Report - getceralift.delmarlaboratories.com/?r=b75e14e877eb4c43a68eda86ec4d7c4c&a=193666&o=95&s1=mw39sg_op_Email&s2=&s3=107.178.231.248&s4=&vclick

Report Overview

Submitted URL
getceralift.delmarlaboratories.com/?r=b75e14e877eb4c43a68eda86ec4d7c4c&a=193666&o=95&s1=mw39sg_op_Email&s2=&s3=107.178.231.248&s4=&vclick_id=acc9d7e387ed4b19af1555551444352d
IP
3.101.115.243
ASN
#16509 AMAZON-02
Submitted
2023-01-14 19:05:30
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	91 kB	142.250.74.72
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	918 B	49 kB	142.250.74.74
fast.a.klaviyo.com	5349	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	943 B	151.101.2.133
amplify.outbrain.com	2255	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	5.9 kB	2.18.173.74
tr.outbrain.com	2017	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	415 B	70.42.32.95
analytics-ingress-global.bitmovin.com	47119	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	2.9 kB	35.190.27.197
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
static-tracking.klaviyo.com	4414	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	962 B	18 kB	151.101.194.133
quick.vidalytics.com	193746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.5 kB	1.2 MB	151.139.128.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	11 kB	216.58.211.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.213.151.148
getceralift.delmarlaboratories.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	968 B	45 kB	3.101.115.243
del-mar-laboratories.imgix.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	982 B	21 kB	151.101.86.208
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	459 B	32 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	992 B	48 kB	216.58.207.227
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	4.6 kB	192.124.249.22
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	650 B	757 B	142.250.74.163
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	104.18.32.68
stats.vidalytics.com	153185	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	1.4 kB	107.178.211.97
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
convertri.imgix.net	177016	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	22 kB	151.101.86.208
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	95.101.11.115
licensing.bitmovin.com	19299	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.0 kB	35.227.229.24
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	887 B	143.204.42.88
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
static-forms.klaviyo.com	5328	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	457 B	3.5 kB	151.101.66.133
asset.delmarlaboratories.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	463 B	975 B	54.230.111.5
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	651 B	757 B	142.250.74.132
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	644 B	729 B	173.194.222.154
static.klaviyo.com	4056	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	51 kB	151.101.130.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-14 19:05:28	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	getceralift.delmarlaboratories.com/	5.9 kB	2023-03-12	2023-03-13
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-13 00:39:09 Times Seen1 Hash 674e0791edf5cad08d957fd01442232e ee2065eeafc9b0643d23dc6f3dd898b37abb193e 24c194575a99f255585c29d0b7d628e69c075c1be093a83d93aeb98f010abac0 Loading...

	getceralift.delmarlaboratories.com/	141 B	2023-03-12	2023-12-27
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-12-27 07:14:37 Times Seen23 Hash 93e2d49adbe508d1e8ca82e7f38d453a de4ca69985fe0d65ceb3b8c01751e5ef880cead4 48047ef4390cc9edb30772c8aae1b0766cd6149a9f45ec117a1fda217f49ee30 Loading...

	getceralift.delmarlaboratories.com/	466 B	2023-03-07	2023-12-27
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:20 Last Seen2023-12-27 07:14:37 Times Seen34 Hash db3433ca0c792bc09d48ffb12221219a 54b2d22068e70ef9097d31dcae2f69dc28d97f6f 27e5a348a9d83745184ec7153188a645a523d842e13af592e37e95dac264eef5 Loading...

	static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1	37 kB	2023-03-12	2023-03-29
Pretty URL static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 IP 151.101.130.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:40:45 Last Seen2023-03-29 23:24:30 Times Seen197 Hash 14d5f5d749c7e30f46242493ff3f2893 bb66a0bbfd810720f4baa9a29f4d81aa333dd46f e9a2731bcb2bdc94e4abdff5f16756841973c97814338e7dfb475cb78af07d4c Loading...

	tr.outbrain.com/cachedClickId?marketerId=undefined	35 B	2023-03-07	2024-02-13
Pretty URL tr.outbrain.com/cachedClickId?marketerId=undefined IP 70.42.32.95 ASN #22075 AS-OUTBRAIN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-02-13 00:48:29 Times Seen1372 Hash 75c843c7b717e7b722777907475c67a3 983d1c9a05b315288039b9d4694ce3b402259240 1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580 Loading...

	getceralift.delmarlaboratories.com/	6.7 kB	2023-03-07	2023-12-27
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:20 Last Seen2023-12-27 07:14:38 Times Seen41 Hash 600e1d9f09ad4efa2bf3c804fffe13e2 89d2c9f29f3b7320205e79ea2c5c6402e07da297 6c38eb21fcb5468e0f7056cd2766a1a363380de64081f96eb514dbf98575624d Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-04
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-04 22:13:21 Times Seen141425 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	getceralift.delmarlaboratories.com/	3.5 kB	2023-03-12	2023-12-27
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-12-27 07:14:37 Times Seen23 Hash ef221e7454c5d5e826cdb9bd2d38e16e b72c4c08a2589a16d74ff618296e7593101ff1bb 4cd529ec0e97e192398bd7b905f737a7db12056cb7b361eae5729df29602b9b4 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MKBCJ7B	274 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MKBCJ7B IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-12 23:24:38 Times Seen1 Hash bb5e44887d5942cbab3a237dc10591c6 6b8e1e25e882d1c1e84480f0bae93c4c17ab9275 804818107a546859ec47f25ad255eb05c60339b6cb75deeb35142645d09396ac Loading...

	static.klaviyo.com/onsite/js/klaviyo.js?company_id=HsZXk4	2.9 kB	2023-03-12	2023-03-13
Pretty URL static.klaviyo.com/onsite/js/klaviyo.js?company_id=HsZXk4 IP 151.101.130.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-13 00:39:09 Times Seen1 Hash 2454fe118c0666d9dc487c8b3d976222 eadff250fae8c964aa54524754b449e4be5f3417 267c8aaa8bc36d4c55b05c818c6c131a0a94f23cf14fd3e02b563de814c97c83 Loading...

	quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/loader.min.js	42 kB	2023-03-12	2023-03-13
Pretty URL quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/loader.min.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-13 00:39:09 Times Seen1 Hash 61dcf360b4a93520f4e1bdbcc4a72a27 79813e65369d4cc89c33f02e73216ab37100714b 81b079f1457778542346a4e590bdcdc586db18e072dde2442d591c8e18fec945 Loading...

	static.klaviyo.com/onsite/js/runtime.8f1efb226a72ce88bdcb.js?cb=1	20 kB	2023-03-12	2023-03-13
Pretty URL static.klaviyo.com/onsite/js/runtime.8f1efb226a72ce88bdcb.js?cb=1 IP 151.101.130.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:11:48 Last Seen2023-03-13 01:42:40 Times Seen1 Hash 61f1cc8e44a18af47389ba3ab025333b 9811d284334b77f25dfe90677cee818e5179781e 6f63bc0fc6cc99c0fc5a6150545c5f4cb8c9c6b478fbd27a5535a6ca7b0e5b55 Loading...

	amplify.outbrain.com/cp/obtp.js	17 kB	2023-03-12	2023-03-13
Pretty URL amplify.outbrain.com/cp/obtp.js IP 2.18.173.74 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:25:04 Last Seen2023-03-13 03:02:27 Times Seen1 Hash 2b39cf4b5b36810a615ee712f89afb45 8bf9ea241c3d5747f7820866f7292e719255840c f272bf29bb69bb40e7fdf2ca3b04f40826aba99879d618dc2c07568e4d92646b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1	36 kB	2023-03-12	2023-03-13
Pretty URL static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1 IP 151.101.130.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:40:02 Last Seen2023-03-13 06:49:41 Times Seen1 Hash 41ee777bf771519f538138ed79a3786d 81d7b7d42c87b4a21cf7e25ed65a00365ec283d4 53270a13b3038d3786afbf65a1a67dae7d65569910204aa3457ffb3bb91c641c Loading...

	static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1	28 kB	2023-03-08	2023-03-13
Pretty URL static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1 IP 151.101.194.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:58 Last Seen2023-03-13 06:49:40 Times Seen1 Hash 141ae207735ed4c2a3fb9ba628dca228 06e1a7325806032134667fc65f854a8a9fb41622 55f20b9eda8fe8f548f84fdb1d55305871822fd4c047e431894513d79bd351b0 Loading...

	static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1	13 kB	2023-03-08	2023-03-13
Pretty URL static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1 IP 151.101.194.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:54:45 Last Seen2023-03-13 06:41:24 Times Seen1 Hash 9aa89eda5d828bf8fce2ee83e11483a0 18fe8137505ec5d1ba0feead0940627ac8cc5b2f 67813c96ecbb4719d73ebf150a39525b76d1f3294692a6dc8cb558dc90aab1e6 Loading...

