firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 17:52:25 GMT
Expires: Fri, 21 Oct 2022 18:13:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q3um140n-67jUnl15UgPpBdP1CqluhgFqgAO8VkVJVpBC3zJDensmQ==
Age: 2472
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b6481bf5f33b42cdd966d49d8b70107
03ed01a9dc82a7efaf3706691249d811f64719a4
1e42a2cd7e7ef655d17dea6423dff85d3f57111d9bd08d2f829535aa462eb11c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E42A2CD7E7EF655D17DEA6423DFF85D3F57111D9BD08D2F829535AA462EB11C"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16335
Expires: Fri, 21 Oct 2022 23:05:52 GMT
Date: Fri, 21 Oct 2022 18:33:37 GMT
Connection: keep-alive
getglucotrust.me/discovery-noaunoex/?aff_id=6614
67.227.198.234301 Moved Permanently 264 B URL HTTP/1.1 getglucotrust.me/discovery-noaunoex/?aff_id=6614
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5c58e31ef7e128306e37b854d4243b78
758555d453bc0110166c690292e44994a995e65e
e4da4e1934f19996f570091b7241cc67d0aa3847f13ae8897a0cfc1f0b47d6c0
Analyzer Verdict Alert fortinet Phishing
GET /discovery-noaunoex/?aff_id=6614 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 21 Oct 2022 18:33:37 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Location: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Content-Length: 264
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16399
Expires: Fri, 21 Oct 2022 23:06:56 GMT
Date: Fri, 21 Oct 2022 18:33:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a7y+NctySRnVqe/Eyqqy3OiHlXZm6M4HA82pEFR/xseFv1qjTYejseJDefy0nAQgVwvRqSQgU44=
x-amz-request-id: 0KA5QEHQCVDYG0SM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 18:07:19 GMT
age: 1578
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 18:33:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 21 Oct 2022 17:43:40 GMT
Expires: Fri, 21 Oct 2022 17:56:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uzpmGKpbTtHfqgIQz-m75nfoduz1-PqyycT-QZQKT3B2AulOJnafqw==
Age: 2998
cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
151.101.85.229200 OK 7.1 kB URL HTTP/2 cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (30837)
Hash c68c38b6f53bfc3bee6b736afa488757
871df21572c702142a7c237259326013ec2df26a
e2100c6e7b6f0d358ac92d33b11278661c9a80e4c62c056677e24bc572d6da34
GET /npm/font-awesome@4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"7918-USx9eQM+MCipvmG1QM8aaHDIlvg"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 21 Oct 2022 18:33:38 GMT
age: 3185534
x-served-by: cache-fra19165-FRA, cache-bma1651-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7055
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
151.101.85.229200 OK 23 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/css/bootstrap.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (65324)
Hash f861342796feb5c1a463b5097ac9c57b
edb9ccd611b1763c4b432c68c510b9e3d9a07c33
36844fca25837b632c2a35cb10ecb41a3d4d169bb6b90d508adc7ced9586b01e
GET /npm/bootstrap@4.2.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"2565e-Oum7DnkpSJq9I3Nq6JKTnI/phkU"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 21 Oct 2022 18:33:38 GMT
age: 4548366
x-served-by: cache-fra19179-FRA, cache-bma1651-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22966
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
151.101.85.229200 OK 30 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@3.2.1/dist/jquery.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (32058)
Hash 20532f68850fbf98301ee064978fe500
baa841180e3a637eec908fbe16446a1d3270c6f8
421607c7298f63a23569c71a3269c5ae3cfe15a36290039735c3ae3533de2c68
GET /npm/jquery@3.2.1/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.2.1
x-jsd-version-type: version
etag: W/"15283-EFUBjCirQQh++czv5BFgaJPavqI"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 21 Oct 2022 18:33:38 GMT
age: 4247161
x-served-by: cache-fra19167-FRA, cache-bma1651-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30180
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
151.101.85.229200 OK 15 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (55494)
Hash 3a23cd494f2294febc5ab709de787492
b304fe0fa818fe19621c3f7e03378907a631b17e
2283c0ea76acf6f96c40bf272fa4143a564ca2d4d7b47bf97cf86526b275a3ba
GET /npm/bootstrap@4.2.1/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"d9df-3pCMntGE1061Jfp6MESbZ/w6HBQ"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 21 Oct 2022 18:33:38 GMT
age: 2058459
x-served-by: cache-fra19134-FRA, cache-bma1651-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14551
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f47cc320695635b544a761f72f3afc6f
