82a6
e3430fb01b0a96fa0c9a1a3619135ed8666f60eb36da4d70bd212717d72b163d
GET /hosted/images/b6/4851f3c59f469bb592ce71c9c00b4c/hero-background.jpg HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: image/jpeg
content-length: 17918
cf-ray: 7472a3d7fcf60b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "2607b786029ba4eeec16a43b4bf8ea3c"
last-modified: Tue, 10 Nov 2020 07:02:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:10:21 GMT
expires: Wed, 06 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 102995
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:17:40 GMT
expires: Wed, 06 Sep 2023 22:17:40 GMT
cache-control: public, max-age=31536000
age: 84556
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M7VBKSB
142.250.74.72200 OK 37 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M7VBKSB
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 4745b861e14081a35b5bab788ea8ede6
f1326f61916b42347d576a220aea71e6ed8f27ad
f65b73a9ac31140541f35d3277d304d92b0dffd3cfad5022b42aecaf45a2b1d0
GET /gtm.js?id=GTM-M7VBKSB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 21:46:56 GMT
expires: Wed, 07 Sep 2022 21:46:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37051
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.mantisadnetwork.com/analytics.min.js
143.204.55.50200 OK 22 kB URL HTTP/2 assets.mantisadnetwork.com/analytics.min.js
IP 143.204.55.50:0
Hash 9110fc04ea45396f132b8977fedf33b9
0238feac13a1dc27652ec115e5f977878a233883
bd0e3d77cf3e672f3b96ff096583e119d46fd633c6386afc615e79cdcd89c9eb
GET /analytics.min.js HTTP/1.1
Host: assets.mantisadnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Aug 2020 16:12:44 GMT
x-amz-version-id: Ck1Ya2WWYBt8azQIxoUFopCW7mWWtikS
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 21:02:21 GMT
cache-control: max-age=3600
etag: W/"d982d874969783cad1711ce501e9f999"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _phuspma29PvczXpz4ceZo53FEoAX4AibOkf5cF4VzyfKtcBQ2YFtw==
age: 2675
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 16:04:44 GMT
expires: Sat, 02 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 452532
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 7968
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 7a9d6d572aa459340d033566d9475c51
b2e2bea7f5c0a8771f183bfccd0636e7ea838de1
944a997e1bc6593c186c8ff5b5d85d90626ce6e8bb4fa023b8a7820057cabdb6
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:46:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 11 Sep 2022 18:37:18 GMT
ETag: "b2e2bea7f5c0a8771f183bfccd0636e7ea838de1"
Last-Modified: Wed, 07 Sep 2022 18:37:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 766
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7472a3d9ce40b523-OSL
www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
67.225.220.126200 OK 60 B URL HTTP/2 www.rtb123.com/tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js
IP 67.225.220.126:0
File type ASCII text, with no line terminators
Hash d7ccb5dc7f9d9fcf48ca4602cc089ea9
4ee87a669ab38ab3cab7bbd7384527ed7c769c8d
ca07fa3313b5e3a483c08d111fdb61b9d2f9bb49203ca8d865d3d20beaba10ca
GET /tags/7D22114E-F0D5-FF42-AC61-EED931FFF4E1/btp.js HTTP/1.1
Host: www.rtb123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 01 Aug 2019 19:17:17 GMT
accept-ranges: bytes
etag: "bd3d9ebb9d48d51:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-origin: *
date: Wed, 07 Sep 2022 21:46:56 GMT
content-length: 60
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
192.229.220.49200 OK 9.7 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js
IP 192.229.220.49:0
File type ASCII text, with very long lines (40367), with no line terminators
Hash 4531414b85a3c054437c2c3d1d2d5f5d
224749701b80d2cc47a0c48d77b20f24f8500935
fe0ce1e65c04eec591ca94f13b56fdd8d975c1a356e62461cec1c0091999bdf4
GET /embeds/Gzq_USs6/pBrrlABfvNSTASm0/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Type
age: 1696159
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=300, s-maxage=2592000
content-type: application/javascript
date: Wed, 07 Sep 2022 21:46:57 GMT
etag: "4531414b85a3c054437c2c3d1d2d5f5d"
expires: Fri, 07 Oct 2022 21:46:57 GMT
last-modified: Fri, 19 Aug 2022 06:16:37 GMT
server: ECAcc (ska/F6E8)
vary: Accept-Encoding
x-cache: HIT
x-goog-generation: 1660889797497485
x-goog-hash: crc32c=UGf3Sg==, md5=RTFBS4WjwFRDfCw9HS1fXQ==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9740
x-guploader-uploadid: ADPycdvp1wk7UKQ9FX3Q0jm4GfxR1sKmRV2oj18cGMZTnVUgEj7KZcTtQPYtDfDKeNqbHUjUazKs6xaU2lC08EjP5l-ulCiolcvK
content-length: 9740
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11447
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 21:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11447
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 21:46:57 GMT
Connection: keep-alive
renewyourknees.com/vendor.js
104.16.12.194200 OK 5.9 kB URL HTTP/2 renewyourknees.com/vendor.js
IP 104.16.12.194:0
Hash f8c9520b889c08736e291c6b0120fc45
a04b7fd1825d4c567b1541a156f9d13e9470ff8b
095e6593e7b115d67ba4114e7e065598640d3f7486938712d5de0be2268c5be1
GET /vendor.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: application/javascript
cf-ray: 7472a3da3fbf0b39-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 07380e95ad5bd79f63341849d7a5903e
x-runtime: 0.019901
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11447
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 21:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11447
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 21:46:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: 1a501a0a-2671-468b-885b-2a2efb73bc2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDq64HbCIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317beab-395f6d1436b027ee60d00abd;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:42:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZWf6CXKcClMXAXmFXNp0sxVCMUFyZqhhh7B83tJMX_jvteLRDzG8QA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:42:06 GMT
age: 291
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=106bfadf-cb90-4cbc-8b4c-c1c234254b6a&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
104.16.14.194202 Accepted 494 kB URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=106bfadf-cb90-4cbc-8b4c-c1c234254b6a&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
IP 104.16.14.194:0
File type gzip compressed data, from Unix\012- data
Size 494 kB (494001 bytes)
Hash 59f046391fc67d18cca2ce7b6a3f30fb
9166bb7b3256f204f94e13e2782f7633063b2eb6
1f13680288ec19d3c3987f1ba7a482c7b853c52a018ce4cd612616cec835dd32
GET /userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=106bfadf-cb90-4cbc-8b4c-c1c234254b6a&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: text/html
cf-ray: 7472a3da782c0b3d-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 4830eb4da8a1bd8e17b9abad028e8605
x-runtime: 0.032796
set-cookie: __cf_bm=T.CtTgXCvN49UMy31LnvKYQQyRTy0XyeTwt3KdfV6Vk-1662587217-0-ASMJeayo10vAmmbcSs3LFCNf73noiyDJqYo/9sUXErViGfIYDZIg10wA3nWv/OnSCAU7nK7uXIf3Uz8QXWekpzP3RO/mY5MsFMr7AImPvRHV; path=/; expires=Wed, 07-Sep-22 22:16:57 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:14:32 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 84745
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:12:06 GMT
age: 59691
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f29d8aaae2d67c27c58001e7553dea7
5200b601017ce86614783b76fd2a775c1c48d4e9
6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 270858f2-c94d-4047-8e3b-c49a5a603610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjbiJHuZoAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ad940-3ba2164762e4f74227b6a23b;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:56:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: do30zKZmrP_j4feGGu8G39ibskE4dXxTL8YzpAR7PCFpQuJalYeJqA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:57:13 GMT
age: 85784
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1462b0c8fff091f29c7c5145031c08aa
55154c3878e9650f463805c3829f03a1603f14c1
62f913a6498b21da33451e7cf0e37c5fdef565324bcd35d93cb536527394a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11778
x-amzn-requestid: 2956f23c-8907-48de-b82a-73da9ae1d75e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYVHnLoAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdce-5d76bbe82dc2823407fe67f3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rcz0dXiOQ0dlgTR6GZw4nINUg-2UhWSI5zqNaafUhzYxtoYPhKz3kg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:41:10 GMT
age: 347
etag: "55154c3878e9650f463805c3829f03a1603f14c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 193380c8-0d3a-4b81-9429-fa4cb4cf136e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDq26FI7oAMFpOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317be92-2f435ce33c4469de425b11a3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:41:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6MhayVPx_iJ_mgJzUfuOsFeBgAK21RktvWOwrX3Rvk3WIElEek1LFA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:49:33 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 86244
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 229872cd5e39c4db1075ad9d1e69eee4
108ca353b873ff2b434d96ad4cb972800308a420
ed96f5545314707380473018c0a91aa5447d322099574279ae6e3e399927801c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:03:26 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Zx3_-buz7wc5Jz_TuG00LHTPz0SQnfiZyHMyfq0-Ca34pm9UFw5m7A==
Age: 6211
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 07 Sep 2022 22:06:57 GMT
Date: Wed, 07 Sep 2022 21:46:57 GMT
Content-Length: 3249
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4049a171741a68f3c780a01a3e82bdd9
77360db35db8479fa2247f9253a76637fad08c9c
5f985355f8cc8ab88d56b7fff6009f1ff330fe39de6d131711be352c44a1c0ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:57:40 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
104.21.95.133200 OK 88 kB URL HTTP/2 www.prosperwellness.co/wp-content/uploads/2018/06/2018-06-08_0911.png