	getceralift.delmarlaboratories.com/	498 B	2023-03-12	2023-05-09
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-05-09 19:11:57 Times Seen2 Hash 115aac4c22b7eb8b80c071e7cc7a7567 318262d70c0d98df3fce6ca453f3d8883108ac6a a393bd0ee67cf0d2f15c7b9e0bb2492c1e5da27cd8ccbd58b09d5ed79c8b1824 Loading...

	getceralift.delmarlaboratories.com/	1.2 kB	2023-03-07	2023-03-13
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:22:52 Last Seen2023-03-13 00:39:09 Times Seen1 Hash 864c289e2f5817f74a8935cf1c5728d8 8c4f52f7e8ea370ffcf026a2ee46756a086f1ca8 6aa3e3c0c42e12b687065925f3fe51f4827fe73b1058725e13e710b5b5c7e660 Loading...

	getceralift.delmarlaboratories.com/	130 B	2023-03-12	2023-03-12
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-12 23:24:38 Times Seen1 Hash c2d684a8898ef75ce2f8a3ad407796f2 8d34b450369ee590887267e71c49cdfa9c29a31c e646b6bf8d61ef1deda3f0c31113cacb636240e4e5c731408e5f302d3d6cdd77 Loading...

	getceralift.delmarlaboratories.com/	575 B	2023-03-12	2023-05-09
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-05-09 19:11:57 Times Seen2 Hash 4656178477889bf7160cda6809686097 9c7b7e0005a063168be593a0fa7707559e6e2e74 a2dfdbe8bd16784c8995a4c0a9adc00d90e0356098dfe6ab821bdeaa4731f049 Loading...

	getceralift.delmarlaboratories.com/	179 B	2023-03-07	2023-03-13
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:22:52 Last Seen2023-03-13 00:39:09 Times Seen1 Hash d4771f78496d7cb760859375aec6f298 8428660833fd6845157db83058a2ede3ac789005 9469901046277a3e5d2d12c550bed72719931811df4231b3d903420ba14ed07b Loading...

	getceralift.delmarlaboratories.com/	58 B	2023-03-12	2023-03-12
Pretty URL getceralift.delmarlaboratories.com/ IP 3.101.115.243 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-12 23:24:38 Times Seen1 Hash 02750dbfe91ef8e360fded71327685d1 52446d96b9867cf6698cbc53221cdc3e965898bd 0fb13f501ffc0e3ed86c7f1e62e32d1d1d455018b22d8dbbe3aa9c6de4918f74 Loading...

	www.googleoptimize.com/optimize.js?id=GTM-5T43C5X	122 kB	2023-03-12	2023-03-12
Pretty URL www.googleoptimize.com/optimize.js?id=GTM-5T43C5X IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-12 23:24:38 Times Seen1 Hash 435f54212f54829456ec0bc9984ff075 7a951388a36686ce5a7ede707798e78e65a44645 bc2f22f890cca8aaa4b397f8205a9e9f82a99f02b62ea669e5b012abbcfe1e12 Loading...

	static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1	34 kB	2023-03-12	2023-03-13
Pretty URL static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1 IP 151.101.130.133 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:40:45 Last Seen2023-03-13 06:25:07 Times Seen1 Hash e4c7cf534c566854ff279e37d723b7a5 d0c3558561f617e7d6dcba7428d9409909218d5f 61fdbe766e34658199919c36cb4ffd84a86ba5e788023589a89148d465a1a3b0 Loading...

	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 22:31:08 Times Seen37348029 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/684849977/?random=1673723121659&cv=11&fst=1673723121659&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&auid=1848442184.1673723122&rfmt=3&fmt=4	1.8 kB	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/684849977/?random=1673723121659&cv=11&fst=1673723121659&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&auid=1848442184.1673723122&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-12 23:24:38 Times Seen1 Hash aeb6ff7707258415ad3c51aaf5feb9a5 4defdb1efd1c6a467e6c56433a25422dad7957ad 0c50f7c4e9c879b7d67db6909c3c4db418eb607aa249f14e4bf6f8704dc8860f Loading...

		Size	First Seen	Last Seen
	#1 Eval - 20e2f483ef21ff0e5f469d7b9a61893c	254 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 23:24:38 Last Seen2023-03-13 00:39:09 Times Seen1 Hash 20e2f483ef21ff0e5f469d7b9a61893c 831b9803cca0064a67da523e20727a330b73e6df 825ae21f71859bb745744d811fcd14809d20da407781ca8f069e263cd78ce8c6 Loading...

	#2 Eval - 8e98c73cd11cfdc4e71e67e973069e60	254 B	2023-03-12	2023-05-09
Pretty Observations First Seen2023-03-12 23:24:38 Last Seen2023-05-09 19:11:57 Times Seen2 Hash 8e98c73cd11cfdc4e71e67e973069e60 dbe2f139ab6f54ff1a381b9aa37cbb47b807cbff 5a1de49a7359721d40b898624b94517cd21b64b15b1b5b122ddec871f7f3950c Loading...

	#3 Eval - c246b1453ca8089872b9bd26ceaf5a6f	255 B	2023-03-12	2023-05-09
Pretty Observations First Seen2023-03-12 23:24:38 Last Seen2023-05-09 19:11:57 Times Seen2 Hash c246b1453ca8089872b9bd26ceaf5a6f 94f247bb3be135bfb832d51eb52ded1e24af2009 6b2de3bd798a0edfa05e6e90aa56e410fed738aff5ddc57dbdbee234c9b7fb66 Loading...

	#4 Eval - 1ed049e415c9adb927c027ca915c944e	257 B	2023-03-12	2023-05-09
Pretty Observations First Seen2023-03-12 23:24:38 Last Seen2023-05-09 19:11:57 Times Seen2 Hash 1ed049e415c9adb927c027ca915c944e 91febe4e6424cafb6cd1601e1a53953808b08d1c c13450352ccc0207933167a8d02824cd888fc30b0b87298123854f36f3d7e0c7 Loading...

HTTP Transactions (85)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a8b4f1afb0e830b797238d34ab9254aa e011acef3d05c959a65205d53b651ecd18a889fe f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C" Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14213 Expires: Sat, 14 Jan 2023 23:02:12 GMT Date: Sat, 14 Jan 2023 19:05:19 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3063227f59d1935298b0620fa7919145 478e1d8bef04b1f95381cac01829c03b6779d420 619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C" Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11178 Expires: Sat, 14 Jan 2023 22:11:37 GMT Date: Sat, 14 Jan 2023 19:05:19 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 64765d3d978fd74d7bc47d55d4f097cf 92eb3f0d55ba99be28105c0b28ef7dd456817f1f 761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3" Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19572 Expires: Sun, 15 Jan 2023 00:31:32 GMT Date: Sat, 14 Jan 2023 19:05:20 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 14 Jan 2023 18:48:55 GMT content-type: application/json age: 985 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: On+i+LjFxN56xZXsWhRaII3gauyA7V9jyOhd+3GhRvFLEJpW6m37MPM0YAYPoAi+rw/6UWPJbTI= x-amz-request-id: VV8BCQMZ428QYDPN content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 14 Jan 2023 18:43:50 GMT age: 1290 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 14 Jan 2023 19:05:20 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 14 Jan 2023 18:33:45 GMT age: 1895 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c01ec61f7ca77158f474b3ab519c12fa fc82ae0fcd73a83a980b75709a08e65239894e4a f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 627 Cache-Control: max-age=137514 Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:20 GMT Etag: "63c270a7-1d7" Expires: Mon, 16 Jan 2023 09:17:14 GMT Last-Modified: Sat, 14 Jan 2023 09:06:47 GMT Server: ECS (ska/F712) X-Cache: HIT Content-Length: 471`

	ocsp.sectigo.com/	104.18.32.68	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash c77316b99ef22e59a4171cf5ff558da4 8b5ca863fccbd2a2c69e7a279b73cd7e0757cc2c 43fa8527e1bb11cf0ba3b6c24b0c0b57dfba3406d3c7c97c42aafa7e4f32c9a6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 14 Jan 2023 19:05:20 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Thu, 12 Jan 2023 09:40:16 GMT Expires: Thu, 19 Jan 2023 09:40:15 GMT Etag: "8b5ca863fccbd2a2c69e7a279b73cd7e0757cc2c" Cache-Control: max-age=397494,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7898a47f1bcc1c0e-OSL`

	push.services.mozilla.com/	54.213.151.148	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.213.151.148:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: UQkpk2eyQ2ftVboRjzauXw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: iadFXle214q8Z+j8jvPqwQ3BRpA=`

	getceralift.delmarlaboratories.com/	3.101.115.243	200 OK	44 kB
URL HTTP/1.1 getceralift.delmarlaboratories.com/ IP 3.101.115.243:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (28504) Size 44 kB (43994 bytes) Hash 7acdd1daf2de6f7e4f821fdb4fe83952 b7bef6679f4b36fc803711a4c900327096335df3 fcd7da16289b2e5587a46b9371b3b161488577f4966d8e9ed878603a4b85f733 HTTP Headers `GET / HTTP/1.1 Host: getceralift.delmarlaboratories.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK X-DNS-Prefetch-Control: off X-Frame-Options: DENY Strict-Transport-Security: max-age=15552000; includeSubDomains X-Download-Options: noopen X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Powered-By: PHP 8.1 Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept Content-Type: text/html; charset=utf-8 ETag: W/"33fb6-ex4RZhkgW9TSoQY7naZzu4A4d1M" Set-Cookie: esid=s%3AI8B-iv9j0rUEUv5GC-aBVM_gPxVjxjMj.YU%2FJ3zsdeaVVbbX%2Bp1KS%2BOvOC4I2xXnw%2FcsvpRq46pU; Path=/; HttpOnly Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 19:05:20 GMT Connection: keep-alive Keep-Alive: timeout=5 Transfer-Encoding: chunked