b7cee764dcb0a625e0f8e0b4a4fce04548a1bf76
78608be3d0d6aaaf0364aed316b8676ab28d23c9b6a8ac6c147cf5d16e5cc283
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3764
Cache-Control: max-age=138953
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Etag: "63525317-1d7"
Expires: Sun, 23 Oct 2022 09:09:31 GMT
Last-Modified: Fri, 21 Oct 2022 08:06:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 62e6f1fa091820e61332f7727d4250a0
a851dc874a20b3b07167af1632cd0f471fa7d11e
fd7aea03c061205fd9d53d222b251a6dbb4e08662167d5fbe6e5a9658c767de8
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "051308A09882A7F1A3D4D4D546F51DB43168D310"
Expires: Sat, 22 Oct 2022 06:00:00 GMT
Last-Modified: Fri, 21 Oct 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 119
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75dc152fc862b4f3-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getglucotrust.me/discovery-noaunoex/?aff_id=6614
67.227.198.234200 OK 99 kB URL HTTP/1.1 getglucotrust.me/discovery-noaunoex/?aff_id=6614
IP 67.227.198.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (899), with CRLF, LF line terminators
Hash d85cc1d1247f32792a7bc3e8735cc8df
a2c8c8d82960bb153355e0161551b17608debb64
42a59ad8c92c7800160595ada9f53e2fedfabca95406ef72b4e6e03b071aea7c
Analyzer Verdict Alert fortinet Phishing
GET /discovery-noaunoex/?aff_id=6614 HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
getglucotrust.me/js/bounceback.min.js
67.227.198.234200 OK 2.8 kB URL HTTP/1.1 getglucotrust.me/js/bounceback.min.js
IP 67.227.198.234:0
File type ASCII text, with very long lines (2756), with CRLF line terminators
Hash 928ec014586629db7d8b4ad49c4bc93c
b436801b50738cca53b78e5c9e459495f26da5c9
1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282
Analyzer Verdict Alert fortinet Phishing
GET /js/bounceback.min.js HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Wed, 08 Sep 2021 15:39:06 GMT
ETag: "51ce9a-b20-5cb7daeb4fa80"
Accept-Ranges: bytes
Content-Length: 2848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
getglucotrust.me/style.css
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/style.css
IP 67.227.198.234:0
Hash 4600a875cbd599ba9f4c28222ef98065
3e3f9ea19b715aad333403e7bb46974b06355cf4
99647928529588b7e22232a06a4f3b90b8f7f6dbfc8b591445ba7fd91af797fe
GET /style.css HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 06:02:17 GMT
ETag: "51cebb-2b30-5d16e7bca0c40"
Accept-Ranges: bytes
Content-Length: 11056
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G1sDQOM99gF+plY5YcfAng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kKcGAGROslo1f0ES67F9dvUbJwc=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getglucotrust.me/images/dave.png
67.227.198.234200 OK 33 kB URL HTTP/1.1 getglucotrust.me/images/dave.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 3e117397121639f822f1920bbfec4d60
4f4a0cc6a43a4e27fb19bca23e597b1a6baf3f86
ec6b2c2607c54a8a4cf050664356ca3aa7bcb592ae46567641cddb3d04903135
GET /images/dave.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:24 GMT
ETag: "51cd87-7fe7-5d17228c48d00"
Accept-Ranges: bytes
Content-Length: 32743
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 21:48:50 GMT
expires: Thu, 19 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 161088
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:30:59 GMT
expires: Thu, 19 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 169359
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:30:59 GMT
expires: Thu, 19 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 169359
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lizswannmiller.com/social-proof/gluco-trust/3bottle.js
67.227.198.234200 OK 2.4 kB URL HTTP/1.1 lizswannmiller.com/social-proof/gluco-trust/3bottle.js
IP 67.227.198.234:0
Hash d02e366eab353ba3c5dad95d29486770
e2826c4c48b50a5492a738df2d2206dc75d5e1ad
bfc7c4c521716b2a7101cdd97b532c543f1445b5792da0d805e64fe77a63a46a
GET /social-proof/gluco-trust/3bottle.js HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Mon, 05 Jul 2021 10:55:46 GMT
ETag: "1c0daa-963-5c65e25c37428"
Accept-Ranges: bytes
Content-Length: 2403
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:31:00 GMT
expires: Thu, 19 Oct 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 169358
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:40:23 GMT
expires: Thu, 19 Oct 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 168795
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 18:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getglucotrust.me/images/glucotrust.png