IP 104.21.95.133:0
File type PNG image data, 1518 x 1496, 8-bit/color RGBA, non-interlaced\012- data
Hash e57817426681b6646dcfe95823f7f8c6
6d396e821718c0aedb62e2cc6ebf0669de500d3b
dbe8a2099e602f4f0055133f84e970ef2d01f5ff33428d575aeebc697f27575a
GET /wp-content/uploads/2018/06/2018-06-08_0911.png HTTP/1.1
Host: www.prosperwellness.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: image/png
content-length: 88111
last-modified: Fri, 08 Jun 2018 15:12:16 GMT
etag: "1582f-56e22d345470a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 194
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VaZKgz3QhUfz3foqj449DrwKZ5ncQA2kUZtz9FB47DfJG5LaCWuTWzmArmAJB2pG%2FLeiwaBckuG%2BDUs%2BBGtPuHaH%2FJCdJ2%2FRN3geQGnZE6EhWc525hBwN%2Bf18E%2F7G%2Bg8k3F3ZJOldtrD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7472a3dd9bb10b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 07 Sep 2022 20:41:12 GMT
expires: Wed, 07 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 3945
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: XLb2FKTDCHZDZH6FP15KgnaICOLJHT525MxkWMfkwaepAWyLbRxBONCSGk3+n+ExCUtKM/hfeDZd/eFaxkNlTw==
content-length: 26737
x-fb-trip-id: 1904183273
date: Wed, 07 Sep 2022 21:46:57 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash fa52c0ceb13a1e1a34affc7499ac453b
eb8c2e5d4c2993ba6401bc7aad98882028ceabd1
788dd82e58466de4123564fa25341ffeeb363d08c22597c4ffb2ae01dc6cb666
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:03:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4049a171741a68f3c780a01a3e82bdd9
77360db35db8479fa2247f9253a76637fad08c9c
5f985355f8cc8ab88d56b7fff6009f1ff330fe39de6d131711be352c44a1c0ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:57:40 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
quick.vidalytics.com/embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1662587210134
192.229.220.49200 OK 2.8 kB URL HTTP/2 quick.vidalytics.com/embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1662587210134
IP 192.229.220.49:0
File type JSON data\012- , ASCII text, with very long lines (2753), with no line terminators
Hash 45ed67d8f1e56274a06e86182ba7ab4c
f1cc3c2f943a7599d62078ae0a69367225701af8
9fee8d7d2f4a62e81227375abee428660d1549ca2803bd733c8b743fb2858137
GET /embeds/Gzq_USs6/G6i2TCj8FIK2j19d/player.settings.json?ac=1662587210134 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=300, s-maxage=2592000
content-type: application/json
date: Wed, 07 Sep 2022 21:46:57 GMT
etag: "45ed67d8f1e56274a06e86182ba7ab4c"
expires: Fri, 07 Oct 2022 21:46:57 GMT
last-modified: Fri, 19 Aug 2022 06:14:21 GMT
server: UploadServer
x-goog-generation: 1660889661605651
x-goog-hash: crc32c=NH+fgg==, md5=Re1n2PHlYnSgboYYK6erTA==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2753
x-guploader-uploadid: ADPycdtkUvl32wGuJ6EuUUbnKXT2ldtPHegY9rSEYAgLFPrqVj2o5eHelirI_bxNTCZGQqjQ5aNOo2-_lgTijuG3Th_zwQ
content-length: 2753
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 031dea95888080a011fe70444c567d7d
fb6f6107845f93120ccd81b04d6d6f0928ff0d1e
9ccff67ed09313a522a2c483f5aa2074860e458df52bdd9dc9a6bcdf037f6970
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2769
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 21:00:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
52.92.146.240200 OK 0 B URL HTTP/1.1 s3-us-west-2.amazonaws.com/jsstore/a/150HK5G/ge.js
IP 52.92.146.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jsstore/a/150HK5G/ge.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: hqZ9x3Plz2ISm6eHJEkkgjwHwOsCWQ8JtEYnTvG2q2sk2SBb0/qf8cHeP82DKcI9gwRAi/oMT20=
x-amz-request-id: 343WB1MCWPZJ00Y0
Date: Wed, 07 Sep 2022 21:46:58 GMT
Last-Modified: Mon, 08 Nov 2021 15:43:30 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 0
pixel.sitescout.com/dmp/asyncPixelSync
66.155.71.25302 Found 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync
IP 66.155.71.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: ssi=350f9cc3-215e-44bf-9ed3-93fa49af731c#1662587217675; Domain=.sitescout.com; Expires=Thu, 07-Sep-2023 21:46:57 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
content-length: 0
date: Wed, 07 Sep 2022 21:46:57 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
66.155.71.25302 Found 0 B URL HTTP/2 pixel.sitescout.com/up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
IP 66.155.71.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /up/48a921ade243f6f2?cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: ssi=9386b1d2-8136-40ba-bbf7-d1a32ec89426#1662587217697; Domain=.sitescout.com; Expires=Thu, 07-Sep-2023 21:46:57 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/up/48a921ade243f6f2?cookieQ=1&cntr_url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
content-length: 0
date: Wed, 07 Sep 2022 21:46:57 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
66.155.71.25204 No Content 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
IP 66.155.71.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Wed, 07 Sep 2022 21:46:57 GMT
server: AC1.1
X-Firefox-Spdy: h2
renewyourknees.com/assets/lander.js
104.16.12.194200 OK 678 kB URL HTTP/2 renewyourknees.com/assets/lander.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (32752)
Size 678 kB (677953 bytes)
Hash cc529898c4c67431a7d60c636dac8c6a
d932c2e4298980cca492f42b74a1942e0bfc0003
fe40ad6c2270fea7d7a5c01633242d011d6bb11ff16dc4bc096b5d271e2f9312
GET /assets/lander.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: application/x-javascript
cf-ray: 7472a3d63b3d0b39-OSL
access-control-allow-origin: *
age: 849
cache-control: public, max-age=1200
etag: W/"630e9d40-238fd1"
expires: Wed, 07 Sep 2022 22:06:56 GMT
last-modified: Tue, 30 Aug 2022 23:29:04 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77bfead87c77541f54c8e352ea588909
b91966f75d0511f27c518a68cceb27c59753ae05
99f5551a67e6feedd9bba93d5d58c1e6103950fcc4336a32d4dee0d793f3f390
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:24:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77bfead87c77541f54c8e352ea588909
b91966f75d0511f27c518a68cceb27c59753ae05
99f5551a67e6feedd9bba93d5d58c1e6103950fcc4336a32d4dee0d793f3f390
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 20:24:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1806276a99505663202d1255b61010cd
101e6ac1f730649d63daec378344a03c6f775333
5817f2a715dffb38debd6c5a624e7e2ececba7d42008e77cae8a8467362e0315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:57 GMT
Last-Modified: Wed, 07 Sep 2022 21:06:34 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
178.250.2.146200 OK 5.0 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13316)
Hash 181c25894e51d690724137e6ef8c8edb
cdd752d270f4b063b042e6ddbd3d0d7a33a15b2f
8fa0090c8a85ec34d05870f6b3ffd5e913fa64c00df8a3be9329e87e26a4877b
GET /syncframe?topUrl=renewyourknees.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=949d52a7-fefc-40f7-ab81-0a0b41805faf; expires=Mon, 02 Oct 2023 21:46:57 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 608968
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&rl=&if=false&ts=1662587210993&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662587210991.1744442996&it=1662587210640&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&rl=&if=false&ts=1662587210993&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662587210991.1744442996&it=1662587210640&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=228562807555133&ev=PageView&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&rl=&if=false&ts=1662587210993&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662587210991.1744442996&it=1662587210640&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 07 Sep 2022 21:46:58 GMT
expires: Wed, 07 Sep 2022 21:46:58 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash d258bf43e8aaddb31dbf53377ce1ff3d
38d08711c7ee94bd26d2a9b044073913fd5ec232
b115cde90ea2a19f47edd13a0a99105ad6ac617bbe41f67fe7c592c13618ddea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6447
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:58 GMT
Last-Modified: Wed, 07 Sep 2022 19:59:31 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash d258bf43e8aaddb31dbf53377ce1ff3d
38d08711c7ee94bd26d2a9b044073913fd5ec232
b115cde90ea2a19f47edd13a0a99105ad6ac617bbe41f67fe7c592c13618ddea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 481
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:58 GMT
Last-Modified: Wed, 07 Sep 2022 21:38:57 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 312
tr.outbrain.com/cachedClickId?marketerId=00de1cc9c95c123adccf27fd149b0b8388
64.202.112.223200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00de1cc9c95c123adccf27fd149b0b8388
IP 64.202.112.223:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00de1cc9c95c123adccf27fd149b0b8388 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:46:58 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: c766380ad5a5ea70d233b264768f8b63
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&optOut=false&bust=005641788345029097&referrer=
64.202.112.223200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&optOut=false&bust=005641788345029097&referrer=
IP 64.202.112.223:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00de1cc9c95c123adccf27fd149b0b8388&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&optOut=false&bust=005641788345029097&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:46:58 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 86a90b16ab64b3859ebc810208955603
content-encoding: gzip
ag.gbc.criteo.com/newidsd
185.235.84.36200 OK 83 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.36:0
Hash 59b0e2180d5191bc1d261b1da7dbf6ef
e1a3062ca1e3428dbd3790ea196c3da1d77d7deb
e551541939725443c1d1b2ce8872f6dc35456649d37b03d0eec6bb3dc5e9329f
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 96757
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.0.130200 OK 14 kB URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.0.130:0
Hash 066a2ce754f334ddae28ef2aad5543fc