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c16b1530bbcd3d9226362c0a6100f014 a49685aa2869a3674bc4c8fc58acd47f655c2111 ff063e27670433897ba82fdf8048fc228587ab2f01c21e2970f03b3df9093539 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	del-mar-laboratories.imgix.net/ceraliftskin.com/phone-symbol-blue.png?fit=max&auto=format	151.101.86.208	200 OK	4.9 kB
URL HTTP/2 del-mar-laboratories.imgix.net/ceraliftskin.com/phone-symbol-blue.png?fit=max&auto=format IP 151.101.86.208:0 ASN #54113 FASTLY File type ISO Media, AVIF Image\012- data Size 4.9 kB (4937 bytes) Hash 85952a12f298fbe10d8fd01c6be04596 5e92ad1f8800f7743440cca53aaa8fa9172682a0 5b253556e045e23dbc2c668d97f16f63f7d7a09debf035b3214cb90c48ec9a09 HTTP Headers `GET /ceraliftskin.com/phone-symbol-blue.png?fit=max&auto=format HTTP/1.1 Host: del-mar-laboratories.imgix.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK last-modified: Wed, 09 Nov 2022 09:50:28 GMT cache-control: public, max-age=31536000 server: imgix x-imgix-id: 10e2757904f6b0dbb3171e42ad58152c6bad431b x-imgix-render-farm: 01.1072 date: Sat, 14 Jan 2023 19:05:21 GMT age: 5735693 accept-ranges: bytes content-type: image/avif access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-served-by: cache-sjc10053-SJC, cache-bma1635-BMA x-cache: HIT, HIT vary: Accept, User-Agent content-length: 4937 X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	142.250.74.10	200 OK	31 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.10:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65451) Size 31 kB (31021 bytes) Hash 903bc7a7e510f87aa5d0201eb59a0832 ac9aa4dd94cde1bcba9037e94087138b127e41fc 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f HTTP Headers `GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31021 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 14 Jan 2023 15:00:01 GMT expires: Sun, 14 Jan 2024 15:00:01 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 14720 last-modified: Fri, 08 May 2020 07:05:03 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	convertri.imgix.net/20d05f77-93bf-11ea-abef-0697e5ca793e/71513df817cb3814febff1887ec74dfd75b8751d/del-mar-logo.svg	151.101.86.208	200 OK	16 kB
URL HTTP/2 convertri.imgix.net/20d05f77-93bf-11ea-abef-0697e5ca793e/71513df817cb3814febff1887ec74dfd75b8751d/del-mar-logo.svg IP 151.101.86.208:0 ASN #54113 FASTLY File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (13867) Size 16 kB (16125 bytes) Hash 81f6d876a09c4db53105025503930167 14baba81afb6202b4f16745ea53731babe2d241c e76c038d598388844f26627438bf6bcda2acbd32a2fd9eca1537cfd28dbb43d7 HTTP Headers `GET /20d05f77-93bf-11ea-abef-0697e5ca793e/71513df817cb3814febff1887ec74dfd75b8751d/del-mar-logo.svg HTTP/1.1 Host: convertri.imgix.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=2419200 last-modified: Wed, 30 Sep 2020 20:04:10 GMT content-encoding: gzip server: imgix x-imgix-id: 137b0e32d214ba77b9e4cf0815a78e908b7c3ccb x-imgix-render-farm: 01.1096 date: Sat, 14 Jan 2023 19:05:21 GMT age: 1054706 accept-ranges: bytes content-type: image/svg+xml access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-served-by: cache-sjc10041-SJC, cache-bma1662-BMA x-cache: HIT, HIT vary: Accept-Encoding content-length: 16125 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 83579ff88cab4d4d05d4741599104d9c fe74c219f8655a4ca36fe397884e55ab63d1288a a492a770e88739fac8094f7b73f87474cee4ad2ccbf9f1963b935474544ef3f9 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-MKBCJ7B	142.250.74.72	200 OK	90 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MKBCJ7B IP 142.250.74.72:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (35427) Size 90 kB (89927 bytes) Hash eb6eadca7baf8a90f9891591607ff065 823c4dcf03f42a8f2b6c24dcbdca8cd17a0853ca 76655ec582d91cc29c5f220bf79a157f170bac81fb996a4d791fa36032b89231 HTTP Headers `GET /gtm.js?id=GTM-MKBCJ7B HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 14 Jan 2023 19:05:21 GMT expires: Sat, 14 Jan 2023 19:05:21 GMT cache-control: private, max-age=900 last-modified: Sat, 14 Jan 2023 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 89927 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	del-mar-laboratories.imgix.net/ceraliftskin.com/dr-paul-chasan.png?auto=compress,format&dpr=2&fit=scale&w=252&h=336	151.101.86.208	200 OK	15 kB
URL HTTP/2 del-mar-laboratories.imgix.net/ceraliftskin.com/dr-paul-chasan.png?auto=compress,format&dpr=2&fit=scale&w=252&h=336 IP 151.101.86.208:0 ASN #54113 FASTLY File type ISO Media, AVIF Image\012- data Size 15 kB (14972 bytes) Hash 8719e5fea47df6531c4d145d14b102c1 66b471d62dfea3651133623dabcd733c1d657fce 5ebf0552834bcae75644feb2b82b4b5dd2e92aee4abc4e2f23f8aaa2c1993209 HTTP Headers `GET /ceraliftskin.com/dr-paul-chasan.png?auto=compress,format&dpr=2&fit=scale&w=252&h=336 HTTP/1.1 Host: del-mar-laboratories.imgix.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK last-modified: Wed, 04 Jan 2023 13:59:14 GMT cache-control: public, max-age=31536000 server: imgix x-imgix-id: eb358681163db6b3bc7f68115b8faea372aeedfa x-imgix-render-farm: 02.552 date: Sat, 14 Jan 2023 19:05:21 GMT age: 882367 accept-ranges: bytes content-type: image/avif access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-served-by: cache-sjc10073-SJC, cache-bma1635-BMA x-cache: HIT, HIT vary: Accept, User-Agent content-length: 14972 X-Firefox-Spdy: h2