67.227.198.234200 OK 37 kB URL HTTP/1.1 getglucotrust.me/images/glucotrust.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 53cfcb39e348b241bb569be45143b5d8
0abcdb57812052155f1f7eb250d68a1d2500d901
c01480ae798b31763d796108f27fa01687a9a327c48e71709e4e959645af91f2
GET /images/glucotrust.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:21 GMT
ETag: "51ce31-91e9-5d3c99ab51840"
Accept-Ranges: bytes
Content-Length: 37353
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/365-detox.png
67.227.198.234200 OK 28 kB URL HTTP/1.1 getglucotrust.me/images/365-detox.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash cbd38301847e02b324a846f78d52e7e5
3ffd514da6fb3c1ebd3f4ac94f738474f811ccd9
c9a7cb9f404a032a1b118583f67039670b40fd96da7172c8b90861e06664974d
GET /images/365-detox.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:11 GMT
ETag: "51ce23-6d64-5d3c99a1c81c0"
Accept-Ranges: bytes
Content-Length: 28004
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/night-reset.png
67.227.198.234200 OK 38 kB URL HTTP/1.1 getglucotrust.me/images/night-reset.png
IP 67.227.198.234:0
File type PNG image data, 400 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash 51a3a329948e7e8898c0a8c41b574317
cfb3ae7f51f06dba1e693051fe87ec4cefd2b5d2
8c4eb614a7e798e4de91e1dc248150210eaa1a61e3460a06da850b666293eef6
GET /images/night-reset.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 23 Dec 2021 05:35:28 GMT
ETag: "51cd15-9401-5d3c99b1fe800"
Accept-Ranges: bytes
Content-Length: 37889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/icon-man.png
67.227.198.234200 OK 5.1 kB URL HTTP/1.1 getglucotrust.me/images/icon-man.png
IP 67.227.198.234:0
File type PNG image data, 108 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b5040cf26dbe5820987b7573d9a2f5d
cbf40dc36a64ee839b6dcddf4676942041b2fca3
c92f673bfa45a5b598c4eede6e19da2da70d407849dbf3bed8fdaf7a681eaede
GET /images/icon-man.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd21-1402-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 5122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/best_value.png
67.227.198.234200 OK 10 kB URL HTTP/1.1 getglucotrust.me/glucotrust/best_value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 187008a4e7d351c042f9d7622312f9e2
7d23ade8847cfffcf0a15e5ca06c7d6726a47956
839e08dd077b29cdcff873ce9d21d070e3e1178f043a09b21fa2d2a82c0ed7e5
GET /glucotrust/best_value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:06 GMT
ETag: "519c14-27fb-5ddafa8e82638"
Accept-Ranges: bytes
Content-Length: 10235
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/atc-1.png
67.227.198.234200 OK 7.0 kB URL HTTP/1.1 getglucotrust.me/images/atc-1.png
IP 67.227.198.234:0
File type PNG image data, 358 x 89, 8-bit colormap, non-interlaced\012- data
Hash 68c2993c80c6a81e458afc917e14c1f6
eb3d52430277f6bb00840b92d38410753110c3a7
8391079e9917034c6ed2cbc2d8fea76882b9d537738567db83f3c9b92e96e72d
GET /images/atc-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd29-1b88-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 7048
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/payment-icons.png
67.227.198.234200 OK 3.7 kB URL HTTP/1.1 getglucotrust.me/glucotrust/payment-icons.png
IP 67.227.198.234:0
File type PNG image data, 315 x 76, 8-bit colormap, non-interlaced\012- data
Hash abec110a199f93c621dd12d5b8a3b6cf
9c96f6366ee3acfcafb84cde07b3ead09894d5fe
7a9bb60c6e2c926f9d1277648f551538a2df88eaf83342b293074cd3ac9c1fc2
GET /glucotrust/payment-icons.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:12 GMT
ETag: "519c21-e56-5ddafa942a630"
Accept-Ranges: bytes
Content-Length: 3670
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/gtrust-1.png
67.227.198.234200 OK 91 kB URL HTTP/1.1 getglucotrust.me/images/gtrust-1.png
IP 67.227.198.234:0
File type PNG image data, 300 x 588, 8-bit/color RGBA, non-interlaced\012- data
Hash cf9ec0841bfaabe6f228f3c4146af775
f57be27f37aa6c3425d61b2f788e95b4c1bd040b
1b590ebee0c1adace4f629c87f52fd244159447b65f3881133eb12f54d9bf1d1
GET /images/gtrust-1.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd0d-163ec-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 91116
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 172 kB URL HTTP/1.1 getglucotrust.me/glucotrust/6-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 172 kB (172441 bytes)
Hash a3d16efe395db4a4fa5efb51cc3b7649
f0ea95f994eeb5582f9eab96eb6c74a85a0b269f
b524a3ffe3077d3da64e9a457eac4ea8fe4f86913b5f65d9bcfa27b88271dffc
GET /glucotrust/6-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:38 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0e-2a199-5ddafa8bb9fc8"
Accept-Ranges: bytes
Content-Length: 172441