b9d288c77a7c2828de8834ad21d1f7ac87213234
bf3850bce7a4c40b1408d109794fb1f83cf1597ba9332a9d36f24edb40f02e12
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: text/javascript
last-modified: Wed, 29 Jun 2022 07:49:23 GMT
etag: W/"62bc0403-a792"
expires: Thu, 08 Sep 2022 21:46:57 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1216.min.js
151.101.86.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32022)
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Sep 2022 21:46:58 GMT
via: 1.1 varnish
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 644
x-timer: S1662587218.343442,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash a33b0c1981c2e5a934b35a4e14c7ac55
65b8e851d4e204a63fe078569cb3341d0abb7e7d
1d109b906a001a2929070fee948c0dbb00e7aa87697d9814bd4dbbb66d3603ea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Sep 2022 21:46:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Sep 2022 21:16:43 GMT
Expires: Thu, 08 Sep 2022 21:16:43 GMT
ETag: "65b8e851d4e204a63fe078569cb3341d0abb7e7d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
192.229.220.49200 OK 5.8 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd
IP 192.229.220.49:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 814f641dd619cf540cb27f001ce4bc38
ad3ada9f5cd36098dc48116ba3e8458ea37ffb8a
3e124cdf2182ed6112e6e9feaf75aa4dd2b7f3d6dca829e44ef23647535f8483
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883691
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: application/dash+xml
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "814f641dd619cf540cb27f001ce4bc38"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:52:17 GMT
server: ECAcc (ska/F737)
x-cache: HIT
x-goog-generation: 1649703137121846
x-goog-hash: crc32c=2Ike4A==, md5=gU9kHdYZz1QMsn8AHOS8OA==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5842
x-guploader-uploadid: ADPycdvXSUvqwh9h133vD8V2TtX_gCjvFlwMQ_n0TemC1Ebm-wEgDuSZlpyVq21KgCUIkgC7ofn5HeIKkNuBEaFM-n7ll54XTEgn
content-length: 5842
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 105
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash a33b0c1981c2e5a934b35a4e14c7ac55
65b8e851d4e204a63fe078569cb3341d0abb7e7d
1d109b906a001a2929070fee948c0dbb00e7aa87697d9814bd4dbbb66d3603ea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Sep 2022 21:46:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Sep 2022 21:16:43 GMT
Expires: Thu, 08 Sep 2022 21:16:43 GMT
ETag: "65b8e851d4e204a63fe078569cb3341d0abb7e7d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 105
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
renewyourknees.com/images/background.png?_unique=0.9297495632437148&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043
104.16.12.194200 OK 548 B URL HTTP/2 renewyourknees.com/images/background.png?_unique=0.9297495632437148&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043
IP 104.16.12.194:0
File type ASCII text, with no line terminators
Hash 3b69bc423b2b75f96d04acf11fe38f99
7bf67fbfaf82b1b2b4da4bef249ebffbec84ea60
10724c7e7a68d7c5c78af632314b7d6cb24a51fd43a2e0bff148c1e5d350634c
GET /images/background.png?_unique=0.9297495632437148&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//renewyourknees.com/vsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&_title=JointRestore&_key=kt9q4hed&_page_key=6k37lq76vuqjyyzr&_fid=12069231&_fspos=1&_fvrs=4&_funnel_stat=1&_location=https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043&_referrer=&affiliate_id=true&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx; cf:aff_sub2=10289321eb29ffddf6e1f2dc03c043; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=90134aa2-fe2f-40ed-b523-0ac1ec8f2e35; aff_sub=1143; aff_sub2=10289321eb29ffddf6e1f2dc03c043; affiliate_id=; click_id=6738_sessid20220907214630904; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=10289321eb29ffddf6e1f2dc03c043; addevent_track_cookie=b20fa0f8-cd79-4e74-4ec0-eaf5b80fb829; _ga=GA1.2.1552927422.1662587211; _gid=GA1.2.13572163.1662587211; _gat=1; _fbp=fb.1.1662587210991.1744442996; outbrain_cid_fetch=true; _jsuid=4030215933; _no_tracky_101126271=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 7472a3e2881b0b39-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 57134ab440e7c3e6ab44fa4cd9bf73b7
x-runtime: 0.017233
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=N4_FL3647lga9MnVN9Fc_YxDSYvfqAb_.KoIUg6roAI-1662587218-0-AcWWu-zUAhsna34ata2__jA4P314CFFpCME3kGy5kQP3fvbdiIXv1-joce6mns0h2GRpHlUVrR4ksRGYscJmwg0cHtNaqoBYsTfL136n4MKW"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=N4_FL3647lga9MnVN9Fc_YxDSYvfqAb_.KoIUg6roAI-1662587218-0-AcWWu-zUAhsna34ata2__jA4P314CFFpCME3kGy5kQP3fvbdiIXv1-joce6mns0h2GRpHlUVrR4ksRGYscJmwg0cHtNaqoBYsTfL136n4MKW; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1253
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1247
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
renewyourknees.com/cdn-cgi/rum?
104.16.12.194200 OK 86 kB URL HTTP/2 renewyourknees.com/cdn-cgi/rum?
IP 104.16.12.194:0
Hash 6adc150e5fdacf9eb9cc594b73ad245d
18e2897ea3fe50d973a47cfb33b0c5e5c202091b
0c417bceb0f3b853358a61ebf4f7d5dbbafa2d77c4909aeed7bc3c3d37074232
POST /cdn-cgi/rum? HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 23373
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx; cf:aff_sub2=10289321eb29ffddf6e1f2dc03c043; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=90134aa2-fe2f-40ed-b523-0ac1ec8f2e35; aff_sub=1143; aff_sub2=10289321eb29ffddf6e1f2dc03c043; affiliate_id=; click_id=6738_sessid20220907214630904; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=10289321eb29ffddf6e1f2dc03c043; addevent_track_cookie=b20fa0f8-cd79-4e74-4ec0-eaf5b80fb829; _ga=GA1.2.1552927422.1662587211; _gid=GA1.2.13572163.1662587211; _gat=1; _fbp=fb.1.1662587210991.1744442996; outbrain_cid_fetch=true; _jsuid=4030215933; _no_tracky_101126271=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: text/plain
access-control-allow-origin: https://renewyourknees.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7472a3e369070b39-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=Gzq_USs6
34.107.158.93200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=Gzq_USs6
IP 34.107.158.93:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=Gzq_USs6 HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: istio-envoy
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, public, max-age=2592000
etag: "Gzq_USs6/uU6s04akBO5d6Wo5"
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
x-envoy-upstream-service-time: 267
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 149
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Wed, 07 Sep 2022 21:46:59 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash a33b0c1981c2e5a934b35a4e14c7ac55
65b8e851d4e204a63fe078569cb3341d0abb7e7d
1d109b906a001a2929070fee948c0dbb00e7aa87697d9814bd4dbbb66d3603ea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Sep 2022 21:46:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Sep 2022 21:16:43 GMT
Expires: Thu, 08 Sep 2022 21:16:43 GMT
ETag: "65b8e851d4e204a63fe078569cb3341d0abb7e7d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm
192.229.220.49200 OK 772 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm
IP 192.229.220.49:0
Size 772 kB (771696 bytes)
Hash 3aed4d4dfbfafb94c8b7f604debdde09
7f41a42da1c3ebb56759f73c38e235f1b2f19b14
57c08776588a9bfb1136670e9978ee996989447a0fbacc3cc10082e7d7e6ceaa
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883605
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "3aed4d4dfbfafb94c8b7f604debdde09"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:19 GMT
server: ECAcc (ska/F791)
x-cache: HIT
x-goog-generation: 1649702538998897
x-goog-hash: crc32c=zg1RTw==, md5=Ou1NTfv6+5TIt/YE3r3eCQ==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 771696
x-guploader-uploadid: ADPycdsxkMyPOY2HYEGGIpbFbObK2MEAwZ5TJ5vlQv0L5QIoJkj0LgMZMF5Oxau6T38Flw51u4RfFHJAavdhoS0214F49YAV5oJd
content-length: 771696
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
34.107.158.93200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 34.107.158.93:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 577
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 07 Sep 2022 21:46:59 GMT
content-length: 16
x-envoy-upstream-service-time: 4
server: istio-envoy
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 19a0b8437f7bf54428901512d8093e72
31997bc2337ea2ac58e23fb644dc4161b5bb2a3a
e1336c57b4d7985f157eb67149002cc19b093ef343bfae924826f8fc6958ab10
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:46:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 13:41:36 GMT
Expires: Wed, 14 Sep 2022 13:41:35 GMT
Etag: "31997bc2337ea2ac58e23fb644dc4161b5bb2a3a"
Cache-Control: max-age=575075,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7472a3e908c1fabc-OSL
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm
192.229.220.49200 OK 734 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm
IP 192.229.220.49:0
Size 734 kB (733510 bytes)
Hash a11558ba4743166ca45739c6e13291e1
3415369fc1f4b4e37fc12b29edda60035a0ee2c2
20ddfe88b7dbd1bced84e1bfc4d9e88958c903a223765b31ea925fc2b2def7d3
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "a11558ba4743166ca45739c6e13291e1"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:16 GMT
server: ECAcc (ska/F770)
x-cache: HIT
x-goog-generation: 1649702536148023
x-goog-hash: crc32c=DJTVMw==, md5=oRVYukdDFmykVznG4TKR4Q==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 733510
x-guploader-uploadid: ADPycds5CxsLwFSU_XCAI-PTZGBXesY-ZvocSD_SxvjxyCb9zid3VtBOTa69pnSUZ2VWZLUMg4XIT632u6G1onpyiJGeoTvKosiI
content-length: 733510
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&gjid=1066438076&_gid=13572163.1662587211&_u=IEBAAEAAAAAAAC~&z=1196470063
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&gjid=1066438076&_gid=13572163.1662587211&_u=IEBAAEAAAAAAAC~&z=1196470063