	convertri.imgix.net/20d05f77-93bf-11ea-abef-0697e5ca793e/5115405dfae763430706c7ebc4a284273e5daf76/del-mar-logo-g.svg	151.101.86.208	200 OK	4.5 kB
URL HTTP/2 convertri.imgix.net/20d05f77-93bf-11ea-abef-0697e5ca793e/5115405dfae763430706c7ebc4a284273e5daf76/del-mar-logo-g.svg IP 151.101.86.208:0 ASN #54113 FASTLY File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6642) Size 4.5 kB (4493 bytes) Hash ac90cc94b592b48ad3da46ccae4dc83e d697c29857babe2796833a76b86d4b97ac9f79c1 e3edb58d9c3581a87662b7b6c84ecd23c7df4559077e6abab44daba8c847818b HTTP Headers `GET /20d05f77-93bf-11ea-abef-0697e5ca793e/5115405dfae763430706c7ebc4a284273e5daf76/del-mar-logo-g.svg HTTP/1.1 Host: convertri.imgix.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=2419200 last-modified: Thu, 01 Oct 2020 18:57:34 GMT content-encoding: gzip server: imgix x-imgix-id: a55ee77c335305c9fb003fd82db25f16b3e6117d x-imgix-render-farm: 01.1096 date: Sat, 14 Jan 2023 19:05:21 GMT age: 1418304 accept-ranges: bytes content-type: image/svg+xml access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-served-by: cache-sjc10066-SJC, cache-bma1662-BMA x-cache: HIT, HIT vary: Accept-Encoding content-length: 4493 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash e804586be26c88b95d554afe0ef24d5c 6f99b1fe2330c4661608f17819a4490a92ca296c 38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2	216.58.207.227	200 OK	24 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 13 Jan 2023 13:33:12 GMT expires: Sat, 13 Jan 2024 13:33:12 GMT cache-control: public, max-age=31536000 age: 106329 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2	216.58.207.227	200 OK	23 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data Size 23 kB (23040 bytes) Hash de69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49 HTTP Headers `GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 13 Jan 2023 13:33:12 GMT expires: Sat, 13 Jan 2024 13:33:12 GMT cache-control: public, max-age=31536000 age: 106329 last-modified: Tue, 26 Apr 2022 15:56:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,400;1,700&display=swap	142.250.74.74	200 OK	47 kB
URL HTTP/2 fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,400;1,700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 47 kB (47377 bytes) Hash fa164d64469396690d34b5d30e9e102e 49fdc8f59a1d47f211ea13d7fbfaf20046d22c36 7c26c26e5e1b5c6bc95c98b73e5bdfab84f12fe3df73b52611ce1b248542e91b HTTP Headers `GET /css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,400;1,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 14 Jan 2023 19:05:21 GMT date: Sat, 14 Jan 2023 19:05:21 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	static.klaviyo.com/onsite/js/klaviyo.js?company_id=HsZXk4	151.101.130.133	200 OK	1.0 kB
URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=HsZXk4 IP 151.101.130.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (2904) Size 1.0 kB (1039 bytes) Hash 598627c4c394ddfbbb6689cf9b83609c b65eda41a4bc4d02f237e4cbc9426443259ddaab 4ab0bdf0cfbb2d35827f3990b8d18032c571089764fdf34777927ae67676e8bc HTTP Headers `GET /onsite/js/klaviyo.js?company_id=HsZXk4 HTTP/1.1 Host: static.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-headers: access-control-allow-methods: GET access-control-allow-origin: * access-control-max-age: 86400 allow: OPTIONS, GET cache-control: max-age=1, stale-while-revalidate=10800 content-encoding: gzip content-type: application/javascript etag: W/"2454fe118c0666d9dc487c8b3d976222" server: nginx via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 74364 x-served-by: cache-lga13627-LGA, cache-bma1662-BMA x-cache: HIT, HIT x-cache-hits: 3, 1 x-timer: S1673723122.647311,VS0,VE1 vary: Accept-Encoding content-length: 1039 X-Firefox-Spdy: h2

	static.klaviyo.com/onsite/js/runtime.8f1efb226a72ce88bdcb.js?cb=1	151.101.130.133	200 OK	8.1 kB
URL HTTP/2 static.klaviyo.com/onsite/js/runtime.8f1efb226a72ce88bdcb.js?cb=1 IP 151.101.130.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (19473), with no line terminators Size 8.1 kB (8052 bytes) Hash 632dab379158010dbf78d60ede511d00 c54befa24d16ee23cba5ed6ed04f6ee138507d52 adee8530ea2651ebf9f295d1aa206ae9e8e754f03a9d66c8143705988a8e338a HTTP Headers `GET /onsite/js/runtime.8f1efb226a72ce88bdcb.js?cb=1 HTTP/1.1 Host: static.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: yKixN9ZY9G9CWYJ3X2sqvC/7It3SPyM/lzf+Kro9IoprF9yiFA6A06JVNpqb2DdXrfm9CO3Q60k= x-amz-request-id: BGFPQK5CH2HXTXYB last-modified: Fri, 13 Jan 2023 18:46:32 GMT etag: "61f1cc8e44a18af47389ba3ab025333b" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: EzBlTa0bDo_2h6tOGwL92LC4JhHFkBwD content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 76962 x-served-by: cache-lga21927-LGA, cache-bma1652-BMA x-cache: HIT, HIT x-cache-hits: 2, 33558 vary: Accept-Encoding content-length: 8052 X-Firefox-Spdy: h2

	static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1	151.101.130.133	200 OK	12 kB
URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 IP 151.101.130.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (36946) Size 12 kB (12427 bytes) Hash 85bd273072cb0dd22e5e638154e61527 a4e269d1594e4a29e19290f0f172cb1b1a082df4 58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57 HTTP Headers `GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1 Host: static.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs= x-amz-request-id: A9KBBNMK73VM94KF last-modified: Wed, 11 Jan 2023 17:07:33 GMT etag: "14d5f5d749c7e30f46242493ff3f2893" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 76962 x-served-by: cache-lga21935-LGA, cache-bma1652-BMA x-cache: HIT, HIT x-cache-hits: 2, 21751 vary: Accept-Encoding content-length: 12427 X-Firefox-Spdy: h2

	static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1	151.101.130.133	200 OK	14 kB
URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1 IP 151.101.130.133:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (36146), with no line terminators Size 14 kB (13990 bytes) Hash f32939851a20ce74d80fb5fa39fff073 734b7a9027ea89a333653e3dbccc8cdd4ec23029 dbafbcb2a692b78b0a88737f4f6c26177fc7c257271239338303e5c261a4f59f HTTP Headers `GET /onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1 HTTP/1.1 Host: static.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: rjXa6WzcApvwnCzg9VsgyIOa9Z/+AOdyUep+nz2C9l8Y9WmzTkf/3AyXkbcFBNADbgKH7kTMl9s= x-amz-request-id: FA9HX3FB03RQ4E33 last-modified: Wed, 11 Jan 2023 17:07:32 GMT etag: "41ee777bf771519f538138ed79a3786d" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: 9aF2q4NxY0Kun_gDXNyDk5ygoGoGgvoW content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 76962 x-served-by: cache-lga21943-LGA, cache-bma1652-BMA x-cache: HIT, HIT x-cache-hits: 2, 31270 vary: Accept-Encoding content-length: 13990 X-Firefox-Spdy: h2

	static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1	151.101.130.133	200 OK	11 kB
URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1 IP 151.101.130.133:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (34046), with no line terminators Size 11 kB (11347 bytes) Hash 72a1d355aa7ba9cb49bbb47f3b1c4d86 2bb8017caf315c30a8640767eea70a55fb177812 2e615eaa1f3051bc41b80cbf8d31540dc950bb81b6e21776c713eded85b62d07 HTTP Headers `GET /onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1 HTTP/1.1 Host: static.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: J1INdPGSGErRbbwbN26djFWyVP28wW+vi4F9ZAYjevO46qi9/4DTqO835YKdBMVhQfQwLCkoTE0= x-amz-request-id: A9KDPMY34E0AGW2R last-modified: Wed, 11 Jan 2023 17:07:32 GMT etag: "e4c7cf534c566854ff279e37d723b7a5" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: a72PTap2UVfblk1vFysV_3TpWNRGgQ5A content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 76962 x-served-by: cache-lga21949-LGA, cache-bma1652-BMA x-cache: HIT, HIT x-cache-hits: 2, 21746 vary: Accept-Encoding content-length: 11347 X-Firefox-Spdy: h2

	static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1	151.101.194.133	200 OK	11 kB
URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1 IP 151.101.194.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (27749), with no line terminators Size 11 kB (10696 bytes) Hash 0cfada57d478d97560b453019c523816 4503f32aa052c4ab0be24d9e3d383ce0ca568b0b 9a6fb085ebc0985e24aad977f126412a763fb7920f819e592e9baa1ff6362708 HTTP Headers `GET /onsite/js/fender_analytics.42a910303762129b987c.js?cb=1 HTTP/1.1 Host: static-tracking.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: TVj4JadKocCV4h3NElq7oufjh6VUPmKs/RmMK3GsmHVEIEljMrEcW06e1Di1LhQKmT1Dja0y3h4= x-amz-request-id: GVJMDN3QM916A9S6 last-modified: Tue, 25 Oct 2022 15:47:53 GMT etag: "141ae207735ed4c2a3fb9ba628dca228" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: 3uoP2mttpPOUARdp4efml6Pc5m5_bVca content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 76962 x-served-by: cache-lga21944-LGA, cache-bma1651-BMA x-cache: HIT, HIT x-cache-hits: 1, 29550 vary: Accept-Encoding content-length: 10696 X-Firefox-Spdy: h2

	static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1	151.101.194.133	200 OK	5.3 kB
URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1 IP 151.101.194.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (12659), with no line terminators Size 5.3 kB (5321 bytes) Hash 11ebf21f15c50424dd6beb159a12b25e bdd433be7297384f5660dfe49154d266dda64432 c13b107bff92bbb4ed98886fa87d14faba7f3010b9f9d502eaf133e2321c51cb HTTP Headers `GET /onsite/js/static.afc80bee31dc9e622dc1.js?cb=1 HTTP/1.1 Host: static-tracking.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: ZFZ8THkCuT87hlNdYT/1gE0cGMwUOTZwHkpxdf7ULnVqWD+3NU8uwHPgGM4vlbagxFgSA7mLY3o= x-amz-request-id: 8QKB1CHS4E49FXPS last-modified: Mon, 05 Dec 2022 14:41:22 GMT etag: "9aa89eda5d828bf8fce2ee83e11483a0" cache-control: max-age=2592000,stale-while-revalidate=10800 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: fender-asset x-amz-version-id: jO5CINofch2U3rpuRhEwzIKTUk198WIK content-type: application/javascript server: AmazonS3 content-encoding: gzip via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 74396 x-served-by: cache-lga21925-LGA, cache-bma1651-BMA x-cache: MISS, HIT x-cache-hits: 0, 30149 vary: Accept-Encoding content-length: 5321 X-Firefox-Spdy: h2