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/great-value.png
67.227.198.234200 OK 11 kB URL HTTP/1.1 getglucotrust.me/images/great-value.png
IP 67.227.198.234:0
File type PNG image data, 122 x 122, 8-bit/color RGBA, non-interlaced\012- data
Hash 12d7087196d3440fa24b36ae34bae649
ef955a957ac4323298d3123b9ad4e18f7789c55a
96f38f779f71616743f605c20a839096b02eb80611694cfdcc02dde9c5fb4aae
GET /images/great-value.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc1-2a49-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 10825
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/MBG.png
67.227.198.234200 OK 40 kB URL HTTP/1.1 getglucotrust.me/images/MBG.png
IP 67.227.198.234:0
File type PNG image data, 355 x 355, 8-bit colormap, non-interlaced\012- data
Hash 2f19e5d4473c4ec411ac0295d52fb187
6db2475ced9dae0fe46b3428a85307f420d4d396
1e384ca6d3d8d8279995ca77c3e3f8fd13106b0839fdae795e5b5b8b9ae52e2e
GET /images/MBG.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccc2-9bce-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 39886
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
67.227.198.234200 OK 196 kB URL HTTP/1.1 getglucotrust.me/glucotrust/3-bottle-mockup-glucotrust-add.png
IP 67.227.198.234:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 196 kB (195998 bytes)
Hash 26a130aee3d414211206d19e145b0a7c
ad41d34bf6df6bd41b49803ef4b88293990f307c
e2be3110ec3740f65e3665a7d8c72ea0a819af0ac7f8e9fbb58a93ed251ebaa4
GET /glucotrust/3-bottle-mockup-glucotrust-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:03 GMT
ETag: "519c0c-2fd9e-5ddafa8bafbb8"
Accept-Ranges: bytes
Content-Length: 195998
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/cathy.jpg
67.227.198.234200 OK 21 kB URL HTTP/1.1 getglucotrust.me/images/cathy.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611f787be0fb38aaf88796c096f69463
cd315f8e7c5e02f5b1cd5221c8b87a9de11ec24f
28a5c4b2abc59624c5f703ef966167fe05cc731a0311434ffc7423e23430e876
GET /images/cathy.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdcf-5091-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 20625
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/sharon.jpg
67.227.198.234200 OK 19 kB URL HTTP/1.1 getglucotrust.me/images/sharon.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 011ec7e4c020d8e707b7baf1ffb3f4d4
0a9ff9c94443ebdec6584c1870df8ddd5153d805
f9f5f31a444e4c990d295f31fc01156df60a76bde89c4fd3c9f21911c26b9eb8
GET /images/sharon.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51ccf2-4a59-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 19033
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/carl.png
67.227.198.234200 OK 30 kB URL HTTP/1.1 getglucotrust.me/images/carl.png
IP 67.227.198.234:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 29348b4eb2cbe53f2ec87061dfb4dffc
19ad0691005733c296a751e2243e50e1945d7f3c
040f94a96f19b55290f43bbbd3566505b3bdd4b0f92d69093c8129d63683ef90
GET /images/carl.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd25-73f9-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 29689
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/glucotrust/Glucotrust-1-add.png
67.227.198.234200 OK 78 kB URL HTTP/1.1 getglucotrust.me/glucotrust/Glucotrust-1-add.png
IP 67.227.198.234:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d03634d9b904321bac38acb827e33d19
881dc999f975608e2f851608a5411d140d13decd
ddabf7717e29126a45ec7d0c28966dee413aff5ecae502be363765c7c4c003d4
GET /glucotrust/Glucotrust-1-add.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 28 Apr 2022 04:50:09 GMT
ETag: "519c1c-12ead-5ddafa9167d80"
Accept-Ranges: bytes
Content-Length: 77485
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
getglucotrust.me/images/lesslie.jpg
67.227.198.234200 OK 27 kB URL HTTP/1.1 getglucotrust.me/images/lesslie.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 158c17c07a5e54fde7cf9d65de12dc9a
d33cf6ac8b1683acd31052a30f556ddba0b90c22
8d71208abab5f29dbc6d689dedab30d1bff9e99c7bbf83b8cec8b65dec2e6a2d
GET /images/lesslie.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cded-69f7-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 27127
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
getglucotrust.me/images/tina.jpg
67.227.198.234200 OK 25 kB URL HTTP/1.1 getglucotrust.me/images/tina.jpg
IP 67.227.198.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 611ab6a42b1abf4848720bb5eea5b47a
080db01d0fbcfbe83213556fe2eeb74be37511cc
c29401fa52410bd8ba4c24531051e85b0bcac7885725304fb3c296924a5230a9
GET /images/tina.jpg HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cdc3-617f-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 24959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ipapi.co/json/
104.26.9.44200 OK 362 B IP 104.26.9.44:0
File type JSON data\012- , ASCII text
Hash 0952e57d5423158806fe6896f4590904
9fb8ec7085a8aa13483212b53bacf9ea358cb99c
9c555a056892134a91385f58f58c9f10452eefbcbfe6bf542f2f99a171e6be4d
GET /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:39 GMT
content-type: application/json
allow: GET, OPTIONS, HEAD, POST, OPTIONS
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://getglucotrust.me
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HD3%2FVNhkt66AErISq1NPXXPrP%2BdwPntHqke2JgRyfaiQBlWwqSv82DAot%2FtQZz6gg8ltx3%2FHIU386LzQxb4WltfRzub5PE%2FgfYTTcYiUVDqT%2BNA5SPE0RQA3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75dc1532bd4b0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
getglucotrust.me/images/favicon.png
67.227.198.234200 OK 23 kB URL HTTP/1.1 getglucotrust.me/images/favicon.png
IP 67.227.198.234:0
Hash 0a296f9c822582572cbc3a0240ab83b8
d3c91e66672c7c2459e249f63ac71745bfe17cee
af0eab56b2f01fcd93757caa347491aea9e77400e1e4d62ff21e0ca45324db0a
GET /images/favicon.png HTTP/1.1
Host: getglucotrust.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/discovery-noaunoex/?aff_id=6614
Cookie: visitor_name=old
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 18:33:39 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Tue, 23 Nov 2021 10:25:22 GMT
ETag: "51cd02-5748-5d17228a60880"
Accept-Ranges: bytes
Content-Length: 22344
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16925
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 18:33:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16925
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 18:33:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16925
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 18:33:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16925
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 18:33:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16925
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 18:33:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bd5e942443ffd011faf10dc88d92081
beff4ae9e24599addce8a961c955788045c56645
2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C8HRcZnP8nrEFWU_vn1olwnkXdvlqUu2_w0YIED9MSXDtO3U2mKO-w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:36:05 GMT
age: 71855
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d369f8641d3489521afd62e112136f5b
088a3290733195efeb1d79dcc995c22b603bece0
b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ID2imzYYOzIjJNsz9xeprVEYldmsiabjTmoqORoIseqQRMzW7W3qJA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:52:46 GMT
age: 74454
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b772335d96ac97ec5b28623955fb026d
7a19bf011359ad768b05dd79cec66787d2dc59fd
c13e7384880ec6fe431f3627eb61529c7fdb934cf0b021b4586ff2dc1c2e1244
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4786
x-amzn-requestid: 263fe384-2385-48c4-b250-1708a3cdd710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKKFOYoAMF92Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-46dfbb85286685373b0b5e77;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7dvOHC_VGsnv75l5gV7ewKgRDgsXbO1XpnV3m8qf21TQaXsnNzvIeQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:52:52 GMT
age: 74448
etag: "7a19bf011359ad768b05dd79cec66787d2dc59fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41720951bc9f58ea936fb65b472ef05a
b8739209bdacc59cbf87b49024f73650a9a0f113
9dd1c174c5a45cf4167c4c20752c2575ab4280f869f49dd9056907c9521afe36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6730
x-amzn-requestid: 97d867bc-a398-4b2b-8dda-2497a105845e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aSsAnEP3oAMF2lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6350f39d-3f56509c395ff64a396b5706;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 07:07:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 92JemdQ9iP0ZStmalSRrraqZJIAsZdDsaXdVwu-Q4PYnIBJ_IfcBag==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 06:21:47 GMT
age: 43913
etag: "b8739209bdacc59cbf87b49024f73650a9a0f113"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c6ab9a31e082a0c0eaab2a0f526495a
c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a
ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6551
x-amzn-requestid: 4deffe4d-e687-436e-938c-f8128bb84376
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_MG5QoAMFahg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fa-66d4e2210fda5a80155f2466;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tUzBA20lqAqZvWHt_SJ2nSXqp1suoKPRgxDN99w33CdoKY0vPspg0A==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 07:10:48 GMT