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&gjid=1066438076&_gid=13572163.1662587211&_u=IEBAAEAAAAAAAC~&z=1196470063 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://renewyourknees.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Sep 2022 21:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:46:58 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 18520321
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm
192.229.220.49200 OK 921 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm
IP 192.229.220.49:0
Size 921 kB (920865 bytes)
Hash a0125b1b78f6514b7b938b75f9798a56
f441aa5eb831ae63b7070849c796c9c319725629
277c7a6fbb661a151cc0f4d93e68d21c25ab0d7a57321ecd3c6c50ab48391204
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883620
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "a0125b1b78f6514b7b938b75f9798a56"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:20 GMT
server: ECAcc (ska/F72C)
x-cache: HIT
x-goog-generation: 1649702540391015
x-goog-hash: crc32c=91vyJw==, md5=oBJbG3j2UUt7k4t1+XmKVg==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 920865
x-guploader-uploadid: ADPycdsCJzf_AFcf-tQi0c20fg3fU8zW_-1ShChOtDpQ574sq__0i6BjJK4jCidFYyt-MDK4u5m0swbhRpWN6bbP2jiiX7TeSUXk
content-length: 920865
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
34.107.158.93200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 34.107.158.93:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 710
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 07 Sep 2022 21:46:59 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4252&ck=1&ref=https://renewyourknees.com/vsl1651652599068bb&ap=364&be=1505&fe=3543&dc=2242&perf=%7B%22timing%22:%7B%22of%22:1662587207787,%22n%22:0,%22f%22:969,%22dn%22:969,%22dne%22:969,%22c%22:969,%22s%22:969,%22ce%22:969,%22rq%22:972,%22rp%22:1477,%22rpe%22:1480,%22dl%22:1485,%22di%22:2232,%22ds%22:2241,%22de%22:2388,%22dc%22:3542,%22l%22:3542,%22le%22:3660%7D,%22navigation%22:%7B%7D%7D&fcp=1904&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4252&ck=1&ref=https://renewyourknees.com/vsl1651652599068bb&ap=364&be=1505&fe=3543&dc=2242&perf=%7B%22timing%22:%7B%22of%22:1662587207787,%22n%22:0,%22f%22:969,%22dn%22:969,%22dne%22:969,%22c%22:969,%22s%22:969,%22ce%22:969,%22rq%22:972,%22rp%22:1477,%22rpe%22:1480,%22dl%22:1485,%22di%22:2232,%22ds%22:2241,%22de%22:2388,%22dc%22:3542,%22l%22:3542,%22le%22:3660%7D,%22navigation%22:%7B%7D%7D&fcp=1904&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4252&ck=1&ref=https://renewyourknees.com/vsl1651652599068bb&ap=364&be=1505&fe=3543&dc=2242&perf=%7B%22timing%22:%7B%22of%22:1662587207787,%22n%22:0,%22f%22:969,%22dn%22:969,%22dne%22:969,%22c%22:969,%22s%22:969,%22ce%22:969,%22rq%22:972,%22rp%22:1477,%22rpe%22:1480,%22dl%22:1485,%22di%22:2232,%22ds%22:2241,%22de%22:2388,%22dc%22:3542,%22l%22:3542,%22le%22:3660%7D,%22navigation%22:%7B%7D%7D&fcp=1904&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:46:59 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7472a3ea0ce8b518-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=b8e852e11eeefbcf; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 114
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Wed, 07 Sep 2022 21:46:59 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_3.webm
192.229.220.49200 OK 797 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_3.webm
IP 192.229.220.49:0
Size 797 kB (797287 bytes)
Hash ce3b66c2eb1b600e34da04480f60560f
f9300e0495cd61d3eb14e86b4b5717c9702d7343
ccc417ec371744a8a4259985f5c19b72dd7a3369942388302e97d6ddb34c98c5
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_3.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "ce3b66c2eb1b600e34da04480f60560f"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:11 GMT
server: ECAcc (ska/F73A)
x-cache: HIT
x-goog-generation: 1649702531675306
x-goog-hash: crc32c=ooW/eQ==, md5=zjtmwusbYA402gRID2BWDw==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 797287
x-guploader-uploadid: ADPycduN0eJWQN-qXsRBRSxVNMmSs5BHLXXUlwRqgdKkLI8H0KzmWQRSgH6mWsRS1i3ati5VvT22kv1tNw_3baayuDc6eI0fhSbe
content-length: 797287
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4410b7b84c93f14f74d8fef364b840d
37303eaf19049d2ceb48581b9c990da5882dc7ff
d5276336c0a032fe9dfb73c1faff240132cbf073d621981b57c9c2a77d553afd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Sep 2022 21:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-66238646-1&cid=1552927422.1662587211&jid=353202888&_u=IEBAAEAAAAAAAC~&z=611004493 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Sep 2022 21:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_4.webm
192.229.220.49200 OK 842 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_4.webm
IP 192.229.220.49:0
Size 842 kB (841658 bytes)
Hash 853b8f0fcb4f8a593ec9bcef1bb429b1
b6e58bf697bca3a53970bd019b7f836837855649
30ec524b31c42aaddc5eb8842f2a90d058c2a537ac8e8c2c1c34a79750d6eced
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_4.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "853b8f0fcb4f8a593ec9bcef1bb429b1"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:13 GMT
server: ECAcc (ska/F7B3)
x-cache: HIT
x-goog-generation: 1649702533292723
x-goog-hash: crc32c=sIBuDA==, md5=hTuPD8tPilk+ybzvG7QpsQ==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 841658
x-guploader-uploadid: ADPycduHQvsWpXRSWaEUphA1camjPcaluHgPGNcT6nwfjPO0ShUp6PvO7sa__KPbFBx29AjzuhGY-lqEGCu8GFOiTKYVKIM4m9YG
content-length: 841658
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
34.107.158.93200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 34.107.158.93:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 254
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Wed, 07 Sep 2022 21:46:59 GMT
content-length: 16
x-envoy-upstream-service-time: 4
server: istio-envoy
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_5.webm
192.229.220.49200 OK 1.0 MB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_5.webm
IP 192.229.220.49:0
Size 1.0 MB (1040550 bytes)
Hash 9a3077170fbe1100e9a58a7b24267ed3
3c89c5cc5c45af6101c95526d00c492fd974f53e
06f98769449fb648bd5699c52e9e82ac459af8937117244a29cb5b163463421b
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_5.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883594
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:46:59 GMT
etag: "9a3077170fbe1100e9a58a7b24267ed3"
expires: Sat, 02 Sep 2023 21:46:59 GMT
last-modified: Mon, 11 Apr 2022 18:42:19 GMT
server: ECAcc (ska/F748)
x-cache: HIT
x-goog-generation: 1649702539522049
x-goog-hash: crc32c=bk3SdQ==, md5=mjB3Fw++EQDppYp7JCZ+0w==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1040550
x-guploader-uploadid: ADPycduD4uIpwV5cojaT9yXIDZJ5AiB7RBM4VGuqsUKr5YW6h5KXQDVxYMZYDBCBCaMpPS-gOyKgdGM2D7RewXZHylMA3KqDflHt
content-length: 1040550
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1855
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1821
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1813
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1178be248eca2944b83a619ce2f9606f
9abf2ec6a249847c61480997fd8467da74873b18
c46fd38f5f4e16b500248c284eb65deb9b195e21d9282423f749cf857866a875
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 19:57:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_6.webm
192.229.220.49200 OK 809 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_6.webm
IP 192.229.220.49:0
Size 809 kB (808577 bytes)
Hash aa047307d417ab96b6653c2990406b76
81110f77c75d6e6d65d73298860c3dbeb93ab441
c81d64f4a092fe758ee43a3c65b5bf10ae157d3ad8434303a8a24a1c5a938a02
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_6.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:47:00 GMT
etag: "aa047307d417ab96b6653c2990406b76"
expires: Sat, 02 Sep 2023 21:47:00 GMT
last-modified: Mon, 11 Apr 2022 18:42:17 GMT
server: ECAcc (ska/F6CC)
x-cache: HIT
x-goog-generation: 1649702537528201
x-goog-hash: crc32c=EuHrSQ==, md5=qgRzB9QXq5a2ZTwpkEBrdg==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 808577
x-guploader-uploadid: ADPycdsA_OIFyWicxJ4p3qNpTx9Xf8AVRfraDc725uCiKKPoU_bHxxxlFmAKBR5r4snsKEOkOkoU4buFGIqUmY5lc2qiMOaE39xO
content-length: 808577
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_7.webm
192.229.220.49200 OK 743 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_7.webm
IP 192.229.220.49:0
Size 743 kB (742774 bytes)
Hash ca82f1ac80a9cb5602b2816f2c078970
97d5ba1a4ca3ad10bd7fd96e83ead4d07990ef9f
f4fa37a81b5bced39934ec0805b2c24085cc5d5b038c7edf0008dd8cb0c385b0
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_7.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883667
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:47:00 GMT
etag: "ca82f1ac80a9cb5602b2816f2c078970"
expires: Sat, 02 Sep 2023 21:47:00 GMT
last-modified: Mon, 11 Apr 2022 18:42:20 GMT
server: ECAcc (ska/F6F4)
x-cache: HIT
x-goog-generation: 1649702540110081
x-goog-hash: crc32c=bTsZBA==, md5=yoLxrICpy1YCsoFvLAeJcA==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 742774
x-guploader-uploadid: ADPycdsPEz5E9pS-00lLIjASOmeq27WCHM5MvXeSC31JXo6_CvNmqwTNPyTNLvIPcAiX3b7pMjmJOkBj3fPQYM5sSbfLhxGUHtPQ
content-length: 742774
X-Firefox-Spdy: h2
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_8.webm
192.229.220.49200 OK 905 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_8.webm
IP 192.229.220.49:0
Size 905 kB (905145 bytes)
Hash 2ac7223fedb83d00be00e0db7667f113
9e485558f361301de4013b5bf719eb1639f251f9
a2828a33d413aa543a29af21c44682a8b5973c79d9a4e8219d399593a3a3c638
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_8.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:47:00 GMT
etag: "2ac7223fedb83d00be00e0db7667f113"
expires: Sat, 02 Sep 2023 21:47:00 GMT
last-modified: Mon, 11 Apr 2022 18:42:11 GMT
server: ECAcc (ska/F776)
x-cache: HIT
x-goog-generation: 1649702531436057
x-goog-hash: crc32c=ur4m/g==, md5=KsciP+24PQC+AODbdmfxEw==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 905145
x-guploader-uploadid: ADPycdsKDgYkCfpNg56TngcWlTi5gSkRi_Ou8NLdl5JCmnws0BBPyUiOnFboQANk6MdMfgujcmxHXw-AFK_bjOsDcIvcY0_TSRXs
content-length: 905145
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