	static-forms.klaviyo.com/forms/api/v6/HsZXk4/full-forms	151.101.66.133	200 OK	2.6 kB
URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/HsZXk4/full-forms IP 151.101.66.133:0 ASN #54113 FASTLY File type ASCII text, with very long lines (14967), with no line terminators Size 2.6 kB (2611 bytes) Hash 3af9d35d68655beb77e00744c62c6267 21bc37ac2402e2d2305293ed1237e110a8c6da00 b806c190af94c55b3f6ae6552e00c8c2b85dffc448659a7636995214d56b2228 HTTP Headers `GET /forms/api/v6/HsZXk4/full-forms HTTP/1.1 Host: static-forms.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: IiIl/fU+teSjw/qR35g73XK8jnKUf9XpGRsDQcPqp1iweDwf5td+z99DX5kHUi4Zk+idgHP2S7E= x-amz-request-id: DB61XRG24QZ77W7P last-modified: Tue, 10 Jan 2023 10:17:05 GMT etag: "6efaba02b902fed2eb9aeb86e612baab" cache-control: max-age=5 x-amz-meta-surrogate-control: max-age=31536000 x-amz-meta-surrogate-key: full-forms/shared full-forms/HsZXk4 custom-fonts/HsZXk4 x-amz-version-id: W4U_cftFfoJpIwQGcu.P7ZEE8GT8.IFg content-type: application/json server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT via: 1.1 varnish age: 302511 x-served-by: cache-bma1663-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1673723122.864734,VS0,VE1 vary: Accept-Encoding client-geo-continent: EU client-geo-country: NO access-control-expose-headers: client-geo-continent, client-geo-country access-control-allow-origin: * content-length: 2611 X-Firefox-Spdy: h2

	fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=HsZXk4	151.101.2.133	200 OK	311 B
URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=HsZXk4 IP 151.101.2.133:0 ASN #54113 FASTLY File type JSON data\012- , ASCII text, with very long lines (1363), with no line terminators Size 311 B (311 bytes) Hash 610bf474d1aeb8d0fa4b0340ac824f6a 585fd49065e06e88af9c4cf60698b67f93b8859c cddd81e58cf130b27345d3a8f24338b6a6b63315e894fcb4a4ceb1d514b07908 HTTP Headers `GET /custom-fonts/api/v1/company-fonts/onsite?company_id=HsZXk4 HTTP/1.1 Host: fast.a.klaviyo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-headers: access-control-allow-methods: GET access-control-allow-origin: * access-control-max-age: 86400 allow: GET, HEAD, OPTIONS cache-control: max-age=10 content-encoding: gzip content-type: application/json; charset=utf-8 server: nginx via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 389392 x-served-by: cache-bos4653-BOS, cache-bma1639-BMA x-cache: HIT, HIT x-cache-hits: 215, 1 vary: Accept-Encoding, Cookie strict-transport-security: max-age=900 content-length: 311 X-Firefox-Spdy: h2

	amplify.outbrain.com/cp/obtp.js	2.18.173.74	200 OK	5.5 kB
URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js IP 2.18.173.74:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (17064), with no line terminators Size 5.5 kB (5512 bytes) Hash a846d48b346dbb36790da05d37c5c664 8459c596050371032448288b832e153e5a6f3adc ce818f7c86f8500603081fc67ab8e47bf4f2d7b4512ff2950ee14a53bee09a02 HTTP Headers `GET /cp/obtp.js HTTP/1.1 Host: amplify.outbrain.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: application/x-javascript ETag: "2b39cf4b5b36810a615ee712f89afb45:1673520765.626306" Last-Modified: Thu, 12 Jan 2023 07:20:52 GMT Server: AkamaiNetStorage Vary: Accept-Encoding Content-Encoding: gzip Cache-Control: max-age=1200 Expires: Sat, 14 Jan 2023 19:25:21 GMT Date: Sat, 14 Jan 2023 19:05:21 GMT Content-Length: 5512 Connection: keep-alive`

	quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/player-dash-mse.min.js?hash=ihhzzrtf	151.139.128.10	200 OK	613 kB
URL HTTP/2 quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/player-dash-mse.min.js?hash=ihhzzrtf IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type Unicode text, UTF-8 text, with very long lines (65399) Size 613 kB (612845 bytes) Hash 2fc4a9b4f1e753927820ad70cc729770 879ab4375c1f61766fd7bfd23f056dd04e7694a3 fc85e080c7454d7f87c8cf0845e177f8d6c833fe6decabceb755e8958271af45 HTTP Headers `GET /embeds/dmpsCGvb/mopfwuYpTO7rps1y/player-dash-mse.min.js?hash=ihhzzrtf HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-guploader-uploadid: ADPycdu2-ExMUl3wn8SZ4FmzYvBCl_DUNwdcCVK8IRFm9w47vgNaDC5GzEUWgpubuFFhxCh---SEA4ZvAepr7AX-WJ3deUS6UjI6 cache-control: public, max-age=300, s-maxage=2592000 expires: Sat, 11 Feb 2023 09:20:49 GMT last-modified: Thu, 12 Jan 2023 07:38:59 GMT etag: "c8a00bf3a8d6e4aef9551902bb6a2f78" x-goog-generation: 1673509139471796 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 509587 content-type: application/javascript x-goog-hash: crc32c=lKlFwg==, md5=yKAL86jW5K75VRkCu2oveA== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 207872 x-served-by: cache-iad-kcgs7200044-IAD, cache-bma1636-BMA x-cache: HIT, HIT x-cache-hits: 25, 1 x-timer: S1673723122.814327,VS0,VE4 vary: Accept-Encoding access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by x-cdn: 4 alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-encoding: gzip x-hw: 1673723121.cds251.sk1.hn,1673723121.cds251.sk1.sl X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 16fdc7481eb2bf489762b6b6ad440216 8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646 465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 16fdc7481eb2bf489762b6b6ad440216 8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646 465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9" Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20690 Expires: Sun, 15 Jan 2023 00:50:12 GMT Date: Sat, 14 Jan 2023 19:05:22 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7447 bytes) Hash 2363dbe7bb6a459853d8d19cab50e70b ded76de1dd453e40dbf6eaa8607cf19fac7f71a4 f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7447 x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0qSFjAIAMF7HQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:49:01 GMT age: 76581 etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8181 bytes) Hash d24ea1f095f492934a1f1c63f5d8590c dade37148c9b9a941f93a8535d8ddc5de3952623 2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8181 x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0paH-OIAMFg5A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:36:45 GMT age: 77317 etag: "dade37148c9b9a941f93a8535d8ddc5de3952623" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.5 kB (9539 bytes) Hash a23d61d610c7b55d943fcb2636a01b65 82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065 28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9539 x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: epfDqEAZIAMFudQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0 x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Sat, 14 Jan 2023 05:58:29 GMT etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065" content-type: image/jpeg age: 47213 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9135 bytes) Hash 64ba27a2f0a3bc61bd325f1fb317b755 c65c58476b66cbb6269ba1d8412d270a0a003ae3 5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9135 x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: enAnoG6roAMFzgA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0 x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Sat, 14 Jan 2023 01:41:40 GMT age: 62622 etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9154 bytes) Hash b1378f107c1996ade14a8fe7fd728072 f52d98d9a0d1d343a539689ea14acf99e148cf8c 4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9154 x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: enAkCEN2IAMFuMQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0 x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Sat, 14 Jan 2023 04:21:52 GMT age: 53010 etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8681 bytes) Hash 5b6f9fd45fe3dfe1bc0ee610925c385d 4ab08950008a4ab0a52091bb6f186c12814276e9 3dab6a58e53155e44117fbd9d40c4f38a7586efe1e69db1a064d2bbc5bbf185a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8681 x-amzn-requestid: 1060e7e7-3864-4ce5-b0aa-cfe24bb1a21a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0qdGvqoAMF57g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce42-3cf8e4535d417e6f5142f23d;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:54 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: fn6fJcMooAv0V8MKuIM5EMGIEBijeoPBv5VWPtEz0j7LbfLoWw_soA== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:49:01 GMT age: 76581 etag: "4ab08950008a4ab0a52091bb6f186c12814276e9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	tr.outbrain.com/cachedClickId?marketerId=undefined	70.42.32.95	200 OK	35 B
URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined IP 70.42.32.95:0 ASN #22075 AS-OUTBRAIN File type ASCII text, with no line terminators Size 35 B (35 bytes) Hash 75c843c7b717e7b722777907475c67a3 983d1c9a05b315288039b9d4694ce3b402259240 1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580 HTTP Headers `GET /cachedClickId?marketerId=undefined HTTP/1.1 Host: tr.outbrain.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Sat, 14 Jan 2023 19:05:22 GMT Content-Type: application/javascript Content-Length: 35 X-TraceId: 7f76edd929e0ec3adcf99c2b2ee31d83`