age: 40972
etag: "c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00f8ff57c0d15e1ce75a788b91dc0bd3
46445de659e1aa0623c7666c98b5f642ffeff89d
95eb2c3d2ab4643affffd59887814a013edacba9f73c633399905d9d0d397b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10799
x-amzn-requestid: 9b27131b-a0ca-426d-939c-78de0beac51c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLF9hIAMF97g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-76bf3c356f04a6a672e2f7a1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wOVWtGbvNohj7CotSEW3qamI01hNffsODahh60wBEqNkmS27llMk1Q==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:52:51 GMT
age: 74449
etag: "46445de659e1aa0623c7666c98b5f642ffeff89d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
151.139.128.11200 OK 4.7 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd
IP 151.139.128.11:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash abace24d047031da912f090b739571fb
fe031474a108bb50ed558193a30c6a99c7d43306
966f54e46d2c696ba7d416f596d482b46b5e23dcdcbac258d8419a8594dd9ce7
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Tue, 26 Oct 2021 09:57:25 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvI7uDYQySNqp_WSx91fAFP4-7wLxotNFqr41smyWIugov_2Sg-vWhLDyedd7dOe8Vb1zG17y5Ht5GF0vDCidsqrg
x-goog-generation: 1635242245257388
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=eL7dqQ==, md5=q6ziTQRwMdqRLwkLc5Vx+w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "abace24d047031da912f090b739571fb"
age: 1059
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1666377220.cds014.sk1.hn,1666377220.cds065.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash a9de8a2523986fda187202d3d2cbd602
5aa8b35852623f05343ed49cb656bd6bfd9fc9a0
a4077695304502783df4c7510b345c371756350eba59164cf191d32b6540d491
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 21 Oct 2022 18:33:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 21 Oct 2022 18:18:25 GMT
Expires: Sat, 22 Oct 2022 18:18:25 GMT
ETag: "5aa8b35852623f05343ed49cb656bd6bfd9fc9a0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 103
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:40 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 147
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
151.139.128.11200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4
IP 151.139.128.11:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 4f3d84d2d528408dfe561eb3d1dd7e1e
ee2797b545300bda74178a1d9b23f4644010fa23
9d19d8e0f9ef924887894759458dbbf61baa018fb750e9d5d1b1159cc472df07
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:53 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtQyCao_LZfOgCXP92kVCU7vkl8xC3ZEjgSs3Y_XtsyZy1FaTgSDscOmZGiULVJEIPPigyPwGLGeyId7G91m9fSGa21VQCl
x-goog-generation: 1635241733761536
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=bNOOUA==, md5=Tz2E0tUoQI3+Vh6z0d1+Hg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "4f3d84d2d528408dfe561eb3d1dd7e1e"
age: 773
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1666377220.cds014.sk1.hn,1666377220.cds210.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=sBLUNzmU
107.178.211.97200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=sBLUNzmU
IP 107.178.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=sBLUNzmU HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "sBLUNzmU/CnYi7HTmPP1mjcY0"
date: Fri, 21 Oct 2022 18:33:40 GMT
x-envoy-upstream-service-time: 16
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1252
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:40 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash a9de8a2523986fda187202d3d2cbd602
5aa8b35852623f05343ed49cb656bd6bfd9fc9a0
a4077695304502783df4c7510b345c371756350eba59164cf191d32b6540d491
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 21 Oct 2022 18:33:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 21 Oct 2022 18:18:25 GMT
Expires: Sat, 22 Oct 2022 18:18:25 GMT
ETag: "5aa8b35852623f05343ed49cb656bd6bfd9fc9a0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 370
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 503
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 21 Oct 2022 18:33:40 GMT
content-length: 16
x-envoy-upstream-service-time: 3
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
151.139.128.11200 OK 142 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm
IP 151.139.128.11:0
Size 142 kB (141872 bytes)
Hash 0efe32a3d51ac33dea20b21e3192ed4c
84cd6e318ce2c38b0f0ed30919c87e14ac0df994
6d8b04775ab140d3e2de28b68aea8e4f8207b959463ea4525121893569fd4d5c
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/640x360_vp9_280624/s_0.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:41 GMT
accept-ranges: bytes
content-length: 141872
content-type: video/mp4
x-hw: 1666377220.cds014.sk1.hn,1666377220.cds215.sk1.s,1666377220.dop222.la3.r,1666377221.cds233.la3.c,1666377221.cds215.sk1.p
x-cdn: 4
x-guploader-uploadid: ADPycduVu2rILdDr_wmy5Fb_CAxxmNAVCqhsEkR9j8gmdYa6Mv2UmXLol_uqZa6nGX7GnO-Zq0YBuOcDmaYlYRsozfkk7Osw0Iel
cache-control: public, max-age=31104000
etag: "0efe32a3d51ac33dea20b21e3192ed4c"
x-goog-generation: 1635241759020672
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141872
x-goog-hash: crc32c=ZicahA==, md5=Dv4yo9Uawz3qILIeMZLtTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
151.139.128.11200 OK 459 B URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4
IP 151.139.128.11:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:42 GMT
content-length: 459
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:48:54 GMT
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Type
age: 1090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
server: UploadServer
x-guploader-uploadid: ADPycdtOrlGStWAXgunEQNOFc8dZDU0ozBYQm9j453pLfubY7frEtF5Tt27vzIcvL45wgLu0vxjEgrIdyx0cvJPRW-ug-XrV_xId
x-goog-generation: 1635241734900204
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-metageneration: 2
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-hw: 1666377222.cds014.sk1.hn,1666377222.cds233.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 112
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Fri, 21 Oct 2022 18:33:42 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
151.139.128.11200 OK 453 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm
IP 151.139.128.11:0
Size 453 kB (452963 bytes)
Hash 503dabff6a8c19e003b8d50a87955024
8fff1767eecbeee2a02b8c7f932e099c683c6e12
2f63c517550b5278c4c29babe84792c12e3ec58c1960829ef3456738e376d916
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:42 GMT
content-length: 452963
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:49:19 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvLSCjpLZ2n910sD7_tpiE_rNorl5uhG_Mgm4RjXKNEH81vcM77wl2wAPyE8U9QuITAoWwYQZ7SX2fOzVVhZmSoAg
x-goog-generation: 1635241759821716
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 452963
x-goog-hash: crc32c=+f4GVw==, md5=UD2r/2qMGeADuNUKh5VQJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "503dabff6a8c19e003b8d50a87955024"
age: 1090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1666377222.cds014.sk1.hn,1666377222.cds003.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
151.139.128.11200 OK 501 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm
IP 151.139.128.11:0
Size 501 kB (500741 bytes)
Hash 4c9ae4acf4f41c4141a868ef8928c500
4312e0a0ae930f79a93b38ee2a643af87ca1c491
53149be550b49003b97069c9530c655222737f4d78422f22c4b4308c65441ffb
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:42 GMT
content-length: 500741
content-type: video/mp4
last-modified: Tue, 26 Oct 2021 09:50:10 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu4Vkp2I-9jKji0e8JbOBG7tehV7KtQujARe1OnSs9m3y4GT6UJRf-PgHHc-v7kiiJlPSlS5ynJTtxHfxhYI2hGlA
cache-control: public, max-age=31104000
etag: "4c9ae4acf4f41c4141a868ef8928c500"
x-goog-generation: 1635241810385100
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500741
x-goog-hash: crc32c=G1mmkA==, md5=TJrkrPT0HEFBqGjviSjFAA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1666377222.cds014.sk1.hn,1666377222.cds069.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1858
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 3 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash 344cb90c9cea24e3fd7d53c37a700afd
4460d93d41e542dbffba74b05bcfaf5bf88327d0
fa8b3050c745eb53dd2bea7ba537764269e8aca03015419f4a4327544640773a
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1816
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:42 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1808
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:41 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
151.139.128.11200 OK 440 kB URL HTTP/2 quick.vidalytics.com/video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm
IP 151.139.128.11:0
Size 440 kB (440220 bytes)
Hash 2ce7ceeecec22620296b359f23daf34e
4967eeb2847fd5f13006de3f62f00b5d43cdf857
63c11ac2e648ad07644a3e5d99a14bd56455be889b2f98cb8fd6b9200cf404b6
GET /video/sBLUNzmU/rM0JGjnU7kzOzF8S/48277/40376/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:43 GMT
accept-ranges: bytes
content-length: 440220
content-type: video/mp4
x-hw: 1666377222.cds014.sk1.hn,1666377222.cds009.sk1.s,1666377222.dop214.la3.r,1666377222.cds244.la3.c,1666377222.cds009.sk1.p
x-cdn: 4
x-guploader-uploadid: ADPycdtPo0FgGzIy0z-7omoQqr9kW3KKJakh9wPY7BqrPlKaDHj5mKwk574wOlIrJlRXg4Wn_Sc_tl6hdyKkzGBUNwc3Sz_eLipV
cache-control: public, max-age=31104000
etag: "2ce7ceeecec22620296b359f23daf34e"
x-goog-generation: 1635241757315848
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 440220
x-goog-hash: crc32c=a0DuSw==, md5=LOfO7s7CJiApazWfI9rzTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Tue, 26 Oct 2021 09:49:17 GMT
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 186
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 21 Oct 2022 18:33:45 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1927
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:46 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1832
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75287f5f-8525-4258-bd5c-f7b2726ca608.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75287f5f-8525-4258-bd5c-f7b2726ca608.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 01b09d9fb8bc36958ca73e2107200455
bc413d3d727a9a93adf17ec4c875cd929e09b4ec
fd63b40801efb7ec96f10ef972f69f45c8c44947a3dda4bd9db66d8d11efc039
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75287f5f-8525-4258-bd5c-f7b2726ca608.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10392
x-amzn-requestid: 6a35f696-7923-4a34-84f8-e40be1500e24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO1dUGakIAMF6Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6921-5af8ef6d0fe202dc74528142;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:04:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EwA2_rUgCKcRhR5jyXHBVVIPF9Zz8im30bbO4SwtSrQ2mbDlEkoPwA==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 03:55:10 GMT
age: 52716
etag: "bc413d3d727a9a93adf17ec4c875cd929e09b4ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1865
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1825
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Fri, 21 Oct 2022 18:33:46 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap
IP 142.250.74.10:0
GET /css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 18:33:38 GMT
date: Fri, 21 Oct 2022 18:33:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:900
IP 142.250.74.10:0
GET /css?family=Roboto:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 18:33:38 GMT
date: Fri, 21 Oct 2022 18:33:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
172.66.40.141200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=XXXX
IP 172.66.40.141:0
GET /v1/disclaimer?id=disclaimer&account_id=XXXX HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:39 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75dc152fe8181c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
151.139.128.11200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js
IP 151.139.128.11:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:39 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:23 GMT
x-guploader-uploadid: ADPycdtsWkBFCeHzs-YyDOH84537Zmut7D0VBzmd58dtOdpafLYTKqJbBHjLNUhJsSBSM4q_EoK1SvzqNyVCK42iM5vbvjTS2EYB
expires: Fri, 21 Oct 2022 18:33:38 GMT
etag: "99062c422517a5fbec4ec008f470f173"
x-goog-generation: 1665138923750112
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=U9EGPA==, md5=mQYsQiUXpfvsTsAI9HDxcw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1666377218.cds231.sk1.hn,1666377218.cds231.sk1.hn,1666377218.cds210.sk1.sc,1666377219.cds210.sk1.p,1666377219.cds231.sk1.sl
X-Firefox-Spdy: h2
quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb
151.139.128.11200 OK 0 B URL HTTP/2 quick.vidalytics.com/embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb
IP 151.139.128.11:0
GET /embeds/sBLUNzmU/XqU67c2AthHRraOr/player-dash-mse.min.js?hash=xqisavkb HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getglucotrust.me
Connection: keep-alive
Referer: https://getglucotrust.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 18:33:39 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 10:35:24 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsv8DfZblCdMrvlWXBCPC-NWQDR6fe4nPaIpGRgvvXaLJ3OPb7Fv3YCaZkTl_-bOWcJGL746Qju1crOb1hP3imJFw
cache-control: public, max-age=300, s-maxage=2592000
etag: "e36f599ac6dd2e8516f4a98b2d8874c0"
x-goog-generation: 1665138924190301
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502517
x-goog-hash: crc32c=mVBADg==, md5=429ZmsbdLoUW9KmLLYh0wA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn: 4
content-encoding: gzip
x-hw: 1666377219.cds014.sk1.hn,1666377219.cds014.sk1.hc,1666377219.cds261.sk1.c,1666377219.cds014.sk1.sl
X-Firefox-Spdy: h2