IP 142.250.74.3:0
Hash 8349d43e7d058b9e8962aa2a8ec21409
d635b8f4f9d821c3d415f5afcab3edb57245604f
c8138b8aed9d8a6af03720f8aa40430e983688f537d2d41da0ad8ec6089e9610
POST /s/gts1d4/5KUqoLZYviA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ
35.186.194.101302 Found 0 B URL HTTP/2 ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ
IP 35.186.194.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ HTTP/1.1
Host: ad.sxp.smartclip.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty/1.19.9.1
date: Wed, 07 Sep 2022 21:47:00 GMT
content-length: 0
location: https://ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ&ang_testid=1
set-cookie: uuid=32034435-5411-1963-5db9-fbe396650fde; Domain=sxp.smartclip.net; Path=/; Expires=Fri, 07 Oct 2022 21:47:00 GMT; Max-Age=2592000; SameSite=None; Secure;
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f174b7d38fc795795956d85d41c5ad12
f2b0606a46616e8ba4c8cccb7dc663b22803ef1a
a9c51082f8d28e6c91420c0cccc33a697dfd30c86fbdfcdb103e8cdd9c25b469
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:39:17 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iREXToLbl3T6PNHadNN2gUdNp2O2a8nLaydYuHKnICXdKUn42-0FzA==
Age: 4063
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_9.webm
192.229.220.49200 OK 646 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_9.webm
IP 192.229.220.49:0
Size 646 kB (645803 bytes)
Hash aeb31e1cbc7a14627280774f173ec48d
ec0ae18897bc6b58b72e0bf1f0f3400d17470f5b
9d4b0eef58290fc24017861d6f9c70756c5842a4ab2cfdee3ad4ba7032c1ede2
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_9.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883662
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:47:00 GMT
etag: "aeb31e1cbc7a14627280774f173ec48d"
expires: Sat, 02 Sep 2023 21:47:00 GMT
last-modified: Mon, 11 Apr 2022 18:42:14 GMT
server: ECAcc (ska/F762)
x-cache: HIT
x-goog-generation: 1649702534580047
x-goog-hash: crc32c=fTX7Lw==, md5=rrMeHLx6FGJygHdPFz7EjQ==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 645803
x-guploader-uploadid: ADPycdupIeIOC-wy1MRNT5QYubO-gY39wKzozdqXoiy2uBC4tOo3xsNWB-x2-JP6I3fExvgFp3j8D5B6LRE8J1CRWxOX5wjqZKsD
content-length: 645803
X-Firefox-Spdy: h2
ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ&ang_testid=1
35.186.194.101200 OK 42 B URL HTTP/2 ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ&ang_testid=1
IP 35.186.194.101:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?type=host&dsp=69&dspuuid=k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ&ang_testid=1 HTTP/1.1
Host: ad.sxp.smartclip.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: uuid=32034435-5411-1963-5db9-fbe396650fde
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
content-length: 42
set-cookie: dspuuid=69.k-I7CTnhfDIpFkAnOXgrezU_mRbOl_bv6YNtTQCQ; Domain=sxp.smartclip.net; Path=/; Expires=Fri, 07 Oct 2022 21:47:00 GMT; Max-Age=2592000; SameSite=None; Secure;
psyn=19242.69; Domain=sxp.smartclip.net; Path=/; Expires=Fri, 07 Oct 2022 21:47:00 GMT; Max-Age=2592000; SameSite=None; Secure;
uuid=32034435-5411-1963-5db9-fbe396650fde; Domain=sxp.smartclip.net; Path=/; Expires=Fri, 07 Oct 2022 21:47:00 GMT; Max-Age=2592000; SameSite=None; Secure;
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
IP 142.250.74.3:0
Hash 8349d43e7d058b9e8962aa2a8ec21409
d635b8f4f9d821c3d415f5afcab3edb57245604f
c8138b8aed9d8a6af03720f8aa40430e983688f537d2d41da0ad8ec6089e9610
POST /s/gts1d4/5KUqoLZYviA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:46:59 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 314816
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-Jz8-DRfDIpFkAnOXgrezU_mRbOn7z6cDjnbyWA
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-Jz8-DRfDIpFkAnOXgrezU_mRbOn7z6cDjnbyWA
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-Jz8-DRfDIpFkAnOXgrezU_mRbOn7z6cDjnbyWA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3055888203580288000V10; Expires=Thu, 07 Sep 2023 21:47:00 GMT; domain=.media.net; Path=/;
data-c-ts=1662587220;Expires=Fri, 07 Oct 2022 21:47:00 GMT;path=/;domain=.media.net;
data-c=k-Jz8-DRfDIpFkAnOXgrezU_mRbOn7z6cDjnbyWA~~3;Expires=Fri, 07 Oct 2022 21:47:00 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 07 Sep 2022 21:47:00 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 07 Sep 2022 21:47:00 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 71197b4712e4edf2289cb1a1cb9fc849
8c8bfa79c980d59941d2a6988be233e5bc82b741
8153020f9daff1d643c29a6d1dd321aeb8a2d271f98c1a41e571ed797958bc3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4984
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:23:56 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_10.webm
192.229.220.49200 OK 842 kB URL HTTP/2 quick.vidalytics.com/video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_10.webm
IP 192.229.220.49:0
Size 842 kB (841654 bytes)
Hash 628e3a3d96c6ba8918438f6f3ecb5f96
e8f318efd7e297506d91803d31333f73b85fc63a
b89a2b6ef985458c8a063b879b8922f75bd243b5f8c4a00f49f3f36ae7fa9eca
GET /video/Gzq_USs6/Uw1YNG0oadpgEfiu/62568/53424/webm/video/1920x1080_vp9_1500000/s_10.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
age: 12883660
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
content-type: video/mp4
date: Wed, 07 Sep 2022 21:47:00 GMT
etag: "628e3a3d96c6ba8918438f6f3ecb5f96"
expires: Sat, 02 Sep 2023 21:47:00 GMT
last-modified: Mon, 11 Apr 2022 18:42:22 GMT
server: ECAcc (ska/F78B)
x-cache: HIT
x-goog-generation: 1649702542378552
x-goog-hash: crc32c=BEOoyA==, md5=Yo46PZbGuokYQ49vPstflg==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 841654
x-guploader-uploadid: ADPycdvScgcuTFZv21oqP5E3W8rR_Va_n_xcRYJFmbVHbElNKqIUmgA_xTZVky9XRnXX3emNZY_zE3AstFeY9relyYnMUN3KzJYt
content-length: 841654
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ
104.18.19.126302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ
IP 104.18.19.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:47:00 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ&C=1
cf-ray: 7472a3f068df1bfe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YxkRVB9nyqnD6MViMj9BUQAA; Path=/; Domain=casalemedia.com; Expires=Thu, 07 Sep 2023 21:47:00 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4435; Path=/; Domain=casalemedia.com; Expires=Tue, 06 Dec 2022 21:47:00 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4435; Path=/; Domain=casalemedia.com; Expires=Tue, 06 Dec 2022 21:47:00 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xRqaYacHtjGthvky8oe6t%2BQjbzOe4ZyXD0B0UL%2BGZLz0rxn1TbarQCbE%2BQtPnNORDUfG5OzdQ%2F2kMCD4m8BoEgI3%2B5%2FxU0LZ40fsLsVPcv51exOwRxvWukXeIkg3CkJYrf8%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ&KRTB&23144-uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ&KRTB&23286-uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ&KRTB&23287-uid:k-Jp-W-xfDIpFkAnOXgrezU_mRbOmHh_MUUpsitQ; domain=pubmatic.com; secure; expires=Fri, 07-Oct-2022 21:47:00 GMT; path=/
PugT=1662587220; domain=pubmatic.com; secure; expires=Fri, 07-Oct-2022 21:47:00 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 7bc206f4-9d67-4bcd-816c-e82e086662d8
Set-Cookie: uuid2=5918387343032925161; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 06-Dec-2022 21:47:00 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c35a376c0e9620e600bbab87a4b93b86
d25ae8da4874fbe7d074f9e00a63ba4c0c637ef0
e214919ef42b09adfc38db575c0b2682ce0ed83b63763863884f1c369fadf14a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ&C=1
104.18.19.126200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ&C=1
IP 104.18.19.126:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-X2Xk_hfDIpFkAnOXgrezU_mRbOlioRZ6ph7sRQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
content-length: 43
cf-ray: 7472a3f109831bfe-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RPR8PtHDI5rFrhhyL%2BnGM1KrsekuIcy8zAm6nxNfyaw%2BHSHLirsXxf0u0e9W6sHrgdpAAB%2B%2F8mThEgqe2plKb2MgNRXFcWORH8L3rjJ7jX0FjVGABvFcKMxdrbu09encb8%2Bb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e4da8ee3fe4e12b76f8a3e565a24507d
842cd0b26ecb5c0e3afdb0b090d7b64f1f6fb6dc
67b939b2219cc27818aa93fef82ad86470f75ac656be70bdd01b155830d45ac5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:49:23 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash fb5c0d2c111510682a289283403eaf49
bad58d54a91cac8e2b19d051f9a04288141365b3
9e21ea2a32aa1c20d5a3518e16cad06c5906a8cc56a94b185459060bd08d90ec
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 21:39:03 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: asR__5ySOASJ9UpOgSi8Zt_3X8SbafiyyvrdDkENbzefB-Hh6b3vrQ==
Age: 478
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw
142.250.74.34302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 628012ac22afb350cb1c44ae9b7f7610
0222f010796e477dfa641d97ad474d383e1fec85
1befc2da90a154c043bca9809b52d0932575cdb7637604b141a5df1c2952f968
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm=&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw&google_tc=
date: Wed, 07 Sep 2022 21:47:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Sep-2022 22:02:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a4f39f62d1d46ce4980aba317a5bc0c5
9e17ffde2113580d5763d0f82cfb917009f3e3b3
ee7e9f37e61ff516e842e8450087df52496a96381f00595a6c265e69dc0a7703
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6153
Cache-Control: max-age=154210
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Etag: "6318b0ad-139"
Expires: Fri, 09 Sep 2022 16:37:10 GMT
Last-Modified: Wed, 07 Sep 2022 14:54:37 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.173.215302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 0062afbe-21fb-4ddf-8a15-f6b1faa89ace
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-9KL4XhfDIpFkAnOXgrezU_mRbOkEjvLtPBmQxw&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-9KL4XhfDIpFkAnOXgrezU_mRbOkEjvLtPBmQxw&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-9KL4XhfDIpFkAnOXgrezU_mRbOkEjvLtPBmQxw&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5807)
Hash 304069fee7df4551c866f38f13ffdb46
594183e3eff3a94c83133ea69678993b677a6beb
5c1fae0ac93d4a08f4ecce0f4f66afbcecf5530ed56480716053fee9046fc148
GET /event?a=68378&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA&tld=renewyourknees.com&fu=https%253A%252F%252Frenewyourknees.com%252Fvsl1651652599068bb%253Faff_sub%253D1143%2526aff_sub2%253D10289321eb29ffddf6e1f2dc03c043%2526affiliate_id%253D%2526click_id%253D6738_sessid20220907214630904%2526cookiepreview%253Dfalse%2526fix%253D186%2526ho_aff_id%253D1143%2526noautoplay%253Dfalse%2526nopopup%253Dfalse%2526trans_id%253D10289321eb29ffddf6e1f2dc03c043&dtycbr=50334 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://renewyourknees.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:59 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 10518016
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-K9RyXhfDIpFkAnOXgrezU_mRbOnu5XiDH_Q_Vg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-K9RyXhfDIpFkAnOXgrezU_mRbOnu5XiDH_Q_Vg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-K9RyXhfDIpFkAnOXgrezU_mRbOnu5XiDH_Q_Vg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.8
content-length: 23
expires: Wed, 07 Sep 2022 21:47:00 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 07 Sep 2022 21:47:00 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 57102a568e41b9482fdb01c30f6cfed7
84f9caee3744ef547d85a5acdc193d38da7731bc
758ccb382c1c8e6da00ed47ebdcb072bbeacb177d41786abda58695541db2a60
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 21:07:53 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WojSiA0GezCIhuIeCMK3UQz9OcRzvslXmuGmY3IWwYQeL6zRtxr09g==
Age: 2347
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c9021c27b2490ca5808bc7df34f26e76
1758b2168ab1323b70fa57eb30f664d04d0119d6
a1858ec88c92c4de54167c2d0c50ddb343bcca35ec995ec5b0d40e9730cce4af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3513
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:48:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm=&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw&google_tc=
142.250.74.34302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm=&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw&google_tc=
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 759811d5486bbe9f81966f1e919cfa03
43b0d2b6e16b4590d5f407227508037c71c35a82
415a561cc2ff4f03de6ebdc9a1d0a3c7fae1eb172ab4b6a2be8bc70b7f309a4e
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_cm=&google_hm=ay0zcmdJQUJmRElwRmtBbk9YZ3JlelVfbVJiT2xRZ05hRFYxRUJ5dw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_error=3
date: Wed, 07 Sep 2022 21:47:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c5323e5331d2b166e56bf9955bfa842
4aff1fd66fb898944140beaef35fcaf8743dc922
9e78413574e8b35841744425821402d3cff5c7b632ab830169a721f2247e31a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3110
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:55:10 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-N9EGERfDIpFkAnOXgrezU_mRbOn7t9QLaTjBuw
185.86.137.133200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-N9EGERfDIpFkAnOXgrezU_mRbOn7t9QLaTjBuw
IP 185.86.137.133:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-N9EGERfDIpFkAnOXgrezU_mRbOn7t9QLaTjBuw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 07 Sep 2022 21:47:00 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=374620285007928111; expires=Sat, 07 Oct 2023 21:47:00 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 07 Oct 2023 21:47:00 GMT; domain=smartadserver.com; path=/
csync=79:k-N9EGERfDIpFkAnOXgrezU_mRbOn7t9QLaTjBuw; expires=Thu, 07 Sep 2023 21:47:00 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-2dyaUBfDIpFkAnOXgrezU_mRbOlcpyPhZAfLDQ
18.159.9.120200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-2dyaUBfDIpFkAnOXgrezU_mRbOlcpyPhZAfLDQ
IP 18.159.9.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-2dyaUBfDIpFkAnOXgrezU_mRbOlcpyPhZAfLDQ HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dm_id=8666&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dm_id=8666&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dm_id=8666&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 06 Sep 2022 21:47:00 GMT
Date: Wed, 07 Sep 2022 21:47:00 GMT
Connection: keep-alive
Set-Cookie: id=212ad67e-d73a-4aff-abda-311267987a35; Path=/; Domain=yieldlab.net; Expires=Thu, 07-Sep-2023 21:47:00 GMT; Max-Age=31536000; Secure; SameSite=None
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-aKaBXxfDIpFkAnOXgrezU_mRbOmIfIRRIECQIg
52.29.43.144204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-aKaBXxfDIpFkAnOXgrezU_mRbOmIfIRRIECQIg
IP 52.29.43.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-aKaBXxfDIpFkAnOXgrezU_mRbOmIfIRRIECQIg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 07 Sep 2022 21:47:00 GMT
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-ElOdDhfDIpFkAnOXgrezU_mRbOldhn66Abw-AQ
37.157.5.142200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-ElOdDhfDIpFkAnOXgrezU_mRbOldhn66Abw-AQ
IP 37.157.5.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-ElOdDhfDIpFkAnOXgrezU_mRbOldhn66Abw-AQ HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 04 Oct 2021 14:04:49 GMT
etag: "615b0a01-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:47:00 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFQRGWMCEDi1vDw38R5SqPuTV9OdkYkFEgEBAQFiGmMiYwAAAAAA_eMAAA&S=AQAAAvzBiYo0cxIfQkSnwF3PxMs; Expires=Fri, 8 Sep 2023 03:47:00 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c35a376c0e9620e600bbab87a4b93b86
d25ae8da4874fbe7d074f9e00a63ba4c0c637ef0
e214919ef42b09adfc38db575c0b2682ce0ed83b63763863884f1c369fadf14a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7534c9ed1bcb99f1de2739a5b0eddb56
efd374ee22db59436257c73ef37b5dd4263a0188
c664243b18a588e1d420c44dd6999cda2243b626c50bfc05ab657bde97f91aa6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 21:17:02 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2dJ7undlUFQr4nKC2TnGWwaiBUjyXxxCd7TC4wQE7w6yqAf3me9oXA==
Age: 1798
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-7zZxqxfDIpFkAnOXgrezU_mRbOnE1FUmXH5F-g&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 07 Sep 2022 21:47:00 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFQRGWMCEDB4pUy0m0kn2TK_z2xxStEFEgEBAQFiGmMiYwAAAAAA_eMAAA&S=AQAAAvd6sYo2CMCaWfA5A1WHeeU; Expires=Fri, 8 Sep 2023 03:47:00 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4cfe9db3efc7b447048559704abb547d
0fedeeef7f1c79be199d5a751904cc4e6c26156b
c44e036aa89b90ed6c004bb6513c96faef786e3bba5f60beb21e2b8c169cdcc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 21:14:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=b7a03c94-43cc-4c75-ac73-56c4310d1ee3&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
104.16.14.194202 Accepted 172 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=b7a03c94-43cc-4c75-ac73-56c4310d1ee3&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
IP 104.16.14.194:0
File type gzip compressed data, max speed, from Unix\012- data
Hash 138a0364627f5dc6bd20fcf60e362dfc
ae53620eefeae63d5ee8a6e38711f5a32d8a4e39
86da515f7ee1ea8bf695f50ae52ba7611409eadea6c7266fac98a857083020c1
GET /userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=b7a03c94-43cc-4c75-ac73-56c4310d1ee3&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: text/html
cf-ray: 7472a3da88330b3d-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 69505db7bd4b5c6411bf880a5838c57e
x-runtime: 0.040235
set-cookie: __cf_bm=ud8bZkaN7pRy6FI2SkBFPkd1jt.7qtBTkVxttnW1vog-1662587217-0-AelytHAlUFZKX/021fay6sK4XKBtGMKSoCe3I/YT70UVXEpiPgTSYJ2qRmnNVfcwDWFn5II62GiD8ZennxaKA0eiLqB2QvL2asMT1x7keInq; path=/; expires=Wed, 07-Sep-22 22:16:57 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 06 Sep 2022 21:47:00 GMT
Date: Wed, 07 Sep 2022 21:47:00 GMT
Connection: keep-alive
Set-Cookie: id=18b13071-e087-46ec-a143-f71b0f683a3e; Path=/; Domain=yieldlab.net; Expires=Thu, 07-Sep-2023 21:47:00 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 44b3b73dc542468e212e4eb1474bb750
439a4192ef32e15b2fd5829b29bb1ed468a7f3f2
a666be3157b316a845cbdf81892fdfe1fbf55fe289ca9accffad95c4524da66f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 13:56:50 GMT
Expires: Tue, 13 Sep 2022 13:56:49 GMT
Etag: "439a4192ef32e15b2fd5829b29bb1ed468a7f3f2"
Cache-Control: max-age=489588,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7472a3f13de6fabc-OSL
dpm.demdex.net/ibs:dpid=28645&dpuuid=
52.209.70.49302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 52.209.70.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v039-0e5a11fe9.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=84116129447790700063527917466808017248; Max-Age=15552000; Expires=Mon, 06 Mar 2023 21:47:00 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: EydIDFCVSB4=
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 341d99eca656f37470a2b5c0fbad834c
0fb997ea0c8519122b0c8b3034a4926705148f37
fca413f54a4f2fe50d836cb2fcaeec42500159a190f4f2127587ab5c3afc0436
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139340
Date: Wed, 07 Sep 2022 21:47:00 GMT
Etag: "631879f2-1d7"
Expires: Fri, 09 Sep 2022 12:29:20 GMT
Last-Modified: Wed, 07 Sep 2022 11:01:06 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S37qR05XrtXfCUL3IzZ9ioiixKx_DKEJxtxophxAKnC22RdnetCT1A==
Age: 5294
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-UlZ4XhfDIpFkAnOXgrezU_mRbOlF03416LnTxnR5_pB3h5y5
35.159.43.206200 OK 70 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-UlZ4XhfDIpFkAnOXgrezU_mRbOlF03416LnTxnR5_pB3h5y5
IP 35.159.43.206:0
File type ASCII text, with no line terminators
Hash c4cb067c7298a7fac9927f98fd3181a1
ea8b4cefbe32851927864a2e75f57dab54258d96
252c0b8fec6a6ec67c90f34714803a1ba0679dd967392ac529dd3a2c277d5bdd
GET /usersync/push?partner=criteo&partnerId=k-UlZ4XhfDIpFkAnOXgrezU_mRbOlF03416LnTxnR5_pB3h5y5 HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%229a5508d0-2ef6-11ed-9850-47a48501b10d%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Sep 2022 21:47:00 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%229a5508d0-2ef6-11ed-9850-47a48501b10d%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Sep 2022 21:47:00 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-UlZ4XhfDIpFkAnOXgrezU_mRbOlF03416LnTxnR5_pB3h5y5%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 21 Sep 2022 21:47:00 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-_yNH-RfDIpFkAnOXgrezU_mRbOn3DRZ8cOpMfg
64.202.112.223200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-_yNH-RfDIpFkAnOXgrezU_mRbOn3DRZ8cOpMfg
IP 64.202.112.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-_yNH-RfDIpFkAnOXgrezU_mRbOn3DRZ8cOpMfg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Length: 0
Cache-Control: no-cache
set-cookie: obuid=a50e5860-6356-41da-a6ce-d98a204bc38f; Max-Age=7776000; Expires=Tue, 06 Dec 2022 21:47:00 GMT; Path=/; Domain=.outbrain.com
X-TraceId: 48d1ac77c4af64322d70ec685fb9d0d9
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=12438557&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=12438557&ext_id=k-Q_McGRfDIpFkAnOXgrezU_mRbOnmZCpeKmPlag HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 06 Sep 2022 21:47:00 GMT
Date: Wed, 07 Sep 2022 21:47:00 GMT
Connection: keep-alive
Set-Cookie: id=21555b8d-ee7c-4890-8a20-c660bc167948; Path=/; Domain=yieldlab.net; Expires=Thu, 07-Sep-2023 21:47:00 GMT; Max-Age=31536000; Secure; SameSite=None
sync-criteo.ads.yieldmo.com/sync?id=k-3Dr_DhfDIpFkAnOXgrezU_mRbOkT5NFElWfVcg&pn_id=criteo&ext=1
54.220.128.66200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-3Dr_DhfDIpFkAnOXgrezU_mRbOkT5NFElWfVcg&pn_id=criteo&ext=1
IP 54.220.128.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-3Dr_DhfDIpFkAnOXgrezU_mRbOkT5NFElWfVcg&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g2e06a4e5f61e95c28c9%7C1662587220921%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 07-Sep-2023 21:47:00 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-3Dr_DhfDIpFkAnOXgrezU_mRbOkT5NFElWfVcg; Domain=ads.yieldmo.com; Expires=Thu, 07-Sep-2023 21:47:00 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
52.209.70.49200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 52.209.70.49:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v039-023fa240d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: yxehbK0xTEg=
Content-Length: 59
Connection: keep-alive
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-lQPHfBfDIpFkAnOXgrezU_mRbOlA95nqvZrwsw&expires=30
52.58.218.78200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-lQPHfBfDIpFkAnOXgrezU_mRbOlA95nqvZrwsw&expires=30
IP 52.58.218.78:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-lQPHfBfDIpFkAnOXgrezU_mRbOlA95nqvZrwsw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Length: 43
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ea55d11b5655a725f1e542792a1a91e8
bdcf286e82a9d5e4ae13d084d5a94114091ea30a
5b4de486f90148466674f3db41e7a3b0f93f3185b23fd9a9b76f9e8a9646227c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 21:47:00 GMT
Last-Modified: Wed, 07 Sep 2022 20:32:40 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZWfv-dIgTANdnDFa75TulQhnPcR2xOKFhlF6gqqbpG-0NGo943oKWg==
Age: 4460
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_error=3
178.250.0.163200 OK 43 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_error=3
IP 178.250.0.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3rgIABfDIpFkAnOXgrezU_mRbOlQgNaDV1EByw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 300815
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 95241e554d3e648c35823f19238c7ba6
ddb080ea88d41d50bb041e0e318cf87bbdfa5fc9
2b7bbf983409e311b85384f487699292be03bf5022ab6b2861562e79c264b4af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 21:47:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 03:11:54 GMT
Expires: Wed, 14 Sep 2022 03:11:53 GMT
Etag: "ddb080ea88d41d50bb041e0e318cf87bbdfa5fc9"
Cache-Control: max-age=537292,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7472a3f1eff10af6-OSL
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-VX8npBfDIpFkAnOXgrezU_mRbOmeLn6bICRmFw
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-VX8npBfDIpFkAnOXgrezU_mRbOmeLn6bICRmFw
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-VX8npBfDIpFkAnOXgrezU_mRbOmeLn6bICRmFw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=1fd2eda174524a374dbe7002a2c80357; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 07 Sep 2022 21:47:00 GMT
content-length: 49
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9c5fe7fc4d7c33547b0fa4303f1ed4e2
955bcca13df5dfa68d3a8e4f1fdac915369fddbc
46a653a572a3864990052d71c24a0e092a10768b5a41462e44c03f6e3eeb1bee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 600
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 21:47:01 GMT
Last-Modified: Wed, 07 Sep 2022 21:37:01 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
54.77.178.38204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 54.77.178.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 07 Sep 2022 21:47:01 GMT
set-cookie: _kuid_=PEMPmERU; Expires=Mon, 06-Mar-23 21:47:01 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n001-dub-prod.krxd.net
x-request-time: D=23 t=1662587221
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:47:00 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 268415
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-p1CMiBfDIpFkAnOXgrezU_mRbOnjSnJETDTMxw
3.224.216.74200 OK 1.6 kB URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-p1CMiBfDIpFkAnOXgrezU_mRbOnjSnJETDTMxw
IP 3.224.216.74:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9c8dc6550a44bcb8df5720b5a1baa97c
d6b1918a95b1f6178bae3f8030df1856dbe17dc2
75e278435debd028fd9772b188b82a5bec8c3bcc008e65ed03f9ee432ecba42c
GET /sync?UICR=k-p1CMiBfDIpFkAnOXgrezU_mRbOnjSnJETDTMxw HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:01 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
18.118.75.167200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 18.118.75.167:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:01 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 9b017570-2ef6-11ed-a322-0000ac1700d4
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1868
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:47:03 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1828
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.53.0
date: Wed, 07 Sep 2022 21:47:03 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=2Aetz180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZkNmVDeXZXbEJpQ2JsN1VIQnk1RlJCalRTeXRmQVdDSFBnTXclMkJXdWhjZg&idsd=-540128211,-466541342&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=2Aetz180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZkNmVDeXZXbEJpQ2JsN1VIQnk1RlJCalRTeXRmQVdDSFBnTXclMkJXdWhjZg&idsd=-540128211,-466541342&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=renewyourknees.com&sn=FirefoxSyncframe&so=0&topUrl=renewyourknees.com&info=2Aetz180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZkNmVDeXZXbEJpQ2JsN1VIQnk1RlJCalRTeXRmQVdDSFBnTXclMkJXdWhjZg&idsd=-540128211,-466541342&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=renewyourknees.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 596153
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
renewyourknees.com/cdn-cgi/rum?
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/cdn-cgi/rum?
IP 104.16.12.194:0
POST /cdn-cgi/rum? HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 430
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx; cf:aff_sub2=10289321eb29ffddf6e1f2dc03c043; cf:aff_sub3=; cf:aff_sub=1143; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQ0NDAwNDc=:visited=true; cf:visitor_id=90134aa2-fe2f-40ed-b523-0ac1ec8f2e35; aff_sub=1143; aff_sub2=10289321eb29ffddf6e1f2dc03c043; affiliate_id=; click_id=6738_sessid20220907214630904; cookiepreview=false; fix=186; ho_aff_id=1143; noautoplay=false; nopopup=false; trans_id=10289321eb29ffddf6e1f2dc03c043; addevent_track_cookie=b20fa0f8-cd79-4e74-4ec0-eaf5b80fb829; _ga=GA1.2.1552927422.1662587211; _gid=GA1.2.13572163.1662587211; _gat=1; _fbp=fb.1.1662587210991.1744442996; outbrain_cid_fetch=true; _jsuid=4030215933; _no_tracky_101126271=1; bitmovin_analytics_uuid=804d6fc6-a17b-4c6d-87bc-541e51b29d8c; is_eu=false; 6k37lq76vuqjyyzr=true; 12069231_viewed_1=4; cto_bundle=Q5h4CV84aSUyQjVLJTJCYW9ONHlDdVpOYllmZ2pmS29xZGlTZWVuN0VMUTQ2SUN5bVpTeHB6SnRZTHRIOWNNUWMwVFNkMEFaTlFrRzFIWnpHOURwa0ZTUDQzOEszWjl0WEZVZVIlMkJVeSUyQmVsZDUwdUdYRDQlMkI3MkNrWWlKQUlTdFBMUFpKJTJCdnA5amFwREZZem5WVlIlMkI4MlF2ckwwR2xXQSUzRCUzRA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:03 GMT
content-type: text/plain
access-control-allow-origin: https://renewyourknees.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7472a405d9220b39-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid20220907214630904&aff_sub=186
104.21.19.175302 Found 0 B URL HTTP/2 trk.legendaff.com/aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid20220907214630904&aff_sub=186
IP 104.21.19.175:0
GET /aff_c?offer_id=67&aff_id=1143&aff_click_id=6738_sessid20220907214630904&aff_sub=186 HTTP/1.1
Host: trk.legendaff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:46:55 GMT
content-type: text/html; charset=iso-8859-1
location: https://renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220907214630904&trans_id=10289321eb29ffddf6e1f2dc03c043&fix=186
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
p3p: CP="NOI CUR OUR NOR INT"
pragma: no-cache
set-cookie: enc_aff_session_67=ENC0334ccddee3e8af1e32dc58532fb33ac159f7da890e876552f5107556bf108821a450ca7c35736ce7796476b506b389acc015c69d90cfa9017d3ba52695bf0a7e19d4dc75c154c592060e8e6c4eb1bb80c7c033e59549854c31f404eecc89164b771e5fa2f4cfa5a596b7e92bd6ac6b8395ffd61960aae7b3f529a7300147ad98e1fd2abb1; expires=Fri, 07 Oct 2022 21:46:55 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiI5Ni4wIiwibW9iaWxlX2NhcnJpZXIiOiI/IiwidXNlcl9hZ2VudCI6Ik1vemlsbGEvNS4wIChYMTE7IExpbnV4IFg4Nl82NDsgUnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wIiwiYWNjZXB0X2xhbmd1YWdlIjoiZW4tVVMsZW47cT0wLjUiLCJjb25uZWN0aW9uX3NwZWVkIjoiYnJvYWRiYW5kIn0=; expires=Sat, 02 Aug 2025 08:26:55 GMT; path=/; SameSite=None; Secure
tracking_id: 10289321eb29ffddf6e1f2dc03c043
x-robots-tag: noindex, nofollow
access-control-allow-origin: *
x-request-id: 4594abf132a6160b055389efa8ab69ed
access-control-allow-headers: Tune-SDK-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GOIVb%2FsS3LyBO767KFzydMyuIVdB7sGqtNVoEgg6gqATZyazT6KZRDrhi%2BDGyaBlfv%2B%2FU6swSrE2Qq3vQ3gQs9c81wXTSsT6U6WcCL%2Fxp3IOxO603vPf4%2FBIVPeRIRcvQQm1NA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7472a3cf9a79b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=43abc04d-6d6c-4010-8b63-49cc5d09b2c7&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
104.16.14.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=43abc04d-6d6c-4010-8b63-49cc5d09b2c7&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043
IP 104.16.14.194:0
GET /userevents/?funnel_id=UmUxOXRmdnFkWlN2eGdkRndvc0V4UT09LS1RaVQvMnJLOHp3bHJVVS94aFp4SHJRPT0%3D--876e5a957bcd001d5cce41a4fd851b012e29194b&page_id=WFRsNFpHRTg2bU1HTFlZaittVW02UT09LS15L0M0cVo4Q242MEh6M09MR3lsUGh3PT0%3D--7ae70bc719c9a801894231095a6e2fc37a4a9dd5&funnel_step_id=QmM0c3Bic2lUaGxzbW9qV3UyTGJuUT09LS1GTmdBbjBIemZUKzNFbFkwWEdwMG9RPT0%3D--be04bf2ed65461defb95b250f6b6efde4d6b095c&user_id=djUvaFlBZGlXbHNLMW5QQUNDbVFiQT09LS1hRjFwa1dJSU1JNkQrRFVZaGgwcGxRPT0%3D--a5fbe712bd46740d163344c80157997d73153aa6&account_id=cUV6SE9aeGJXWFJsZEpKVVJieWk0dz09LS1zQm8rTEoxUWVDN2krQ28xRFhmdjF3PT0%3D--74d4e0cdb0ee1de99f127f83cf59a5a3eeeb7e38&page_code=NTQ0NDAwNDc%3D&mode_id=1&time_zone=Mountain%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=10289321eb29ffddf6e1f2dc03c043&aff_sub3=&aff_sub=1143&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=43abc04d-6d6c-4010-8b63-49cc5d09b2c7&url=https%3A%2F%2Frenewyourknees.com%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Wed, 07 Sep 2022 21:46:57 GMT
content-type: text/html
cf-ray: 7472a3da88320b3d-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: e111495dcee4a3f156295df6b7fd1543
x-runtime: 0.039235
set-cookie: __cf_bm=7PXq0PznUpv1U_N4bhLJldShBrvMtes61Gd9IXDudLg-1662587217-0-AfzvTvNWRBe9/hsyBhTeYQvMpfkIMzrdTw1wp583jhVaK8thYBBjzPVN0PpDuBdUdjK8gRgLCX6I+E20mpl+E1r0heiFGUGSZ4r7Igf60lJs; path=/; expires=Wed, 07-Sep-22 22:16:57 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:47:00 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 474323
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
app.clickfunnels.com/mailcheck.min.js
104.16.14.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP 104.16.14.194:0
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: application/x-javascript
cf-ray: 7472a3d72bca0b61-OSL
access-control-allow-origin: *
age: 1473
etag: W/"630e9cfc-a8d"
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=sIQQBYi0b7kiC9wJ_0y90ttnKCMdDavTIHHwF4rjS0k-1662587216-0-AdETrJoMz+M5MffBTXRRQ9714iQ6rGWxT6nY4GQBpdRYYPKMsD+6SmmR+8BZ3u46xK6LVocDXfOx9V9bKemwBb2HzuSRWbqS8lmCxFVG9uMw; path=/; expires=Wed, 07-Sep-22 22:16:56 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 21:46:56 GMT
date: Wed, 07 Sep 2022 21:46:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in.getclicky.com/in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.09467156968086476
198.145.13.13200 OK 0 B URL HTTP/2 in.getclicky.com/in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.09467156968086476
IP 198.145.13.13:0
GET /in.php?site_id=101126271&type=pageview&href=%2Fvsl1651652599068bb%3Faff_sub%3D1143%26aff_sub2%3D10289321eb29ffddf6e1f2dc03c043%26affiliate_id%3D%26click_id%3D6738_sessid20220907214630904%26cookiepreview%3Dfalse%26fix%3D186%26ho_aff_id%3D1143%26noautoplay%3Dfalse%26nopopup%3Dfalse%26trans_id%3D10289321eb29ffddf6e1f2dc03c043&title=JointRestore&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=1&mime=js&x=0.09467156968086476 HTTP/1.1
Host: in.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: no-cache, must-revalidate, post-check=0, pre-check=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-KRdkfhfDIpFkAnOXgrezU_mRbOkcQt-Eg2k7Dg
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-KRdkfhfDIpFkAnOXgrezU_mRbOkcQt-Eg2k7Dg
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-KRdkfhfDIpFkAnOXgrezU_mRbOkcQt-Eg2k7Dg HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 21:47:00 GMT
x-fastly-to-nlb-rtt: 22724
access-control-allow-credentials: true
X-Firefox-Spdy: h2
renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
IP 104.16.12.194:0
GET /vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043 HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/html; charset=utf-8
cf-ray: 7472a3d25ef50b39-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Mon, 29 Aug 2022 18:53:39 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: c416431726de77fc3c67bdfb8395b30418f17a33
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss, store
x-request-id: 37aeb7bbd92647bed3ec2111671e0f0d
x-runtime: 0.358257
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
104.21.63.54200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 104.21.63.54:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/css
x-amz-id-2: 29dQf2WVNOHot5Ay8pBeGC9Jp0pul03AFXB61uD4zFysCnT6qW6VHySxi6MC8oLZjApsDY/NPq0=
x-amz-request-id: B6FTANBTWNEFCW5M
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2671403
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJxJyDaWxvrO21lRnBDB%2BLTz9rqx1ZrSMkIyfzEsl9shKRuji0Amb4032miUBcFPBjKbf9eZpYaYo%2BeehxUn1Jmno8WTESJj8jmM7AwQo7NqA5GXQVepzv5OHmvsk0ALBfVWj%2Fgo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7472a3d63f0bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.119200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.119:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 127234
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
172.64.156.26200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 172.64.156.26:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://renewyourknees.com
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7472a3d72862b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
104.21.63.54200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 104.21.63.54:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/css
x-amz-id-2: 5R63sGXcq2LptVgWp1Hbu23fLcn6t7yox4MdVDD4fYkPpwwpE0tP8nap3nE7BUsLxb2kn6BawAQ=
x-amz-request-id: FW5J89H89QA35JM6
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 71401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oDjxdGM7uXpDooMjxojNsWfv4K5AE1isoc2e2UC6ghwXXAm9HVNhUpOuZeyOOsATwdJDR%2Ff7mJLwL%2BAaLprTjm1WMQKertUSzOQ7DOuqEYUOdfqeKGYzwI0Yb%2BIPvc2tlZWDCrYf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7472a3d63f13b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C
IP 142.250.74.10:0
GET /css?family=Lato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7CCabin%7CLato+sans-serif%7COpen+Sans+Condensed%7CLato+sans-serif%7CLato%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CRoboto%7CLato+sans-serif%7CLato%7CLato+sans-serif%7C%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 21:46:56 GMT
date: Wed, 07 Sep 2022 21:46:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220907214630904&trans_id=10289321eb29ffddf6e1f2dc03c043&fix=186
104.16.12.194302 Found 0 B URL HTTP/2 renewyourknees.com/copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220907214630904&trans_id=10289321eb29ffddf6e1f2dc03c043&fix=186
IP 104.16.12.194:0
GET /copy-of-aff-jointrestore-gummiesd4xy2k0g?affiliate_id=&aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&nopopup=false&noautoplay=false&cookiepreview=false&ho_aff_id=1143&click_id=6738_sessid20220907214630904&trans_id=10289321eb29ffddf6e1f2dc03c043&fix=186 HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 07 Sep 2022 21:46:55 GMT
content-type: text/html; charset=utf-8
location: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
cf-ray: 7472a3d07cb50b39-OSL
access-control-allow-origin: *
cache-control: no-cache
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 302 Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: b6be11353f1a108af8fbd259783fd869
x-runtime: 0.144491
set-cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx; path=/; expires=Wed, 07-Sep-22 22:16:55 GMT; domain=.renewyourknees.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
renewyourknees.com/assets/pushcrew.js
104.16.12.194200 OK 0 B URL HTTP/2 renewyourknees.com/assets/pushcrew.js
IP 104.16.12.194:0
GET /assets/pushcrew.js HTTP/1.1
Host: renewyourknees.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/vsl1651652599068bb?aff_sub=1143&aff_sub2=10289321eb29ffddf6e1f2dc03c043&affiliate_id=&click_id=6738_sessid20220907214630904&cookiepreview=false&fix=186&ho_aff_id=1143&noautoplay=false&nopopup=false&trans_id=10289321eb29ffddf6e1f2dc03c043
Cookie: __cf_bm=wrlaS5N51xDEWMY_F8gHNcV8X.zz.xj.gzt42a_kCdU-1662587215-0-AUEbbNrKIoVuZeHyUHClYHe6SVAwaoZTSKsmObDKjOmDSJPRK4xnQKBllArspBG0+rwxGKmaol3FL9/ys5dDtCW8R0z/PCCInVYH1TTT9cfx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: application/x-javascript
cf-ray: 7472a3d63b3e0b39-OSL
access-control-allow-origin: *
age: 849
cache-control: public, max-age=1200
etag: W/"630e9cfb-27d"
expires: Wed, 07 Sep 2022 22:06:56 GMT
last-modified: Tue, 30 Aug 2022 23:27:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.getclicky.com/js
104.16.221.29200 OK 0 B IP 104.16.221.29:0
GET /js HTTP/1.1
Host: static.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 21:46:56 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
expires: Tue, 13 Sep 2022 16:55:02 GMT
cache-control: max-age=604800
x-proxy-cache: HIT
content-encoding: gzip
last-modified: Tue, 06 Sep 2022 16:55:02 GMT
cf-cache-status: HIT
age: 103904
server: cloudflare
cf-ray: 7472a3d72b2cb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://renewyourknees.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 21:46:56 GMT
date: Wed, 07 Sep 2022 21:46:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2