	tr.outbrain.com/unifiedPixel?marketerId=00347747156805988407e0a1e06ee5b9db&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&optOut=false&bust=01527720931599772&referrer=	70.42.32.95	200 OK	53 B
URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00347747156805988407e0a1e06ee5b9db&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&optOut=false&bust=01527720931599772&referrer= IP 70.42.32.95:0 ASN #22075 AS-OUTBRAIN File type GIF image data, version 89a, 1 x 1\012- data Size 53 B (53 bytes) Hash 414bd2a5161db03fdd910327b42c6daa 65d4cf50496813c5f1a34eddd5c50dc67d44ff47 b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553 HTTP Headers GET /unifiedPixel?marketerId=00347747156805988407e0a1e06ee5b9db&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&optOut=false&bust=01527720931599772&referrer= HTTP/1.1 Host: tr.outbrain.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Date: Sat, 14 Jan 2023 19:05:22 GMT Content-Type: image/gif; Content-Length: 53 Cache-Control: no-cache X-TraceId: 02ccf26217393fb2d2d1d0b822debde5`

	ocsp.sca1b.amazontrust.com/	143.204.42.88	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.88:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 09206805a2dd21c556881abc1bc4b11d 4afe363deb84ff352f3caa069168a6d72a040ace 3fd31687b87568aa3d1b1c88d4f3e5a9b579521bbf9d96e178afaca5b4e1d02c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Sat, 14 Jan 2023 19:05:22 GMT Etag: "63c2c0e9-1d7" Server: ECS (dcb/7F81) X-Cache: Miss from cloudfront Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: N_i4IghPY6ANyebvzDKKAfI8Bo3_0RocHmWi8MH_4WyP3okZcS8YIw==`

	asset.delmarlaboratories.com/favicon-32x32.png	54.230.111.5	200 OK	487 B
URL HTTP/2 asset.delmarlaboratories.com/favicon-32x32.png IP 54.230.111.5:0 ASN #16509 AMAZON-02 File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Size 487 B (487 bytes) Hash edc43bc1a7e600f1148546ab7c55db92 a4a903a95209492f927c6b25d883ab2c5074531c 45265840404b0592d06f88c91a47a8c0b1a59948ba5a0aea3252f051795974e4 HTTP Headers `GET /favicon-32x32.png HTTP/1.1 Host: asset.delmarlaboratories.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Cookie: _gcl_au=1.1.1848442184.1673723122 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK content-type: image/png content-length: 487 date: Sat, 31 Dec 2022 07:32:09 GMT last-modified: Sun, 06 Sep 2020 18:41:34 GMT etag: "edc43bc1a7e600f1148546ab7c55db92" cache-control: max-age=1296000 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: AhnQPLCXX24OYaqdT48A-VFRrUzxaREtipJbg457plr_ZlbRFbvG0Q== age: 1251193 X-Firefox-Spdy: h2`

	ocsp.godaddy.com/	192.124.249.22	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.22:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1778 bytes) Hash cd19b107d1e8c67c8d19b202f8e2acc6 839f6fd4fdf1a42cecd980bea23247ac6845f11c a19c2815391a70361f4b9059a02dacbe6c48fcbde388ee55f61042626f4d8800 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 76 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 14 Jan 2023 19:05:22 GMT Content-Type: application/ocsp-response Content-Length: 1778 Connection: keep-alive X-Sucuri-ID: 19022 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 14 Jan 2023 01:40:17 GMT Expires: Sun, 15 Jan 2023 01:40:17 GMT ETag: "839f6fd4fdf1a42cecd980bea23247ac6845f11c" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	analytics-ingress-global.bitmovin.com/licensing	35.190.27.197	200 OK	117 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing IP 35.190.27.197:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 117 B (117 bytes) Hash f90d2c53623621471228392bf3047e2a b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e 5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700 HTTP Headers `POST /licensing HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 121 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: v1.55.1 date: Sat, 14 Jan 2023 19:05:21 GMT content-type: application/json content-length: 117 access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1262 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:22 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	104.18.32.68	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 3e9e04f8b2ac39da2d5224c26288b878 370ca127b1ca61eeac2c3a1e62149ef03948939a 20428d7cf66c4688084fdc09d4feb8545a4d7554a5a64c005d1316f1e942c889 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 14 Jan 2023 19:05:22 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Wed, 11 Jan 2023 12:06:19 GMT Expires: Wed, 18 Jan 2023 12:06:18 GMT Etag: "370ca127b1ca61eeac2c3a1e62149ef03948939a" Cache-Control: max-age=319855,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7898a48c8ef01c0e-OSL`

	licensing.bitmovin.com/licensing	35.227.229.24	200 OK	165 B
URL HTTP/2 licensing.bitmovin.com/licensing IP 35.227.229.24:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 165 B (165 bytes) Hash bad32d07dc1ad9e3d334785067afbf34 653f8f612c6646daae0122b3b27e2c11486f86a4 41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638 HTTP Headers `POST /licensing HTTP/1.1 Host: licensing.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 165 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * content-type: application/json date: Sat, 14 Jan 2023 19:05:22 GMT content-length: 165 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.godaddy.com/	192.124.249.22	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.22:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1778 bytes) Hash cd19b107d1e8c67c8d19b202f8e2acc6 839f6fd4fdf1a42cecd980bea23247ac6845f11c a19c2815391a70361f4b9059a02dacbe6c48fcbde388ee55f61042626f4d8800 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 76 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 14 Jan 2023 19:05:22 GMT Content-Type: application/ocsp-response Content-Length: 1778 Connection: keep-alive X-Sucuri-ID: 19022 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 14 Jan 2023 01:40:17 GMT Expires: Sun, 15 Jan 2023 01:40:17 GMT ETag: "839f6fd4fdf1a42cecd980bea23247ac6845f11c" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	stats.vidalytics.com/awesome-log?cid=dmpsCGvb	107.178.211.97	200 OK	43 B
URL HTTP/2 stats.vidalytics.com/awesome-log?cid=dmpsCGvb IP 107.178.211.97:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22 HTTP Headers `GET /awesome-log?cid=dmpsCGvb HTTP/1.1 Host: stats.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With access-control-allow-methods: GET, POST, PUT, OPTIONS access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag cache-control: no-cache, public, max-age=2592000 content-length: 43 content-type: image/gif etag: "dmpsCGvb/9Qd1KQNh0YivE7tS" date: Sat, 14 Jan 2023 19:05:22 GMT x-envoy-upstream-service-time: 14 server: istio-envoy access-control-allow-origin: * X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 69c011429c0b1f8a0c091474b207c240 fe2c5e1854a65d8a2b669fc54aa0c827f07e428b 409f967eeebf5472cb0d2a917b9285e52b21950f672c6c37a19285d3375edc7f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f96f3b88eebd362c0208a60d27e28068 f244f8dfbc2677fbddcf0024ff7cf343e24205bb 9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=0&ipr=y	142.250.74.132	200 OK	42 B
URL HTTP/2 www.google.com/pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=0&ipr=y IP 142.250.74.132:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=0&ipr=y HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Sat, 14 Jan 2023 19:05:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google.no/pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=1&ipr=y	142.250.74.163	200 OK	42 B
URL HTTP/2 www.google.no/pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=1&ipr=y IP 142.250.74.163:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/684849977/?random=1673723121659&cv=11&fst=1673722800000&bg=ffffff&guid=ON&async=1&gtm=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetceralift.delmarlaboratories.com%2F&tiba=Get%20CeraLift&fmt=3&is_vtc=1&random=4143611094&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Sat, 14 Jan 2023 19:05:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-154677996-1&cid=1625274619.1673723123&jid=692593176&gjid=1563948036&_gid=1959334144.1673723123&_u=YGBACEAARAAAACAAI~&z=798257503	173.194.222.154	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-154677996-1&cid=1625274619.1673723123&jid=692593176&gjid=1563948036&_gid=1959334144.1673723123&_u=YGBACEAARAAAACAAI~&z=798257503 IP 173.194.222.154:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-154677996-1&cid=1625274619.1673723123&jid=692593176&gjid=1563948036&_gid=1959334144.1673723123&_u=YGBACEAARAAAACAAI~&z=798257503 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://getceralift.delmarlaboratories.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Sat, 14 Jan 2023 19:05:23 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 815f1a1e0adac55b38019d2af17b9bbe 6e04467e75f83b4a692cf6716b5b564274a487c7 6d8326d418f56d57221790353c7b220088d63c133901e0b500accb5e420811db HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:23 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f96f3b88eebd362c0208a60d27e28068 f244f8dfbc2677fbddcf0024ff7cf343e24205bb 9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 19:05:23 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/stream.mpd	151.139.128.10	200 OK	4.7 kB
URL HTTP/2 quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/stream.mpd IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type XML 1.0 document text\012- XML document, ASCII text Size 4.7 kB (4698 bytes) Hash dccbb14f68233a84bfb9d81c3188d34d a78c99730705b74efdc5de63e7b73178dae3723b ea5a40185096e423e93610051d7f3f464e4f14275971bc21af00433bc9f411db HTTP Headers `GET /video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/stream.mpd HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 14 Jan 2023 19:05:23 GMT accept-ranges: bytes content-length: 4698 content-type: application/dash+xml x-hw: 1673723122.cds251.sk1.hn,1673723122.cds231.sk1.s,1673723122.dop027.la3.r,1673723123.cds274.la3.c,1673723123.cds231.sk1.p x-cdn: 4 x-guploader-uploadid: ADPycdsC1cWgIaiI4jktjSSmaoyz5MK8Lln2F-4xUthxYvx4-naBYOJl0ggX760Ya05Oz-AzO-ksoRvGG6bJaLQqi1H8yQ cache-control: public, max-age=31104000 etag: "dccbb14f68233a84bfb9d81c3188d34d" x-goog-generation: 1644247395895108 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 4698 x-goog-hash: crc32c=Kp9+xA==, md5=3MuxT2gjOoS/udgcMYjTTQ== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" last-modified: Mon, 07 Feb 2022 15:23:15 GMT x-sp-metadata: HS256.CIOWjJ4GEocBCiRkYjJkOWUxOS01NmI1LTRmZjQtYTA5YS00NWRhNDdlNmNkNzQQyL6juOTB/AIaBgjy+YueBiIMOTEuOTAuNDIuMTU0KL7+AjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GikSJDdiZjRiMTgyLWMwZDQtNDFkNC04MmRjLTYxZGFkZTE1YjM2YRjaJCIaCAISFGNkczIzMS5zazEuaHdjZG4ubmV0GAMiGAgFEhRjZHMyNzQubGEzLmh3Y2RuLm5ldA==.COInXYkextDpYkyaVxKcp2ltMV15kpJZP+w3Iga6GIo= X-Firefox-Spdy: h2

	stats.vidalytics.com/scribe	107.178.211.97	200 OK	16 B
URL HTTP/2 stats.vidalytics.com/scribe IP 107.178.211.97:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 16 B (16 bytes) Hash a1cbd35d4488ac8cc6f959d4c633dc37 11844023759429ec785ae1c18e6a9c69803ee2bd 707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c HTTP Headers `POST /scribe HTTP/1.1 Host: stats.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 627 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK access-control-allow-methods: POST,OPTIONS content-type: application/json date: Sat, 14 Jan 2023 19:05:23 GMT content-length: 16 x-envoy-upstream-service-time: 1 server: istio-envoy access-control-allow-origin: * X-Firefox-Spdy: h2`

	stats.vidalytics.com/scribe	107.178.211.97	200 OK	16 B
URL HTTP/2 stats.vidalytics.com/scribe IP 107.178.211.97:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 16 B (16 bytes) Hash a1cbd35d4488ac8cc6f959d4c633dc37 11844023759429ec785ae1c18e6a9c69803ee2bd 707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c HTTP Headers `POST /scribe HTTP/1.1 Host: stats.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 735 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK access-control-allow-methods: POST,OPTIONS content-type: application/json date: Sat, 14 Jan 2023 19:05:23 GMT content-length: 16 x-envoy-upstream-service-time: 2 server: istio-envoy access-control-allow-origin: * X-Firefox-Spdy: h2`

	stats.vidalytics.com/scribe	107.178.211.97	200 OK	16 B
URL HTTP/2 stats.vidalytics.com/scribe IP 107.178.211.97:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 16 B (16 bytes) Hash a1cbd35d4488ac8cc6f959d4c633dc37 11844023759429ec785ae1c18e6a9c69803ee2bd 707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c HTTP Headers `POST /scribe HTTP/1.1 Host: stats.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 262 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK access-control-allow-methods: POST,OPTIONS content-type: application/json date: Sat, 14 Jan 2023 19:05:23 GMT content-length: 16 x-envoy-upstream-service-time: 1 server: istio-envoy access-control-allow-origin: * X-Firefox-Spdy: h2`

	quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/init.mp4	151.139.128.10	200 OK	459 B
URL HTTP/2 quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/init.mp4 IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type WebM\012- EBML file, creator webmB\20\012- data Size 459 B (459 bytes) Hash 89c5fc00c664a4216e720adae04a51f7 0c37f3f8ecbacd74849b105c18e84c30436b2052 1a6c5c5fe512b16e8be57ffff8e54fe5f332b97518b84f8dda115e7007d6091f HTTP Headers GET /video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/init.mp4 HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 14 Jan 2023 19:05:24 GMT accept-ranges: bytes content-length: 459 content-type: video/mp4 x-hw: 1673723123.cds251.sk1.hn,1673723123.cds016.sk1.s,1673723123.dop029.la3.r,1673723124.cds272.la3.c,1673723124.cds016.sk1.p x-cdn: 4 x-guploader-uploadid: ADPycds6z4R5Urd1uUwKrSBxPj8nxCIYRlFCrVIxOBPohskwF2SnQOrI6SH3iT4y2465gms3xXB3Ur-SX5MicrP2eJL6Hw cache-control: public, max-age=31104000 etag: "89c5fc00c664a4216e720adae04a51f7" x-goog-generation: 1644247157951262 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 459 x-goog-hash: crc32c=yhZO5w==, md5=icX8AMZkpCFucgra4EpR9w== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" last-modified: Mon, 07 Feb 2022 15:19:18 GMT x-sp-metadata: HS256.CISWjJ4GEocBCiQ1NTYyODEyZS00OTFmLTQ4MGItYjY0Ny03YjQ0NWY4NjFjYTMQyL6juOTB/AIaBgjz+YueBiIMOTEuOTAuNDIuMTU0KL7+AjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GikSJDBiNDFhZDc2LTcxYjQtNDBjYy04OGY5LTA1NDlkZjVkMmI0ORjLAyIaCAISFGNkczAxNi5zazEuaHdjZG4ubmV0GAMiGAgFEhRjZHMyNzIubGEzLmh3Y2RuLm5ldA==.t/PVhvRs2jMWXcXlJ986ZWu408dCAOk0ihWRkR0iDAo= X-Firefox-Spdy: h2

	quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/s_0.webm	151.139.128.10	200 OK	39 kB
URL HTTP/2 quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/s_0.webm IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type data Size 39 kB (39175 bytes) Hash cc2139fa238eaf6c35e991c2815de3b4 6ac4d45996c214717f046252e1c3cb01db179483 93c541619772bf73f16c058224f2ef6a6660ece5ead964323ea95535baf291fa HTTP Headers GET /video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/480x480_vp9_78750/s_0.webm HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 14 Jan 2023 19:05:25 GMT accept-ranges: bytes content-length: 39175 content-type: video/mp4 x-hw: 1673723124.cds251.sk1.hn,1673723124.cds230.sk1.s,1673723124.dop220.la3.r,1673723125.cds227.la3.c,1673723125.cds230.sk1.p x-cdn: 4 x-guploader-uploadid: ADPycdtrCqLmQyRtjEOeV7AqDyidTcIgjfYbkGoFVxVvXXCfBRVdK7A8vXcsE5lcouNKNpeS-xrr8E_Wt5M6-sWn1oKrSQ cache-control: public, max-age=31104000 etag: "cc2139fa238eaf6c35e991c2815de3b4" x-goog-generation: 1644247158111906 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 39175 x-goog-hash: crc32c=wfFKHw==, md5=zCE5+iOOr2w16ZHCgV3jtA== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" last-modified: Mon, 07 Feb 2022 15:19:18 GMT x-sp-metadata: HS256.CIWWjJ4GEocBCiRiMTkyMzkyYS1hOGVhLTQyMzQtOWRhNi1kYzY4ZTM1MDQ0MzgQyL6juOTB/AIaBgj0+YueBiIMOTEuOTAuNDIuMTU0KL7+AjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GioSJDg2NGUwZTIwLWUzNDAtNDA3Ni04YWFmLWFlYjA3ZWI0YTNhYRiHsgIiGggCEhRjZHMyMzAuc2sxLmh3Y2RuLm5ldBgDIhgIBRIUY2RzMjI3LmxhMy5od2Nkbi5uZXQ=.Aawu5vIyOv6ox8fPv7BHvKUTBS49M7F3foPXebnrxxM= X-Firefox-Spdy: h2

	licensing.bitmovin.com/impression	35.227.229.24	204 No Content	0 B
URL HTTP/2 licensing.bitmovin.com/impression IP 35.227.229.24:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /impression HTTP/1.1 Host: licensing.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 130 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * content-type: application/json date: Sat, 14 Jan 2023 19:05:25 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1881 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:25 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1838 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:25 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1830 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:25 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/init.mp4	151.139.128.10	200 OK	459 B
URL HTTP/2 quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/init.mp4 IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type WebM\012- EBML file, creator webmB\20\012- data Size 459 B (459 bytes) Hash b9018e8eaad0134a8f805ade9afd6717 2ef784c7ce8d1b21ce2e8cdbdc4383bb0b89a792 5da684b4cc3d08e64bc6f8935bcf14f0c2b74a0e95509ac57728d3b96571e9e2 HTTP Headers GET /video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/init.mp4 HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 14 Jan 2023 19:05:26 GMT accept-ranges: bytes content-length: 459 content-type: video/mp4 x-hw: 1673723125.cds251.sk1.hn,1673723125.cds022.sk1.s,1673723125.dop027.la3.r,1673723126.cds279.la3.c,1673723126.cds022.sk1.p x-cdn: 4 x-guploader-uploadid: ADPycds13gVTpKg1sio9-uz3HQaKIAvLLwLbPyBYUtrUsfW5kRO_w1eG6Tw7UhPs9fLGqi0a7rY1TJHkZIEuYpblBSy_Zw cache-control: public, max-age=31104000 etag: "b9018e8eaad0134a8f805ade9afd6717" x-goog-generation: 1644247169271957 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 459 x-goog-hash: crc32c=LuCmSw==, md5=uQGOjqrQE0qPgFremv1nFw== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" last-modified: Mon, 07 Feb 2022 15:19:29 GMT x-sp-metadata: HS256.CIaWjJ4GEocBCiQzOTUwZDM4Yy1hZWNkLTQzYTgtYTFjNi1mMTE2OWI1YmVjODYQyL6juOTB/AIaBgj1+YueBiIMOTEuOTAuNDIuMTU0KL7+AjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GikSJDc2MTc0MGMwLTFhZmEtNDU3OS05NGQwLTViNGEwMzYwY2I1NxjLAyIaCAISFGNkczAyMi5zazEuaHdjZG4ubmV0GAMiGAgFEhRjZHMyNzkubGEzLmh3Y2RuLm5ldA==.tmEpwNuNzwKZBKKMjCmTqXTkpCGgLqXapZB6T0daoh8= X-Firefox-Spdy: h2

	quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/s_1.webm	151.139.128.10	200 OK	489 kB
URL HTTP/2 quick.vidalytics.com/video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/s_1.webm IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type data Size 489 kB (488618 bytes) Hash 6508015ab282016e208698fb0e5bffcc f41e210afa6951d1962b31dc464b410ac78a479b 1b86c1aa942fd03591e5d327cbbf2ca167d321b79804b5fec93d98d24689e6c6 HTTP Headers GET /video/dmpsCGvb/HvDVXT9QvX8kytJv/56996/48265/webm/video/1080x1080_vp9_1000000/s_1.webm HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 14 Jan 2023 19:05:27 GMT accept-ranges: bytes content-length: 488618 content-type: video/mp4 x-hw: 1673723126.cds251.sk1.hn,1673723126.cds251.sk1.s,1673723126.dop235.la3.r,1673723127.cds225.la3.c,1673723127.cds251.sk1.p x-cdn: 4 x-guploader-uploadid: ADPycdu7HT3btSFvCSgGNCHuJ_WYY07sTJNFKceU5yt4x0lmkdO401-em7PGfz2k26cY_irXtolZnUpYc2slEphMI7YJbEKBqgIK cache-control: public, max-age=31104000 etag: "6508015ab282016e208698fb0e5bffcc" x-goog-generation: 1644247183390576 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 488618 x-goog-hash: crc32c=iiCQfA==, md5=ZQgBWrKCAW4ghpj7Dlv/zA== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type server: UploadServer alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" last-modified: Mon, 07 Feb 2022 15:19:43 GMT x-sp-metadata: HS256.CIeWjJ4GEocBCiQyYjA2ODQwZS1iNTY2LTRkYTMtOGM0MC01OTgyNDdkOGEzMTcQyL6juOTB/AIaBgj2+YueBiIMOTEuOTAuNDIuMTU0KL7+AjADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GioSJDFlYjEwMzhkLTJiMzEtNDAyNC1iN2ZkLTZmOTNlZjAxZjg0ZRiq6R0iGggCEhRjZHMyNTEuc2sxLmh3Y2RuLm5ldBgDIhgIBRIUY2RzMjI1LmxhMy5od2Nkbi5uZXQ=.SXCFLqaQg44L47QRQlFTPwrXjhO8r7HNKef6VrMkemo= X-Firefox-Spdy: h2

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1885 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:28 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	analytics-ingress-global.bitmovin.com/analytics	35.190.27.197	204 No Content	0 B
URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics IP 35.190.27.197:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /analytics HTTP/1.1 Host: analytics-ingress-global.bitmovin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1845 Origin: https://getceralift.delmarlaboratories.com Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 204 No Content server: v1.55.1 date: Sat, 14 Jan 2023 19:05:28 GMT content-type: application/json access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS access-control-allow-origin: * access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	getceralift.delmarlaboratories.com/?r=b75e14e877eb4c43a68eda86ec4d7c4c&a=193666&o=95&s1=mw39sg_op_Email&s2=&s3=107.178.231.248&s4=&vclick_id=acc9d7e387ed4b19af1555551444352d	3.101.115.243	302 Found	0 B
URL HTTP/1.1 getceralift.delmarlaboratories.com/?r=b75e14e877eb4c43a68eda86ec4d7c4c&a=193666&o=95&s1=mw39sg_op_Email&s2=&s3=107.178.231.248&s4=&vclick_id=acc9d7e387ed4b19af1555551444352d IP 3.101.115.243:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /?r=b75e14e877eb4c43a68eda86ec4d7c4c&a=193666&o=95&s1=mw39sg_op_Email&s2=&s3=107.178.231.248&s4=&vclick_id=acc9d7e387ed4b19af1555551444352d HTTP/1.1 Host: getceralift.delmarlaboratories.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 302 Found X-DNS-Prefetch-Control: off X-Frame-Options: DENY Strict-Transport-Security: max-age=15552000; includeSubDomains X-Download-Options: noopen X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Powered-By: PHP 8.1 Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept Location: https://getceralift.delmarlaboratories.com/ Vary: Accept, Accept-Encoding Content-Type: text/html; charset=utf-8 Content-Length: 130 Set-Cookie: esid=s%3AaOHCESt1eFmLDBXejgz6RYSogldhs5Dm.j4GgVqannR%2FhRh3ytGSX4lHPspjMFFkRysmjzGBBaGc; Path=/; HttpOnly Date: Sat, 14 Jan 2023 19:05:19 GMT Connection: keep-alive Keep-Alive: timeout=5

	fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&display=swap	142.250.74.74	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css2?family=PT+Sans:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 14 Jan 2023 19:05:21 GMT date: Sat, 14 Jan 2023 19:05:21 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/loader.min.js	151.139.128.10	200 OK	0 B
URL HTTP/2 quick.vidalytics.com/embeds/dmpsCGvb/mopfwuYpTO7rps1y/loader.min.js IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /embeds/dmpsCGvb/mopfwuYpTO7rps1y/loader.min.js HTTP/1.1 Host: quick.vidalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://getceralift.delmarlaboratories.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-guploader-uploadid: ADPycdvOZmmyBsGgPvAqChoTJGzixHEEy6_ctSKwBzmLB1r6SxGHcOmjLcKWwRTugGhpDclKZgjYEXdL20BTmJfwWSVoPJoyYhJs expires: Sat, 14 Jan 2023 19:05:21 GMT last-modified: Thu, 12 Jan 2023 07:38:59 GMT etag: "1b2c639e538c4e1c2be49b29b4319b14" x-goog-generation: 1673509139073375 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 10528 content-type: application/javascript x-goog-hash: crc32c=UGN7XA==, md5=GyxjnlOMThwr5JsptDGbFA== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 14 Jan 2023 19:05:21 GMT age: 0 x-served-by: cache-iad-kcgs7200177-IAD, cache-bma1640-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1673723122.538337,VS0,VE135 vary: Accept-Encoding access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by x-cdn: 4 cache-control: public, max-age=180, s-maxage=180 x-cdn-info: loader alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-encoding: gzip x-hw: 1673723121.cds206.sk1.hn,1673723121.cds206.sk1.sl X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML