www.rotdig.com/t4nu
302 Found 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t4nu HTTP/1.1
Host: www.rotdig.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Date: Wed, 07 Dec 2022 14:35:30 GMT
Engine: clickmeter.redirect, version 2.0
Expires: -1
Location: https://info.insidetracker.com/shift
X-Rate-Limit-Limit: 20s
X-Rate-Limit-Remaining: 299
X-Rate-Limit-Reset: 2022-12-07T14:35:51.1561010Z
Content-Length: 0
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6909
Expires: Wed, 07 Dec 2022 16:30:40 GMT
Date: Wed, 07 Dec 2022 14:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fdb82e106b7e72c869263f3dae962bb
691d54b8bb6a1d11890e796fb18897a341d9df28
840b505bedb18961f3f39230d0c8963ad78a151946fe1817929064eea582edf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "840B505BEDB18961F3F39230D0C8963AD78A151946FE1817929064EEA582EDF8"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13352
Expires: Wed, 07 Dec 2022 18:18:03 GMT
Date: Wed, 07 Dec 2022 14:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8095
Expires: Wed, 07 Dec 2022 16:50:26 GMT
Date: Wed, 07 Dec 2022 14:35:31 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 44 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d0b5ab9acf36ed027f5829f3956ef95f
cd704a15ec1526578a5f1a83ed3e969517aef38a
e84cafcff31570257ea7e9113106b603774389624a01157db7673705a3ead5c8
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: MURKAIzfiYkvcS9Qjcl_ZuEiFikDXRj_6xOhlR9Ro-hTIBstbBMF-w==
content-encoding: gzip
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 14:22:57 GMT
age: 754
content-type: application/json
content-length: 44341
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4aPf+yhrKwE7h78A/fmBLPskkCQA+b/CIIYE9GC22WlHprbbm5+D9Cf89/PotQM8X5I7E3+rAjg=
x-amz-request-id: G6BGYS2RPCZS747N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 13:49:23 GMT
age: 2768
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash aaee4cb7873d6f1effbadf269482e100
bd55730ac8414fb6861b03c2a97319b4063e2cb9
d724fd9c5704fb8948d575357cad0032e89cf275d57ddb86f013fa97e033487c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1409
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:31 GMT
Last-Modified: Wed, 07 Dec 2022 14:12:02 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 14:35:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 14:08:02 GMT
content-type: application/json
age: 1649
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 3028270a0a2da959dd117fcb64b158c3
552a7f9a688e459f9e7b80008dea7c213457d9da
3813e96cdd4e025113752acaaf009f83ac252292b49cd1207088986d951a140d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=143752
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:31 GMT
Etag: "6390333b-118"
Expires: Fri, 09 Dec 2022 06:31:23 GMT
Last-Modified: Wed, 07 Dec 2022 06:31:23 GMT
Server: nginx
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 14:07:55 GMT
age: 1656
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1395
Cache-Control: max-age=154474
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:31 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:30:05 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xFEW4zIqd/vihiCjZ2Hptg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pfEct3S8TNJ1Dm71mLkCufAb9Ng=
info.insidetracker.com/hubfs/InsideTracker-M-Running-Action.jpg
200 OK 217 kB URL HTTP/2 info.insidetracker.com/hubfs/InsideTracker-M-Running-Action.jpg
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2500x1650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 217 kB (216936 bytes)
Hash d5e428b1fa2570de8b35cacc564314a3
21b6cf19e8710ecdbf0caffee24f18d846fe938a
1e58ee2216ff8f3d8ab90281bc20513c82b4c9350128af401b6e7de3d538e0a8
GET /hubfs/InsideTracker-M-Running-Action.jpg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/webp
content-length: 216936
cf-ray: 775dfd0b39b20b69-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 163396
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="InsideTracker-M-Running-Action.webp"
etag: "a0001d8f42a998f3a3b55d74f682a7e8"
last-modified: Tue, 19 Jan 2021 14:43:36 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 b44f106cb108901846bfcc9a6508c900.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-40805781042,P-419889,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=531970
edge-cache-tag: F-40805781042,P-419889,FLS-ALL
x-amz-cf-id: SIJ1OjY1mPvG1SktgymNmWKyL37dKdhu82q1XlVmR9pPzJxMIOR5gA==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: 593pYt0JyTqK5iuz2dpg+yWtT/4czpV5PiLsa5HuR8MCsopKk9SBliHjwaKUiiisf2x5iGe8Kv0=
x-amz-meta-cache-tag: F-40805781042,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1611067415015
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: VJ8P61QRTT9AK2S4
x-amz-server-side-encryption: AES256
x-amz-version-id: Z_KFONMWECjeyw3QvuSHCz.NTJttfSGD
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=APuV3mWed3nLPZMYOnHbe%2FUTFeO1LDahPZ%2B9S81%2F7fgCD6T7c8tCTWOuEeYsyUL6G9W029ETaGRIC5yBOURXdLp7QOTLh5fxq7141isVsld29pc9q1rVROTb3wnV6iuqO4gUnp2Zj00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.com/static/integrations-hubspot-v1.js
200 OK 4.0 kB URL HTTP/2 fast.wistia.com/static/integrations-hubspot-v1.js
IP
File type ASCII text, with very long lines (14928), with no line terminators
Hash 4065858861a03e38732573e5d8795356
145ef0b9d39f5cadb6febfa3ef02728684378326
76812e35e6fc2adaff4528bb227e4c7dc12651e48c3802d0ae8b6e99bd2fedaf
GET /static/integrations-hubspot-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "638f48c3-f85"
last-modified: Tue, 06 Dec 2022 13:50:59 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Dec 2022 14:35:33 GMT
age: 559
x-served-by: cache-iad-kcgs7200097-IAD, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 1
x-timer: S1670423733.067449,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 3973
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 3028270a0a2da959dd117fcb64b158c3
552a7f9a688e459f9e7b80008dea7c213457d9da
3813e96cdd4e025113752acaaf009f83ac252292b49cd1207088986d951a140d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=143750
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:33 GMT
Etag: "6390333b-118"
Expires: Fri, 09 Dec 2022 06:31:23 GMT
Last-Modified: Wed, 07 Dec 2022 06:31:23 GMT
Server: nginx
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.optimizely.com/js/21254872882.js
200 OK 87 kB URL HTTP/2 cdn.optimizely.com/js/21254872882.js
IP
File type ASCII text, with very long lines (65468)
Hash 03a955a1ea964f12f691eb6e5025210a
b513a1708dae932d2d81f1db6701c187b3585157
9465b12552c7bf7552548e908b4a9c0235e6e2153a55878bf9edfe361571a707
GET /js/21254872882.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Cop5YxrBvXLriJhyLBnH22fU9lM61uhHKDCGO8hsso8Wga27bxSMJRf7U4RkhygmhRInehThPSo=
x-amz-request-id: WPTANSZ8VJ1V6QAT
x-amz-replication-status: COMPLETED
last-modified: Mon, 22 Aug 2022 14:08:09 GMT
etag: "03a955a1ea964f12f691eb6e5025210a"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 84
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: wvfSJW4fyBgcosgDdwc6upLgpfat2UI0
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 86893
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 07 Dec 2022 14:35:33 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/InnerAge%20User.jpg
200 OK 194 kB URL HTTP/2 info.insidetracker.com/hubfs/InnerAge%20User.jpg
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2400x1600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 194 kB (194142 bytes)
Hash 7551c631146e1fab095a8b44911e052d
e421f01206d5c5605719b9e2f675e5fcf79d432a
5d8b06ec11e0817e402a7f715e2a1709e0f5b34417ae4bff6be26576b8d9041f
GET /hubfs/InnerAge%20User.jpg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/webp
content-length: 194142
cf-ray: 775dfd0b39af0b69-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="InnerAge%20User.webp"
etag: "454b0089c29c30c9c064eb7291e863be"
last-modified: Tue, 19 Jan 2021 14:46:59 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 c636ba9295dbf02e90f35b717bb16656.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-40806127031,P-419889,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=338344
edge-cache-tag: F-40806127031,P-419889,FLS-ALL
x-amz-cf-id: BaMoeBWkPMwIWgiJjj9-LgI8ci8ZjJrzfKSIyJvLdMUCFLu1_7vtAw==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: /o/jZXpsiwG6AtPDQWcNxxCA8vJlrUH4lQBFcmjubG/v+4lyUHqRtrNsd3CKy8lTBanPczCHgzI=
x-amz-meta-cache-tag: F-40806127031,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1611067618516
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 634PPPSC31C4NTXW
x-amz-server-side-encryption: AES256
x-amz-version-id: ajvqBNVjdtAkF47QycEWhhCl8u5SiUbc
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nd4XhgDrq9FLrA6e5Yw9Oq7wd%2F6avWNsRMiuwW9nAl93%2Fz1oWHt2WFp6v50rccGLDyl2S0PVh3va8AmvXtbzxICGG%2FNFkxglKnbOVLxAHJZPtNnEc22qPp8AzYrveBwyh8iuiohARcI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/InsideTracker_Hero-F-Athletic.jpg
200 OK 255 kB URL HTTP/2 info.insidetracker.com/hubfs/InsideTracker_Hero-F-Athletic.jpg
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2400x1350, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 255 kB (255178 bytes)
Hash 59385e35bd5146bca32c385c2f3d5614
df879ad93f63b2bb5162291705be1f23ec45a1b6
3d74bf1ae744dd478fc448698df620bc1d734549c1070c5b5380044c70a0f647
GET /hubfs/InsideTracker_Hero-F-Athletic.jpg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/webp
content-length: 255178
cf-ray: 775dfd0b29aa0b69-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="InsideTracker_Hero-F-Athletic.webp"
etag: "e171501261b2076f64beb0e87743cd61"
last-modified: Fri, 15 Jan 2021 02:22:00 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 f9a0ddc3860252ab6c4d02ab024b4890.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-40709431178,P-419889,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=1275152
edge-cache-tag: F-40709431178,P-419889,FLS-ALL
x-amz-cf-id: j3-AiM9xrvIk08y4eF2cu9UvElKPLDXCPpmeqqRrOq2wZk_MLLt5LA==
x-amz-cf-pop: ARN1-C1
x-amz-id-2: YjD1Vy7v+65ScisPAVvMaUzZXgWn2rDthsCzjl0Nl2WdgqU/BGCh8M5L0nwhvP/I9VFQwbkm8h4=
x-amz-meta-cache-tag: F-40709431178,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1610677319080
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 23WG9VCE5VXNTZ11
x-amz-server-side-encryption: AES256
x-amz-version-id: g3Q_32xb2MxG8tDHDM4A6bvJkN7xtkHX
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4TOatOo13MgFRls2xkykcQYwbEqCfassXPFYC%2BwMmsjAC624BPPUItReOncsM385O%2BTIuGlJ9y4XutF3A2na6Q5aiUEVAiTu%2FzYSdkZeXLaKT3sbjULGMYduePRn8JtJ900xeenh3zE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 07 Dec 2022 15:26:36 GMT
Date: Wed, 07 Dec 2022 14:35:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 07 Dec 2022 15:26:36 GMT
Date: Wed, 07 Dec 2022 14:35:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 07 Dec 2022 15:26:36 GMT
Date: Wed, 07 Dec 2022 14:35:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
Hash cf197de84fa80eb966e0a039ce5ed3ee
676d8fb3d6d2dea08091c02c61647856a3baf91e
f6edc95291bf022f247660b4402aab5bb003bf6c04a4d2a81f25afbe1ed3886d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 57809
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 58827
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Open+Sans:wght@400;600&display=swap
200 OK 7.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@400;600&display=swap
IP
Hash ac7edae9e105df0f78986f9b12c74345
33aa44c37b6357cd87a8f03e10e80136e0f40320
819fa99bcfe67bfd982417561d1407a56e8871f80e338ce06bdb2c768d32cf85
GET /css2?family=Open+Sans:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 14:35:33 GMT
date: Wed, 07 Dec 2022 14:35:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9f7b9c77a99173619ee85d0cfa8e2f8
05ba0fab4533b9837dd8558ffa5eb168e974d2b3
17184aca15041d2770fe14397fc0ab87e5f8e9f910b557031ba7fbf1349b0b9c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11464
x-amzn-requestid: 04d9e95d-563e-4258-934e-add82f95a638
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGysEDmIAMFSIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851aa-426e37fb562dc25b3449311b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RspslnJzOcAHAL--VTgFJkFxb1PvLM6OHJmJUsdOKocI5ZPmJSLdoA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:03:50 GMT
age: 66703
etag: "05ba0fab4533b9837dd8558ffa5eb168e974d2b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/step-icon-1.svg
200 OK 5.5 kB URL HTTP/2 info.insidetracker.com/hubfs/step-icon-1.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3093), with no line terminators
Hash acfcba65b0f30d9c6b9924ca7590c443
0d12b5472e2685026a77afff7745a21189cc05e1
fee1899a67aac9f5ff39dbe929a90061d65f63477e7722f11f7266b1db87f89e
GET /hubfs/step-icon-1.svg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/svg+xml
cf-ray: 775dfd0b29a30b69-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"04fb75a43d09aa39b2157e3aad3e5650"
last-modified: Tue, 28 Jul 2020 21:08:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-32982667348,P-419889,FLS-ALL
edge-cache-tag: F-32982667348,P-419889,FLS-ALL
x-amz-cf-id: 7iVR_3qrdQqOr4TPCiYSls6IwCMQ1YycKXhTnGn2CXWHCpXb-gZAFQ==
x-amz-cf-pop: ARN56-P1
x-amz-id-2: 31JQore/Ov+KfPN4SpjmEVCGK0DZCK6d2sghUi+mIFc+NfNHgjqcNexp6+Y4aSopqiWrHJ+t7O0=
x-amz-meta-cache-tag: F-32982667348,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1595970482568
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 48XXPQ25XXJYWNE4
x-amz-server-side-encryption: AES256
x-amz-version-id: 2.adEvU0_9xl7Ya15Eje4oA3F8sm5RtK
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TBgzwZxB7oRqjB0NoUWXKkNa3pKJHcRO2FCuf%2BYo2V5ZMgGQea%2FG9m%2B48P5yn0OEjA%2B%2BPahQDxytYHX1CvcKrknNHj0elsshD0c%2BLP8RYENSsX4GbIhcej5svx%2FzYWgq%2BPKgI9PBgeM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 59993
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c48b7ad45d497dbfc0e84861b3335c62
ef6a2dc0bd81b11590d7facbaa0597ec8a77d6b8
e9644536a990e94e5c9bac5bc86fae8033c6d713df65f46d08eceb13f32db508
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9644536A990E94E5C9BAC5BC86FAE8033C6D713DF65F46D08ECEB13F32DB508"
Last-Modified: Mon, 05 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6202
Expires: Wed, 07 Dec 2022 16:18:55 GMT
Date: Wed, 07 Dec 2022 14:35:33 GMT
Connection: keep-alive
hs.marketingmigrations.com/OPHS_Live.js
200 OK 1.3 kB URL HTTP/1.1 hs.marketingmigrations.com/OPHS_Live.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with CRLF line terminators
Hash f4a8d96f71643194cec2d76f880d1ef5
0305116c5732668fbefd78cbd634844dcb9f9a1f
3bbacc600e36959ab3128dafa71857a20c3ee819a4b78f19a9b08bb46d20ec39
GET /OPHS_Live.js HTTP/1.1
Host: hs.marketingmigrations.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:33 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Thu, 12 May 2022 20:18:30 GMT
ETag: "bba-5ded642e6a8ab-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10698568655/1574689823704/Coded_files/Custom/scripts/2019/PopUp2019.js
200 OK 2.2 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10698568655/1574689823704/Coded_files/Custom/scripts/2019/PopUp2019.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (317)
Hash 98acc0e903e94db5169dd1198e21c8f9
d4a7da9a1c97b517e1e4a58bd21643dfd6513dbf
084f6e7c80f89600dbac820f7f9c5a5fc7b32d9b3da29bf1f579661b010de2f4
GET /hs-fs/hub/419889/hub_generated/template_assets/10698568655/1574689823704/Coded_files/Custom/scripts/2019/PopUp2019.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0b39b90b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"f02a90052939cba67a4d09047da22628"
last-modified: Mon, 25 Nov 2019 13:50:24 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 470d4277236d0557f3e42c6bfe9dac78.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: Fbp5qQxjkBERHLalJGu7fAndhMIF1-MIJdzDF7wSkNzcvj_LIvO08Q==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: zYf57oRSl+R+nAgrPhx2NqN6l3yCWdMIf18ulfTe4K+X7jSi+zP5mRNTrgNEuSjMB0/fcsAmmlE=
x-amz-request-id: TXRNG55Z8VG2WHGQ
x-amz-version-id: VxuJhrliN1d6bbRmc1CtakBfX51S9oPI
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2k20c%2B9lqYH4QPah3zM%2BYhe%2FEjbWlDrm9NyhrAZAayBfEM6eFH%2B1eDPF0RqN96N%2FzJAF8Rwq766%2F8CEVcDstyLMWKnkYU12MicycnkRgV3zQeiTkTg55n579f2QVG6V%2BkwNJdOl2JR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32982796024/1595977385280/module_32982796024_landing_template_steps.min.css
200 OK 973 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32982796024/1595977385280/module_32982796024_landing_template_steps.min.css
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (1645), with no line terminators
Hash 305aa9ceddda84f589407dfcf10eda9b
85cb7f023a92115fa9bb8bdfcc0bc7c9a8f2f4c2
049722e2d50fd296eff7e1ce125c2ca7a6c6d150eb109157abbf758817ee10eb
GET /hs-fs/hub/419889/hub_generated/module_assets/32982796024/1595977385280/module_32982796024_landing_template_steps.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09860b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"2981053ce512604e55ffdc0bef2474e9"
last-modified: Tue, 28 Jul 2020 23:03:06 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 cf7e8b3887a490b60a55be14eb004b54.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: lZm3eUbceRDTnVqqUkh7bXcN76s-IGG6oPFQe8Dns9GlSr-3Uq39_A==
x-amz-cf-pop: IAD55-P5
x-amz-id-2: vuzJU7rMFxPFR7tUokqjpbVDMMka275aPrhksA2ejLum4Dk+NeHR/S1HjvVJthRmu/A6r4SdHEk=
x-amz-meta-created-unix-time-millis: 1595977385280
x-amz-replication-status: COMPLETED
x-amz-request-id: 6Y6ED8VBEZ1XAJS5
x-amz-server-side-encryption: AES256
x-amz-version-id: EhixduwutJO0dyasjKLwf505qTgHRb.o
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ih4foHQIPUwaYWpGbtkfSiLoAlkyXuzBRrgzBLBMkLpbJDA9f1oaEXWXnlLry4yYPRR0ImDVL4KPo7TjVLCB2u5VYJsnF0xZLqP22sb8pDyJw3xe9qHRsa5dhdGEG5E%2Fu4Mk05S9DCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 157373
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 22:19:16 GMT
expires: Wed, 06 Dec 2023 22:19:16 GMT
cache-control: public, max-age=31536000
age: 58578
last-modified: Tue, 19 Apr 2022 18:08:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
info.insidetracker.com/hs/scriptloader/419889.js
200 OK 92 kB URL HTTP/2 info.insidetracker.com/hs/scriptloader/419889.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (557)
Hash c8c4dbfd59f21bde8d0cfed56e9da961
0d7a43e26a11857289b0c772906e9948c6028198
42bd324290d892816a326b3bc96bfc65564d4146318d75a0d0f6ac97d742be06
GET /hs/scriptloader/419889.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript;charset=utf-8
cf-ray: 775dfd0b39be0b69-OSL
access-control-allow-origin: https://info.insidetracker.com
cache-control: public, max-age=60
expires: Wed, 07 Dec 2022 14:36:33 GMT
last-modified: Wed, 07 Dec 2022 14:29:42 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
cf-cache-status: EXPIRED
access-control-allow-credentials: true
access-control-max-age: 3600
x-hs-https-only: worker
x-hubspot-correlation-id: 95f56203-d98d-40f6-93a4-f0464a729364
x-trace: 2B0F5A0DB03E55439983FC45E55DAD581CABE436F9000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=utaRw%2FBnKxJHimxzyyJNZp%2FRt%2F8tDRLLsmoVMnZHvOg4sDnX3Ifd7OVgvFyPNvJOvhiAspJI9vYEgCrjPEaqMGaN0zAi7RdH%2BVDdpheGcTaG7M%2BgfAAZn2JDBqZOd0rwFxzq3Wv9Agk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/11119676992/1569596311704/Coded_files/Custom/styles/components_2019/hs-form.min.css
200 OK 234 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/11119676992/1569596311704/Coded_files/Custom/styles/components_2019/hs-form.min.css
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 234 kB (233700 bytes)
Hash 2689bac4e16d5384f583955253f197a6
8bec7583c0fd1744135f7beb8406f4f3e611ce41
17eb15b138dfad654de612c0f474fa8816f1ad5b3aae6b12efcd47ac00d77a35
GET /hs-fs/hub/419889/hub_generated/template_assets/11119676992/1569596311704/Coded_files/Custom/styles/components_2019/hs-form.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b199b0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"405c0655c607488e8cab78a01512b13e"
last-modified: Fri, 27 Sep 2019 14:58:32 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 040f8a2cdffe1cf7a35d28e06c3ed574.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: ixtlAZDrulkOkhgcp9xAE3MB5aJgdUnvPtD3hsS3ohE1WV1T8LZirA==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: P6NLSRFq/Pq7oWoc6tJhtU5dJHykPaSPU3ohGgj8okHPMDnrboMcrz2tCdTa1ph7dx72tbbnb6I=
x-amz-request-id: H8ZD5DT12NHP7ZAK
x-amz-version-id: gS8XGHSmX3PJXD6G1I.cY6oq7xpLdzbq
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DuOFwtQacT%2F4Dw15pn23ZHqpzAiOo%2Frgn7cqa4TIlpCi7tXC40TFLBEpeEKo2pAWLfHIrd5EM9fUrHxSCgAZZph6YrjdX7bqDYJBxrnxAzF%2Bq56Llbc8WUSz%2FVEo9gIrDzZ27gNZGTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7920ae1ecc27c64db4892e0881465cfe
cc36b966e3acc09d67950484978dd8a1a669c3ed
67a14c1a1fdcc70d788b34454815e8df1760bf965ad4e8a898a5b732ce561bb3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3227
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Last-Modified: Wed, 07 Dec 2022 13:41:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 278 B IP
Hash 906827a54fa9985189cdf8e5f1389d76
ec2c6b9656280a6fb55fcb1fad2c35ff9611b753
9d948f09b542051542439372be68377d6c7c9414e06de9c2546bad910f7aecaa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6433
Cache-Control: max-age=150537
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Etag: "6390349e-116"
Expires: Fri, 09 Dec 2022 08:24:31 GMT
Last-Modified: Wed, 07 Dec 2022 06:37:18 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
info.insidetracker.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
200 OK 35 kB URL HTTP/2 info.insidetracker.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (32047)
Hash cd40af460d31207900d4a4e09eaa7c97
6662bec4dc69cc7615a9218c4dc35318eadf7edd
c2f7892ab38739805dfe2e932dd6fb89e129efb0964fccac1faeee380b3ec02c
GET /hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:32 GMT
content-type: application/javascript
cf-ray: 775dfd0b097b0b69-OSL
age: 19734499
cache-control: public, max-age=31536000
etag: W/"5790ead7ad3ba27397aedfa3d263b867"
expires: Thu, 07 Dec 2023 14:35:32 GMT
last-modified: Thu, 08 Jan 2015 18:08:00 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 fa679145440a8b5dfc579eecfc89d9d8.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: CTQnGOIfJAMi0sbUpnA0HM68MN_56OnDsdJn752HRXvZY9aKWSr3RA==
x-amz-cf-pop: ARN54-C1
x-amz-version-id: null
x-cache: Miss from cloudfront
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=01o%2FMRpaMzI2qta4YS2AzKhfAIwaObxxNU5NN3Rbrv5I9tbOYe8wiGc3IvEmeTmGSifq%2FTHZT7hCIOVZOn9YlBKEGGryAaESS6KzqB6edvL5Ugpdk0j%2BOG4iGCp9bA9buMO8z5iBNyA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.salecycle.com/insidetracker/bundle.js
200 OK 0 B URL HTTP/2 s.salecycle.com/insidetracker/bundle.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /insidetracker/bundle.js HTTP/1.1
Host: s.salecycle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Wed, 16 Oct 2019 13:10:23 GMT
server: AmazonS3
date: Wed, 07 Dec 2022 14:35:34 GMT
cache-control: max-age=3600
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uEFBr8PINyVWmDBVbR1wvsHTTaUPeU9TQs9tJkKBe8ovJ0sT-7zPtw==
age: 413
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7200ad794a77fd85e76914aa9e17fc9f
fcc5d6e52f895b0729c9f8a8cccfcc6662bfd88d
8f07d9b4e98187f133bcf1f93649a0cd4625129a740297c856cf703014f5e836
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Last-Modified: Wed, 07 Dec 2022 14:26:15 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP
Hash 803eb4ac4e5b2fcc7e386cc11d741d3c
2b58bd1052a38a1216a0afa3aec472c1ff2c6d2a
fd8adf371ef7deb3fda7463a49e6235f36eb8ddce205028b2cdf80e25bf0dc04
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1353406436/1569596301595/Coded_files/Custom/system/default/Hs_Default_Custom_Style.min.css
200 OK 122 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1353406436/1569596301595/Coded_files/Custom/system/default/Hs_Default_Custom_Style.min.css
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (5510), with no line terminators
Size 122 kB (121994 bytes)
Hash 750b36bd9697bd0c3f0097e2ecb69d69
22f8eb422f43794eead1d1616f6991ae33e55b3a
7d52f0d0e23c0ecd005855f5fb32c6f51e95d5e2284694a4955c62971b9bb653
GET /hs-fs/hub/419889/hub_generated/template_assets/1353406436/1569596301595/Coded_files/Custom/system/default/Hs_Default_Custom_Style.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b19960b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"bb84460648fd1dbc2922fd5abca8546a"
last-modified: Fri, 27 Sep 2019 14:58:22 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 066fc17b108820c747336d8f45e8ea54.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: ddXI6bbsN8FLHCu6wcrs6dUzDGk3Y2T8CKy2dhxg0sqHEF6V4l5qBA==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: OIVO7PFWEh3V39sk0j0pPox1yLKunpB8mJIdoFQ/zwXUWLlJ1NkDvTdDjEEUIyYHZu2067Q/7zA=
x-amz-request-id: 8QTFMEPZN18HSEWF
x-amz-version-id: Dz5dzeE9Tfi3INyetQoUrGjahmp27ZMU
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0TuDLk8uk%2BfhaH6zstwS%2FlOUwBRFDtC%2FVJrDMALu%2BkXVLyh6yxR%2FQmyNQor2kinzoAT1fIMLv%2Bn10KXg9IwIKsKqnlwuEt4BU%2FLZZTAUJDQAL%2F41FXUuaA72X4KnJZtup4zn5S4mzPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10936765513/1569596311132/Coded_files/Custom/styles/adjustments2019overriding.min.css
200 OK 8.7 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10936765513/1569596311132/Coded_files/Custom/styles/adjustments2019overriding.min.css
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (14757), with no line terminators
Hash bcbe0bacbc7778d4395bfb7b4a8e8567
b4ed5c99251a374ed4d27d4af27440a8b0d53f12
bd29a5847726af74bf0c31fe0eb696c39fa6718182902810ff2f8719071088cb
GET /hs-fs/hub/419889/hub_generated/template_assets/10936765513/1569596311132/Coded_files/Custom/styles/adjustments2019overriding.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b199a0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"fb2a9685aa4fdcab24d49f5c80217e10"
last-modified: Fri, 27 Sep 2019 14:58:32 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 b2179245b8d8ae2b245dd8946895eb1e.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: I0fVNSvQlHlyJ9b4dGYNNhpii7a1H7ob7BD5dPuT2kSPi1K2JlXHbQ==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: fN2BmUtropfThSREMs729PtoMK3kAWjnMqzt4PSExV3ITETcgiEFdVYJi4WzL9rxD/DEQFESAiM=
x-amz-request-id: 5QQH8TNQA9GMX01M
x-amz-version-id: kMql9nx3bsdqAmwxvg8MLUuuoX3f7hRe
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RwAr51KoQBMez7HyqfMKng8Mh1yW1DfWuh27n1QsIEF7QPiDl5hcH3g1JVCJsjZjqbHTJ6PL%2FShhQq08I72la%2Fsqgu3UBh7kyurlMCtrRxx0%2FHQr5jklSi1uLENFRix3FTh4tCdy75k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP
Hash 803eb4ac4e5b2fcc7e386cc11d741d3c
2b58bd1052a38a1216a0afa3aec472c1ff2c6d2a
fd8adf371ef7deb3fda7463a49e6235f36eb8ddce205028b2cdf80e25bf0dc04
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash ac2986d1e86921a54658dde81c9e0fb1
486912d2de0d04ec4fd54a76c0d1959ab29afd7f
165a8671a87159efef7099c7336e2a5b48f410751977445c527f38fe7a76d2df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5267
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Last-Modified: Wed, 07 Dec 2022 13:07:47 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
a21259580705.cdn.optimizely.com/client_storage/a21259580705.html
200 OK 804 B URL HTTP/2 a21259580705.cdn.optimizely.com/client_storage/a21259580705.html
IP
File type HTML document, ASCII text, with very long lines (1371)
Hash 9ff5807cee42f613a60ff4e80b5db8fc
6b880267b92157263120061ea16668561ff97ec9
43c10a8fd099149c7062153ab059c9a1ef473f00f3fc3293fec00bed5b8e81dc
GET /client_storage/a21259580705.html HTTP/1.1
Host: a21259580705.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /pN6i21gTwDVVTVFW6X1DVgwBc/9nGYqDyamAD6zZ4KUpiuIqJ/aXBuP3n0S6GBqJE7aWIkIA4o=
x-amz-request-id: CBKXWQP6TN184G3Y
x-amz-replication-status: COMPLETED
last-modified: Thu, 01 Dec 2022 15:00:15 GMT
etag: "9ff5807cee42f613a60ff4e80b5db8fc"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: ggtOiofhiawqnIPDQA9vdBkyCQBbFB6n
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
content-length: 804
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 07 Dec 2022 14:35:34 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/21676450621/1574411437484/Coded_files/Custom/scripts/2019/importSprites.min.js
200 OK 3.9 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/21676450621/1574411437484/Coded_files/Custom/scripts/2019/importSprites.min.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (461), with no line terminators
Hash 2b15bf6a1b914585929e5c1ff1240700
4102ee07e0c90e0b6de6717d71ab474493460d20
aa9a92dba8881d86c43acdfcc4a1f2cff33b97123a2b29fb58ac5377570b8b50
GET /hs-fs/hub/419889/hub_generated/template_assets/21676450621/1574411437484/Coded_files/Custom/scripts/2019/importSprites.min.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0b39b30b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"f24b45477527e4cf8149859464d6348b"
last-modified: Fri, 22 Nov 2019 08:30:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 066fc17b108820c747336d8f45e8ea54.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: nCaTEeCx-tCEtV5ZJkOppnxh_NNg20SZd9WzomBLYZvgEqkDpXSfEw==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: fz5no6U7YV+cX7r9L/uMznkZtp8oTFR3Suq4fwh8059DYY1n9XMHYS0PwSxDPTDJ3sQWxkE6Hv0=
x-amz-request-id: HE7Z7G3XXMVNE648
x-amz-version-id: eZ34HsJAzQtVGuP0W7UfAMSW2S3jzSjL
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wc1AaTVcjDnvHUliQkeyN7mBzynYQ6O9dwOuc44rbJwv%2Byc92mmmtb8324Hcw5%2BehhyRfv%2FvIHD2PRpN6oEhq0i%2Bk%2BIL2QCyqfTAzZEnY07rK1n05Qu5XvsIuN%2B3eAJOVTE%2Fq1rTUD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 22b16b48a77e37094b0b2c22afd6f31e
37c14b652a2b310fcb29d18268cf9f12058c2bac
e998f48327367ba5f9c4b41fe1c2e7d1f28260ba06d03ce8020bf1eefd8928cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32989230686/1654230982341/module_32989230686_landing_top_section_with_form.min.css
200 OK 1.6 kB URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32989230686/1654230982341/module_32989230686_landing_top_section_with_form.min.css
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (5396), with no line terminators
Hash 7a2e7139993cafc7e3f93f4a60608fb6
5aa6dbfc778091ec31c7202408171af4e4d46873
26b3de15122d4323165fff435814b5c59458e60497ba325ba9008bd6fb93fa27
GET /hs-fs/hub/419889/hub_generated/module_assets/32989230686/1654230982341/module_32989230686_landing_top_section_with_form.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09840b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"6a12db05897e51299b08c8e44236d196"
last-modified: Fri, 03 Jun 2022 04:36:23 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 aef197034a978e986954f2826c90b090.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: r5PDNzkpKbYYN2o8gCURqkqDtXQkfpiZy9M_uTQnYca37OXt38KP1Q==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: wTFg8YkJxYa3jr8WRKdIVM5kMWgUezD4pHHiPBfFb9z5x4FLD4DxnUz7v6FjFj3jSkRZ7k6c6ww=
x-amz-meta-created-unix-time-millis: 1654230982341
x-amz-replication-status: COMPLETED
x-amz-request-id: YHM18KKYZV7B5BHW
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: _DsPMNa2GzRKnwbWJ99hzNieZorUvvrS
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqNOafvd8aCsSOzUTnRRQTg%2Bpv4IO6pvN2ib04gbb6OCHfRlSURYHP2rtp7a1S5i%2FgXsWmgs%2Ftk4cvdaD71aJ21V%2B1g3ykqPCzx49PEM6mmUhCr%2FHCBJGp%2F0Ex91oAgNeiwrBHOYy2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=419889
200 OK 551 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=419889
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash fd2b0e71110d4d712a111d3a39db075c
e8b31c7a477e8af97cc5ee3cab5f7f8c06394e05
50df0e083b9488c3a41d94df8538e62d331fdf6286111ed16ab3daa815738147
GET /hs-script-loader-public/v1/config/pixel/json?portalId=419889 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: application/json;charset=utf-8
cf-ray: 775dfd140bbafac0-OSL
access-control-allow-origin: https://info.insidetracker.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 26291fcd-617c-4989-8063-9f20cb993aa0
x-trace: 2B2C2A3C5BE10455AE7D2F2FF1286C5F287FC5B6CA000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aD%2FlWMnRtKZllo4swS8rjMq04CxorXOyMMDpntFluNvI8sOZOF1dLxClUgpgp43Hldky4Gu%2FZhTR5g%2BQP8vPie5sx2GeGxb9hMrGTEf3T8AV%2BrxIWxcWo8pAFH7cEjq%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dd924224d42f3fefccbe2fa927588ac
94aec3a1364b64633b63f7466f8dbce528bb957d
6187a818ee154da94010b49684b301578538e5046a2cddd9557c6c77f7afea51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash 3abdbf6315f4c404d6fba154072dbc94
84495fba4e63bacf1cf962c306b483618e178742
68ba1412649d9de7188c3954dabec7e91d0381cdc62239e466445762901b9435
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5572
Cache-Control: max-age=135626
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Etag: "638ffdbc-116"
Expires: Fri, 09 Dec 2022 04:16:00 GMT
Last-Modified: Wed, 07 Dec 2022 02:43:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 882d21c8ae90cbfdb7d9d308ffa41f05
739f4dd24d42d1bd68336c2e8ae04234f04220b3
13d73d094300b875821ccfd7ebee489b3e7a7deb1e25a1bea74669208cd1bfd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
10897168.fls.doubleclick.net/activityi;src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift?
200 OK 236 B URL HTTP/2 10897168.fls.doubleclick.net/activityi;src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (506), with no line terminators
Hash af4a9d33105257d236d5db5fac4dd338
dfd6ba613023f992780f09aee08af0548169ec38
116be7ea9e1e38350dc30067393faec916738f9bcab9128d09eb771b06e3eecd
GET /activityi;src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift? HTTP/1.1
Host: 10897168.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 236
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 14:50:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
10897168.fls.doubleclick.net/activityi;src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift?
200 OK 239 B URL HTTP/2 10897168.fls.doubleclick.net/activityi;src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550), with no line terminators
Hash 47f96dd465dcecb88dbffe13b333c0bd
00549ec9966644d581c4c462970a1ba5f4d961e9
baceb30a46bf1ada510c146923d9b725ef64a4ab5464a0d0c1cd862eacaa7a84
GET /activityi;src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift? HTTP/1.1
Host: 10897168.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 239
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 14:50:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 22b16b48a77e37094b0b2c22afd6f31e
37c14b652a2b310fcb29d18268cf9f12058c2bac
e998f48327367ba5f9c4b41fe1c2e7d1f28260ba06d03ce8020bf1eefd8928cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
forms.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1
200 OK 35 B URL HTTP/2 forms.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: image/gif
content-length: 35
x-trace: 2B5DE53E9621A396BF2610A625BE61F9453B14C5B2000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: af1be816-ec9a-4b6b-892c-7ec4cd50096e
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775dfd15babfb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hsadspixel.net/fb.js
200 OK 2.6 kB IP
File type ASCII text, with very long lines (5960)
Hash 577e8e246ae627e74131c857a1f25d20
290aa6e6771e8140e400baf3f432e4f7f8b76dcc
00e089719b2feefaa03046d7ed0cf699206a769bba151453e03ee67b6b1e6a46
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 03:38:56 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: aoUPWE.Bu9NRjxDy7F1Soox3yNWe2Us6
etag: W/"c32a10854f4ff995fc7198ba0324bcc6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76e55a2361219fb19722e949475d1844.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: smhvQzjcFZrUF_W80GOlXD1DdtGd0AC68U0HlvjmUpwB5gIHEEOtRA==
age: 528
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.302/bundles/pixels-release.js&cfRay=76d6427b4847b506-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.302/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 775dfd135fb81c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 3abdbf6315f4c404d6fba154072dbc94
84495fba4e63bacf1cf962c306b483618e178742
68ba1412649d9de7188c3954dabec7e91d0381cdc62239e466445762901b9435
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5572
Cache-Control: max-age=135626
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Etag: "638ffdbc-116"
Expires: Fri, 09 Dec 2022 04:16:00 GMT
Last-Modified: Wed, 07 Dec 2022 02:43:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
200 OK 35 B URL HTTP/2 forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1
Host: forms-na1.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: image/gif
content-length: 35
x-trace: 2BFCD1B016FC2A9EF67FD457AC999BC8EF5CD5D69D000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: b5d29a38-7c6e-46f8-821f-8c640b4c962c
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775dfd15eb6ab515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dd924224d42f3fefccbe2fa927588ac
94aec3a1364b64633b63f7466f8dbce528bb957d
6187a818ee154da94010b49684b301578538e5046a2cddd9557c6c77f7afea51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 216b57247770e43296f083ef19e6f927
6e95f95cbb049db2784bb1de73dbfe1092a7eeaa
dc39a42fdcb92d1739ea502535a91e2e18d856bd92e5daf7c81f691a65808243
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 14:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 22:26:38 GMT
Expires: Wed, 07 Dec 2022 22:26:38 GMT
ETag: "6e95f95cbb049db2784bb1de73dbfe1092a7eeaa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
adservice.google.com/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 237 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (505), with no line terminators
Hash 2a7de24b6045c73fb1be89768abcea20
8304427eddc75658f43c80130610bb1d7d54720f
fdfd8e6db1c80b3b7ff4db34cd16a9faf894010b9d5efccef2063b9a0b7ad515
GET /ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10897168.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 237
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 242 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (549), with no line terminators
Hash 5bbb60466c6ccb3f2eedd1ff586374fb
acc88bc167486de45e29b3597d385d691de33840
37d652531ee14286aff390ddc684d6b6a03d7dcb0d9444c1e889e31bbe82b527
GET /ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10897168.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 242
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
204 No Content 0 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://info.insidetracker.com
Content-Length: 479
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
function-execution-id: afnptsc99ct5
x-powered-by: Express
x-cloud-trace-context: ccd03cc94ff1a264fcebf8645347b044
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.rapidssl.com/
200 OK 471 B IP
Hash 778cb29d5fdcb34edbb9ea3086826dc0
68407a319540f2bdc5f1261d8b338714217e86be
a649ff5d3d8e7f681d0b1248a25f3b484f5a6114167fd1e7e2b7fdd63268d3f3
POST / HTTP/1.1
Host: status.rapidssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3235
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Last-Modified: Wed, 07 Dec 2022 13:41:41 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
adservice.google.no/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=9626835686704;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:35 GMT
expires: Wed, 07 Dec 2022 14:35:35 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=10897168;type=counter;cat=insid0;ord=3526043902067;gtm=2wgbu0;auiddc=84419199.1670423734;u1=https%3A%2F%2Finfo.insidetracker.com%2Fshifthttps%3A%2F%2Finfo.insidetracker.com%2Fshift;~oref=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:35 GMT
expires: Wed, 07 Dec 2022 14:35:35 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
insidetracker3e41a.referralrock.com/sdk/referral.js
200 OK 17 kB URL HTTP/1.1 insidetracker3e41a.referralrock.com/sdk/referral.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ae2ece4ace4a8ee4ed2c2d2cbca9c2f3
1318057cc68d453500fced260e0559e175c9cdce
8624a3fc16f1fe553df40ed8ef485c69a1c4cb182f816c9744d07df7b1a415c0
GET /sdk/referral.js HTTP/1.1
Host: insidetracker3e41a.referralrock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:34 GMT
Content-Type: application/x-javascript
Content-Length: 17112
Connection: keep-alive
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ETag: "06d1552875d91:0"
Last-Modified: Thu, 01 Dec 2022 13:17:54 GMT
Set-Cookie: ARRAffinity=b4fe3558ecf061a77457a8510b99f11dd48cee5935fe932df299db7d198432fe;Path=/;HttpOnly;Secure;Domain=rrprod02-customer-b.azurewebsites.net
ARRAffinitySameSite=b4fe3558ecf061a77457a8510b99f11dd48cee5935fe932df299db7d198432fe;Path=/;HttpOnly;SameSite=None;Secure;Domain=rrprod02-customer-b.azurewebsites.net
Vary: Accept-Encoding
X-Powered-By: ASP.NET
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-XCS9JKPM8X>m=2oebu0&_p=2034614229&cid=275583067.1670423734&ul=en-us&sr=1280x1024&_s=1&sid=1670423734&sct=1&seg=0&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&dt=SHIFT%20x%20InsideTracker&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-XCS9JKPM8X>m=2oebu0&_p=2034614229&cid=275583067.1670423734&ul=en-us&sr=1280x1024&_s=1&sid=1670423734&sct=1&seg=0&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&dt=SHIFT%20x%20InsideTracker&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XCS9JKPM8X>m=2oebu0&_p=2034614229&cid=275583067.1670423734&ul=en-us&sr=1280x1024&_s=1&sid=1670423734&sct=1&seg=0&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&dt=SHIFT%20x%20InsideTracker&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://info.insidetracker.com
date: Wed, 07 Dec 2022 14:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
insidetracker3e41a.referralrock.com/externaltrack/?pageTitle=SHIFT%20x%20InsideTracker&scriptv=https%3A%2F%2Finsidetracker3e41a.referralrock.com%2Fsdk%2Freferral.js%3F05-10-21&transactionKey=a43c374a-0f95-4861-9f2e-89522844007e&sourceURL=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 671 B URL HTTP/1.1 insidetracker3e41a.referralrock.com/externaltrack/?pageTitle=SHIFT%20x%20InsideTracker&scriptv=https%3A%2F%2Finsidetracker3e41a.referralrock.com%2Fsdk%2Freferral.js%3F05-10-21&transactionKey=a43c374a-0f95-4861-9f2e-89522844007e&sourceURL=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 02a5156a4580b955970c2d4b63a5bcf9
d0ffbc21497c63dfea7828baa737185ac7e73af3
af3665424055ca3105aa612fa355dc6fd0aa82d139d35712c977206c8a2c7ff5
GET /externaltrack/?pageTitle=SHIFT%20x%20InsideTracker&scriptv=https%3A%2F%2Finsidetracker3e41a.referralrock.com%2Fsdk%2Freferral.js%3F05-10-21&transactionKey=a43c374a-0f95-4861-9f2e-89522844007e&sourceURL=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: insidetracker3e41a.referralrock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 671
Connection: keep-alive
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: ASP.NET_SessionId=0nwkysq0oihh3bgf4dh3epoz; path=/; HttpOnly; SameSite=Lax
ARRAffinity=b4fe3558ecf061a77457a8510b99f11dd48cee5935fe932df299db7d198432fe;Path=/;HttpOnly;Secure;Domain=rrprod02-customer-b.azurewebsites.net
ARRAffinitySameSite=b4fe3558ecf061a77457a8510b99f11dd48cee5935fe932df299db7d198432fe;Path=/;HttpOnly;SameSite=None;Secure;Domain=rrprod02-customer-b.azurewebsites.net
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:683234c1-44ae-4c0f-a0cc-363d1e4dad53
X-Powered-By: ASP.NET
ocsp.digicert.com/
200 OK 280 B IP
Hash ed905b29479cddd2b9d49b7352d5116c
331eeffdd74562e365c54703a29690777a9f785c
984a19ce33574d7ed68fa84e2a5c865d5d815f1545cf6658225f79696de13164
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1245
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638fc6ec-118"
Last-Modified: Wed, 07 Dec 2022 14:14:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 924e61a6e093be0b429276785b57fc1e
0a1ecf8e0dc5ba0a4a23186e1d67649e04157f75
cdbfe8b366a6b69b25110421538379e210790b45a2191c2b6169d0f9797fe741
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6203
Cache-Control: max-age=104232
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638f80a4-117"
Expires: Thu, 08 Dec 2022 19:32:47 GMT
Last-Modified: Tue, 06 Dec 2022 17:49:24 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 727 B IP
Hash f6f80ea329a29d68710fa1b3756a9da6
98133ee017294c770fbb8730f86aba960cfd9908
1871e1ff71531db14cb402a70a070916a0fb530afb687316870cc44c242880c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6373
Cache-Control: max-age=122010
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638fc56c-2d7"
Expires: Fri, 09 Dec 2022 00:29:05 GMT
Last-Modified: Tue, 06 Dec 2022 22:42:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8aa9320315b7fc787bfd0fd1baea8721
45328506883b22acc927b8038b73e5247b0a1679
c5827834b5ce1e49980b439410b06fca062d877abd8ca89719b589a2fe28b4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 313 B IP
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1113
Cache-Control: max-age=113141
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638fb753-139"
Expires: Thu, 08 Dec 2022 22:01:16 GMT
Last-Modified: Tue, 06 Dec 2022 21:42:43 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 471 B IP
Hash d44205a852cedc47da2373b3542f2ca0
884e5d2d7ef372a86e7edc3f8c1dc63a3b4fbe82
f2adb5b3e4b05ad953d43f483497243ae66c148f2af8f39473ddc6fcf2623bb9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6582
Cache-Control: max-age=86601
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638f3a4a-1d7"
Expires: Thu, 08 Dec 2022 14:38:56 GMT
Last-Modified: Tue, 06 Dec 2022 12:49:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash c6e417896e533914bd9baf1b58cc8465
e4d2f1b78f9ebd1ecb7b7ac827a399dfdffea455
21b0ea689a73d8b75ca7b6e26e887bd0cbf4ac6f1477ca3b0cdb528287f86c68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1027
Cache-Control: max-age=167452
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "63908bd0-1d7"
Expires: Fri, 09 Dec 2022 13:06:27 GMT
Last-Modified: Wed, 07 Dec 2022 12:49:20 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
cdn.mxpnl.com/libs/mixpanel-2-latest.min.js
200 OK 17 kB URL HTTP/2 cdn.mxpnl.com/libs/mixpanel-2-latest.min.js
IP
File type ASCII text, with very long lines (755)
Hash caa762087e9d75cecc34b5d6626cb7b9
fcc68d485c2f42e0f880260c3e104cedf50d0d11
dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145
GET /libs/mixpanel-2-latest.min.js HTTP/1.1
Host: cdn.mxpnl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt7OYGuLMCEoavWjbrEqJfsKhfCV7IxLllQXWVPOEm9ZCYdML_c4PQgJOn5lytgr1G5K8Jo4aXBFxunj2GEG5knlQ
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17435
access-control-allow-origin: *
server: UploadServer
date: Wed, 07 Dec 2022 14:32:44 GMT
expires: Wed, 07 Dec 2022 14:42:44 GMT
cache-control: public,max-age=600
age: 171
last-modified: Thu, 17 Feb 2022 20:21:50 GMT
etag: "caa762087e9d75cecc34b5d6626cb7b9"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 07 Dec 2022 12:46:55 GMT
expires: Wed, 07 Dec 2022 14:46:55 GMT
cache-control: public, max-age=7200
age: 6520
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1670423700000/419889.js
200 OK 23 kB URL HTTP/2 js.hs-analytics.net/analytics/1670423700000/419889.js
IP
File type ASCII text, with very long lines (51282)
Hash 50ace4b7d73d7bb8d1a08ed68e605d28
52c345c626294974a64b0050d818316e95f67e4c
a7cea6b8fb1b5b08b5d322721f063baffdbf493bdfa0160e0e75d2269468fa33
GET /analytics/1670423700000/419889.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: text/javascript
x-amz-id-2: THbm5/p8sGSnWsx7B1CVa6X7Wak+9qYh2wOpbKsiczvrPhVSu+1Nd89hxg/6zprzj5210GHHWZc=
x-amz-request-id: AK78VCW08ZTJ9FRW
last-modified: Thu, 01 Dec 2022 14:03:19 GMT
etag: W/"0eaf5f098bedb8bb57ef87fba3e14a00"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Wed, 07 Dec 2022 14:38:54 GMT
cf-cache-status: HIT
age: 101
server: cloudflare
cf-ray: 775dfd1a8ffbb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8aa9320315b7fc787bfd0fd1baea8721
45328506883b22acc927b8038b73e5247b0a1679
c5827834b5ce1e49980b439410b06fca062d877abd8ca89719b589a2fe28b4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: TSH1fP4XlHND5nhaGhb/WU8jJf0MKAFZBpogWcjVnFuX2vX+sAvb3wMeSQeVmhi8FxgsrxTciPgVlkx6b8jRUQ==
content-length: 27340
x-fb-trip-id: 1679558926
date: Wed, 07 Dec 2022 14:35:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 32a8be8e7a127aef4aefd2758db4c289
b55436a58794e84e52f8afe846510c8466843c92
965d72fff72ade380d63256a8a00be40b227c562e8ece52d607a004e0c669928
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 13:02:17 GMT
Expires: Mon, 12 Dec 2022 13:02:16 GMT
Etag: "b55436a58794e84e52f8afe846510c8466843c92"
Cache-Control: max-age=425800,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775dfd1afc34b4f3-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash d44205a852cedc47da2373b3542f2ca0
884e5d2d7ef372a86e7edc3f8c1dc63a3b4fbe82
f2adb5b3e4b05ad953d43f483497243ae66c148f2af8f39473ddc6fcf2623bb9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6451
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Last-Modified: Wed, 07 Dec 2022 12:48:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
app.hubspot.com/content-tools-menu/api/v1/tools-menu/has-permission?portalId=419889&callback=jsonpHandler
204 No Content 0 B URL HTTP/2 app.hubspot.com/content-tools-menu/api/v1/tools-menu/has-permission?portalId=419889&callback=jsonpHandler
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /content-tools-menu/api/v1/tools-menu/has-permission?portalId=419889&callback=jsonpHandler HTTP/1.1
Host: app.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 07 Dec 2022 14:35:35 GMT
cf-ray: 775dfd1acdc0b4fd-OSL
cache-control: max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET
report-to: {"group":"default","max_age":86400,"endpoints":[{"url":"https://exceptions.hubspot.com/csp/reports"}]}
reporting-endpoints: default="https://exceptions.hubspot.com/csp/reports?cfRay=775dfd1acdc0b4fd&resource=unknown"
x-hs-worker-debug-mode: false
x-hubspot-correlation-id: 06fbafd0-c123-42ea-9e76-d1dac551a2cc
x-trace: 2BFDE6FE870CE7FD0ECA76ED97764F7017DF341A99000000000000000000
set-cookie: __cf_bm=KF1ZIXiZGMJCTlI7c_.d0SNy0j.lkQSbiyOpqPzf28M-1670423735-0-ARmMXxP0/zrsLo6HId4obKW422hWsjG+EmrUfmEWl+GtJJGxOViR8CDnMMoDk/MAmlRZ5R0gT4z6cdQOe9kBupo=; path=/; expires=Wed, 07-Dec-22 15:05:35 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 924e61a6e093be0b429276785b57fc1e
0a1ecf8e0dc5ba0a4a23186e1d67649e04157f75
cdbfe8b366a6b69b25110421538379e210790b45a2191c2b6169d0f9797fe741
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6203
Cache-Control: max-age=104232
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638f80a4-117"
Expires: Thu, 08 Dec 2022 19:32:47 GMT
Last-Modified: Tue, 06 Dec 2022 17:49:24 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 313 B IP
Hash aa9e9cc4cf21d2f8e869a92e65a45506
32bac4c290787256eb7362fd11b4342d20a6c8ab
b82203e3d34d3cd6c7b013b8887a74af649ef07edccacf3a1874a670951a915b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1272
Cache-Control: max-age=161541
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "639073c4-139"
Expires: Fri, 09 Dec 2022 11:27:56 GMT
Last-Modified: Wed, 07 Dec 2022 11:06:44 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a9e799f0c0819d2472e60f5f1fad81a7
98ac8b56ef51dd511345d0b92a4e39b17efb2958
733166b9b9931d93215a7daf93c0906c91a49faa5997987b1e7677e46a4df3f8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147498
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "63903d1c-1d7"
Expires: Fri, 09 Dec 2022 07:33:53 GMT
Last-Modified: Wed, 07 Dec 2022 07:13:32 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mjsbaO5ug04c_RhsSaNAvVmVqxNIoUkfJMkTBeb97EMAYo_Urbz5iQ==
Age: 1221
ocsp.digicert.com/
200 OK 313 B IP
Hash 4c9688944e55047f879844d038061d17
e772514463f92964d1aa73b65a5b5e727665e2e6
b7da6d01a2e65b5691557e6c340a64632aed3e7fb41bf5a1e5fdbe96c7c9e700
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1102
Cache-Control: max-age=98764
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "638f7f35-139"
Expires: Thu, 08 Dec 2022 18:01:39 GMT
Last-Modified: Tue, 06 Dec 2022 17:43:17 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
44.228.85.26/is
200 OK 32 B IP
File type ASCII text, with no line terminators
Hash c448022c1795d4646e169982c276dea2
1ad234b630b5a4bcab6ade1ac6d373f5527075c6
921e7b87761286cd824d90e1ca4fc7e742653ed7777fc005e1c9f193876993c3
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 44.228.85.26
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&gjid=307901025&_gid=623427290.1670423735&_u=YADAAEAAAAAAACAAI~&z=627174525
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&gjid=307901025&_gid=623427290.1670423735&_u=YADAAEAAAAAAACAAI~&z=627174525
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&gjid=307901025&_gid=623427290.1670423735&_u=YADAAEAAAAAAACAAI~&z=627174525 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://info.insidetracker.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Dec 2022 14:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Wz7wCl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czdrRG5Vd3c4ZDNiU2hubFZ5WDY0NGZpNm9SYTIydUtTd2J2JTJGU1JKTnMxRg; expires=Mon, 01 Jan 2024 14:35:35 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 249644
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
logx.optimizely.com/v1/events
204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 737
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://info.insidetracker.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Wed, 07 Dec 2022 14:35:35 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 1bdb4257-bb29-422e-9219-c7991b8a206b
Connection: keep-alive
ocsp.digicert.com/
200 OK 313 B IP
Hash 5814ad3b7f0d449d58b5505e41a3f293
66fe5d7620cc08430e8c06b981dd034307dbbc8d
aac640fcca4acaf55321ba49f1eb08c3a29d771445b35a33213aa627900d2579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1320
Cache-Control: max-age=157643
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "6390645a-139"
Expires: Fri, 09 Dec 2022 10:22:58 GMT
Last-Modified: Wed, 07 Dec 2022 10:00:58 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 5814ad3b7f0d449d58b5505e41a3f293
66fe5d7620cc08430e8c06b981dd034307dbbc8d
aac640fcca4acaf55321ba49f1eb08c3a29d771445b35a33213aa627900d2579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1310
Cache-Control: max-age=157632
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Etag: "6390645a-139"
Expires: Fri, 09 Dec 2022 10:22:47 GMT
Last-Modified: Wed, 07 Dec 2022 10:00:58 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9084a518c70ad57bb3226fb519b648fd
79348ebe6f5900a035d4d65e08a7409fd9708f15
f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660
200 OK 86 kB URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660
IP
File type gzip compressed data, from Unix\012- data
Hash 0a47a5747e0327552e36914f9397529f
f360a31f99c9435a1c1fb83964506998e5a0c5fd
6eff2aa489f1313d673f25561ea3b9c32b1ca58daecfbcf422bc4d8f7f11f691
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24034771-2&cid=275583067.1670423734&jid=1599463905&_u=YADAAEAAAAAAACAAI~&z=1159443660 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 14:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=868030033345319&ev=PageView&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&rl=&if=false&ts=1670423735583&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670423735582.1626076815&it=1670423735239&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=868030033345319&ev=PageView&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&rl=&if=false&ts=1670423735583&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670423735582.1626076815&it=1670423735239&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=868030033345319&ev=PageView&dl=https%3A%2F%2Finfo.insidetracker.com%2Fshift&rl=&if=false&ts=1670423735583&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670423735582.1626076815&it=1670423735239&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 07 Dec 2022 14:35:36 GMT
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588
302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:35 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 12357100
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash a4613787095bc70c68debc4a6d1cdfd3
f485fa00f75e3e5fa31b19fb65f8c078c4858d27
7200e0e18cd25095a0b99135ef7a585b113fdc80f773b7cf779814f126e1e138
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6520
Cache-Control: max-age=140156
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:36 GMT
Etag: "63900bbc-139"
Expires: Fri, 09 Dec 2022 05:31:32 GMT
Last-Modified: Wed, 07 Dec 2022 03:42:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash cf2e6507805e1a10d487a74829cad86c
e9070249c7b3aefe3c4693b51fedb09dc20a8dce
72c5e49c136edcb6903d4740889309b995d3ab92a06157375c34cb74c49ea2ff
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 14:35:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 20:40:54 GMT
Expires: Wed, 07 Dec 2022 20:40:54 GMT
ETag: "e9070249c7b3aefe3c4693b51fedb09dc20a8dce"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
widget.us.criteo.com/event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588
200 OK 3.9 kB URL HTTP/2 widget.us.criteo.com/event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588
IP
Hash 1dee1884cc186c123cff81a2511ffa88
72c8f6fe7e33801e0adb198125d508620fd411ea
267b44584fa147c71055fb9451439e99fbb02871403467d646e3204921cba5f3
GET /event?a=83854&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=OfCjLV8yV3lHUlJHemVhWHVyT3BXM01USVc0aE0lMkJXR3JTdDRVR2UzSUNtakVYeHZmNyUyRkZiaGh3VmRmRW5JcU9DcDI1VU5UJTJCbjdFbGhEN1ZqVmp3d0pBUWJlJTJCVTRCdkYwejJIYWtsVjZXZmFyRiUyRjlCSyUyRnZNWGdEVCUyRlF2QmVwWTg5c2ttTHJrSW1nWlNOTDJ3WTJja1o4Q280dyUzRCUzRA&tld=insidetracker.com&fu=https%253A%252F%252Finfo.insidetracker.com%252Fshift&dtycbr=19588 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 14959362
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash cf2e6507805e1a10d487a74829cad86c
e9070249c7b3aefe3c4693b51fedb09dc20a8dce
72c5e49c136edcb6903d4740889309b995d3ab92a06157375c34cb74c49ea2ff
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 14:35:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 20:40:54 GMT
Expires: Wed, 07 Dec 2022 20:40:54 GMT
ETag: "e9070249c7b3aefe3c4693b51fedb09dc20a8dce"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 47fbfd3d77a103af4f4e733e65f1e0e2
ac910de073edd362baa8c455788eb378691a03c5
3267c40ec6e46f996dd4bc83abe568454270727146e233822ad26860e9a79795
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 11 Dec 2022 10:26:41 GMT
ETag: "ac910de073edd362baa8c455788eb378691a03c5"
Last-Modified: Wed, 07 Dec 2022 10:26:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1303
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775dfd2bfbea0afe-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 47fbfd3d77a103af4f4e733e65f1e0e2
ac910de073edd362baa8c455788eb378691a03c5
3267c40ec6e46f996dd4bc83abe568454270727146e233822ad26860e9a79795
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 11 Dec 2022 10:26:41 GMT
ETag: "ac910de073edd362baa8c455788eb378691a03c5"
Last-Modified: Wed, 07 Dec 2022 10:26:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1303
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775dfd2bfbd60b65-OSL
px.mountain.com/st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1670423736598266&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1670423737312
200 OK 1.4 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1670423736598266&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1670423737312
IP
Hash fb12e2e561f4283dc6ee11afb8aafc59
dbcaa0992fc54412d6177078b266e8ed11e452f3
7c3e6ddb8f919bc3ebe8f93cf4b9316cc5017f69d35da61d32c38914aacc3569
GET /st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1670423736598266&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1670423737312 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Cookie: guid=69f2ab8f-763c-11ed-b408-bbc5eadecc10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt="H4sIAAAAAAAAAKtWKlOyMtJR8guKNzYytzCJNzK3NFayMtBRgnItjC2UrAzNzA1MjIzNjS0MDC2RFYNlDWoB5qLQZkYAAAA=";Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzI3ODQ6MTY3MDQyMzczOA==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=69f2ab8f-763c-11ed-b408-bbc5eadecc10;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
sleeknotecustomerscripts.sleeknote.com/21837.js
200 OK 447 B URL HTTP/2 sleeknotecustomerscripts.sleeknote.com/21837.js
IP
File type ASCII text, with very long lines (682), with no line terminators
Hash 2fa6ab7509ef8272b87519bb1da2ce04
a9ed1b104985377b5d9df95d29a93bd0f4e4afdf
db954a583d9340e2cd2db803e60537d79051bb9464e326ea68c79567be4c880c
GET /21837.js HTTP/1.1
Host: sleeknotecustomerscripts.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 447
last-modified: Tue, 06 Dec 2022 14:41:34 GMT
content-encoding: gzip
x-amz-version-id: 8T6epH1HOlProbKDmrjePBdXLegdwaaj
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 14:35:38 GMT
cache-control: max-age=60
etag: "2fa6ab7509ef8272b87519bb1da2ce04"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: rQBrU_t0ITTohb0Ng_F-9LZDcu6JMW1KZTP0Uk1_nPe2lwjXnHzfYg==
age: 16
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2cd4e561f1ad90375522bec33bb9c57
94ec018dc1991d5d0b00c2b99c1d52c873ce2d7c
d34d6f434bebd00c1026fdaa7cb7b3fd2c514d681cb7fddfc0627014b9bd7eee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D34D6F434BEBD00C1026FDAA7CB7B3FD2C514D681CB7FDDFC0627014B9BD7EEE"
Last-Modified: Mon, 05 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5430
Expires: Wed, 07 Dec 2022 16:06:08 GMT
Date: Wed, 07 Dec 2022 14:35:38 GMT
Connection: keep-alive
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537574/module_34154732659_header_blog_2020.min.js
200 OK 235 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537574/module_34154732659_header_blog_2020.min.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (323), with no line terminators
Hash 2a7e5f3bcc01e6c375d55187d5fd2696
0b32ac2b3620e9f8a55e1a0f64741f218d00fde1
cb7954b2131c9be67440ec42107061cbee70f4404baf775ce52ea6cdc740c742
GET /hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537574/module_34154732659_header_blog_2020.min.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0b39bd0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"27f842463f6775052915c972c2427f29"
last-modified: Mon, 17 Jan 2022 10:32:18 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 76cd2de9f0213e8c76093c6b346e8118.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: __i_EBvHgOMvSMxS-md8in0OLV3aTB6GD9O_JM4hpsRayWD1Ja8Ocw==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: ixuGzIJ3x/BLwDj/RKry1uk6ibMxP9IPMYbCORrkFM0drN0L21Yadf4Dduj+GLh9MtSRGHi08zM=
x-amz-meta-created-unix-time-millis: 1642415537574
x-amz-replication-status: COMPLETED
x-amz-request-id: DXBN7F6W1XD98EE5
x-amz-server-side-encryption: AES256
x-amz-version-id: ix_bvSgG16La9GbLfFt75_bjQmGevn9X
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=erly0qeqca6Tc86XhskiCZPMLamGxJZNmpKzTNouSz4OJTsf7iGE5cxEdwEcpG9nOeQGZRjJ8T6YehL7zqX0oRfGxDoMABscojXcV68vqYTZ6bPR%2FhOg%2Be%2Bpjej%2BbCwkw6fh3gKVoAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2cd4e561f1ad90375522bec33bb9c57
94ec018dc1991d5d0b00c2b99c1d52c873ce2d7c
d34d6f434bebd00c1026fdaa7cb7b3fd2c514d681cb7fddfc0627014b9bd7eee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D34D6F434BEBD00C1026FDAA7CB7B3FD2C514D681CB7FDDFC0627014B9BD7EEE"
Last-Modified: Mon, 05 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5430
Expires: Wed, 07 Dec 2022 16:06:08 GMT
Date: Wed, 07 Dec 2022 14:35:38 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0f110aa506d1868aa56f2cca97ebbd0b
38b303044906d4274de000be5f141c01450de894
c504dc38ac496f75b9950eeee2975a2fb1d8d6c72543e42544f7ca8af8771b28
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113895
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "638fb1ae-1d7"
Expires: Thu, 08 Dec 2022 22:13:53 GMT
Last-Modified: Tue, 06 Dec 2022 21:18:38 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1ubycCgFT6eSJFVXz_ssDVCVlRxqCwA4YazoPjrE0lgNFWWnJ7yjCA==
Age: 3315
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 113db688124c4e4aa39e693c33719da5
8f031d67d701dc01342c2b1407ac5769f504a417
ca364850449d7dda1d8ec5026cdb84bb5e56cefce12f49452bd3223b34f202db
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140525
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "63902225-1d7"
Expires: Fri, 09 Dec 2022 05:37:43 GMT
Last-Modified: Wed, 07 Dec 2022 05:18:29 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5GcpdaSMxekoPicO99Mu8KaeyAsZNTH0UCZ1T9bzjIbps2ueB4VpIg==
Age: 1154
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0f110aa506d1868aa56f2cca97ebbd0b
38b303044906d4274de000be5f141c01450de894
c504dc38ac496f75b9950eeee2975a2fb1d8d6c72543e42544f7ca8af8771b28
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114766
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "638fb1ae-1d7"
Expires: Thu, 08 Dec 2022 22:28:24 GMT
Last-Modified: Tue, 06 Dec 2022 21:18:38 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mKvwdNznHq39JflY_glPvnfLsL6yU6OzcQlZKO9bh0V2PBT2d-OdZA==
Age: 4186
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:38 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 363902
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash dcc1a9e79044211d41803e15d7fffed9
2ecc6851f07e4b85eabbe45501e085426586d864
580924aaefc8b0072d0500c51fc111f85b7f9782dc19e05d7b894a8e4ba21bac
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157462
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "639051ff-1d7"
Expires: Fri, 09 Dec 2022 10:20:00 GMT
Last-Modified: Wed, 07 Dec 2022 08:42:39 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MOFhFpEDpPc0uqBQWCpueOMREvDpzYozJw4kdDXOuKrtCy6ajMsPmA==
Age: 5841
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-x9C3SunSTkenMKDxEHoIrHvPvjDLJ-u1KOgf3g
200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-x9C3SunSTkenMKDxEHoIrHvPvjDLJ-u1KOgf3g
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-x9C3SunSTkenMKDxEHoIrHvPvjDLJ-u1KOgf3g HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3134253383580293000V10; Expires=Thu, 07 Dec 2023 14:35:38 GMT; domain=.media.net; Path=/;
data-c-ts=1670423738;Expires=Fri, 06 Jan 2023 14:35:38 GMT;path=/;domain=.media.net;
data-c=k-x9C3SunSTkenMKDxEHoIrHvPvjDLJ-u1KOgf3g~~3;Expires=Fri, 06 Jan 2023 14:35:38 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 07 Dec 2022 14:35:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 07 Dec 2022 14:35:38 GMT
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:38 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ&C=1
cf-ray: 775dfd2ec92ab512-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y5Ckuqiuk4zWJL9yrk2qWQAA; Path=/; Domain=casalemedia.com; Expires=Thu, 07 Dec 2023 14:35:38 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1855; Path=/; Domain=casalemedia.com; Expires=Tue, 07 Mar 2023 14:35:38 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1855; Path=/; Domain=casalemedia.com; Expires=Tue, 07 Mar 2023 14:35:38 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DhS4p34DdVOknNCTBbfRXIIdf6BOv16uJe6A%2B%2FLbjV%2FjRRInqm5jbZTNeYSR9xO6hzvaPFNiNuPdtOWg9Qcuv8TAmUvCojMHPVA0A1adMd8X6e7n39c%2BHq8%2BqMnYDWA9%2BCtY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_cm&google_hm=ay1GU1JFNGVuU1RrZW5NS0R4RUhvSXJIdlB2akROOGJzaXR6N3pqQQ
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_cm&google_hm=ay1GU1JFNGVuU1RrZW5NS0R4RUhvSXJIdlB2akROOGJzaXR6N3pqQQ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a5da5425b2c9733b6342b6e5f287c2ab
a90dec5263f75b260d6fe900a93aa8f3b95accba
4377c2319380bce699b5588410fb151e1f5b6423fc73ce45be5b7db6665bbd0f
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_cm&google_hm=ay1GU1JFNGVuU1RrZW5NS0R4RUhvSXJIdlB2akROOGJzaXR6N3pqQQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_cm=&google_hm=ay1GU1JFNGVuU1RrZW5NS0R4RUhvSXJIdlB2akROOGJzaXR6N3pqQQ&google_tc=
date: Wed, 07 Dec 2022 14:35:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 14:50:38 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-S4Swx-nSTkenMKDxEHoIrHvPvjDxsz3t2AnlaQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: image/gif
content-length: 43
cf-ray: 775dfd2f39cbb512-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7P2DROMoqrHvgPAnXmZhLz0HTHUxWqIjcPeA8FTOWcooq5gYUmDPDf%2F%2F3MdHzqHErpaayGDJwfIDqJWM0MLI9FNfC3YTt30XRaVF4JGRgV5D7rJDVn5oCc%2FSnX6CD2PmoohE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-dcyw1-nSTkenMKDxEHoIrHvPvjAm26NkdV1q-w
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-dcyw1-nSTkenMKDxEHoIrHvPvjAm26NkdV1q-w
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-dcyw1-nSTkenMKDxEHoIrHvPvjAm26NkdV1q-w HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 07 Dec 2022 14:35:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 07 Dec 2022 14:35:38 GMT
X-Firefox-Spdy: h2
sleeknotestaticcontent.sleeknote.com/production/package-core-boot.js
200 OK 32 kB URL HTTP/2 sleeknotestaticcontent.sleeknote.com/production/package-core-boot.js
IP
Hash 5e13613780f369539568c026e0ae3b65
0c73f80c7151a7b9ca70164aa8ecf03803af0a22
9ecb3195abb29e02f0525f65d70a1032a8f0b81e3fb3ea3f3adb1a00caba643c
GET /production/package-core-boot.js HTTP/1.1
Host: sleeknotestaticcontent.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 06 Dec 2022 13:42:25 GMT
x-amz-version-id: ZyclEiRsLZjEr5pNdco6EZ9HX.Ql1Vet
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Dec 2022 14:35:03 GMT
cache-control: no-cache
etag: W/"c4151aa9df0c06e05155c364a08d1063"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: i1z_DNKfBrj9A42GerDdk1bOiMNDtRd9um-dt9-R0RSl7kAyUt7pDw==
age: 38
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/im0yfC7j5C4
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/im0yfC7j5C4
IP
Hash 2c2994cf69375cdbf39841fa1062b531
f399acc66f1f7442b70cff72e070fd4f3eb7456c
a2f2a1b09d998bfe90b0694712f7d6524fd8ce44e50f520f625ddaf14c88be4c
POST /s/gts1d4/im0yfC7j5C4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:38 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
insight.adsrvr.org/track/evnt/?adv=66kh74z&ct=0:a1efq05&fmt=3
200 OK 72 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=66kh74z&ct=0:a1efq05&fmt=3
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 5e378559009408f7b2d13f3ff230ee54
209b025c8fbfab05b4263ca77a385ee198b88dba
28f461ce11747c6390422e881f21d7835f9d262a7faa9449a94c4e44fb7bed48
GET /track/evnt/?adv=66kh74z&ct=0:a1efq05&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 02199db0be5314b9689c4849072cb05e
a1d7822f4d3f6919aa8ad8ba318774fc789e876d
6637d639b24e8ca67b161b180920aee0f467e5345317782b9cdcf8599fc20b14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1192
Cache-Control: max-age=125474
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "638fe734-1d7"
Expires: Fri, 09 Dec 2022 01:26:52 GMT
Last-Modified: Wed, 07 Dec 2022 01:07:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 313 B IP
Hash 9343c21914de6ba147d14be44c41f337
ff0adc96b17acb6f25c9fcde5a02c48283997841
65c27ab2ab46f3cd28894f2971edda97566033c2f8aeca067e289b544d45e357
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1078
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:38 GMT
Last-Modified: Wed, 07 Dec 2022 14:17:40 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 1ab7132e-617f-4f05-9426-44b6ace2a963
Set-Cookie: uuid2=3085686971501521625; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 07-Mar-2023 14:35:38 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-3Kg9HunSTkenMKDxEHoIrHvPvjD9bVl5SOrt7Q&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-3Kg9HunSTkenMKDxEHoIrHvPvjD9bVl5SOrt7Q&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-3Kg9HunSTkenMKDxEHoIrHvPvjD9bVl5SOrt7Q&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 8f052d4f888ae4e0626c5f819879cacd
Content-Type: image/gif
analytics.sleeknote.com/?v8=2_pageview&v0=2d83b1fb477fce12526fe158689b4478&v3=2022-12-07T14%3A35%3A38Z&v6=2022-12-07T14%3A35%3A38Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Finfo.insidetracker.com%2Fshift&s9=https%3A&s11=%2Fshift&s12=&s13=&s2=SHIFT+x+InsideTracker&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v21=131b7803-099f-48ff-aac7-1c242d300c93&s1=21837&s3=info.insidetracker.com
200 OK 35 B URL HTTP/2 analytics.sleeknote.com/?v8=2_pageview&v0=2d83b1fb477fce12526fe158689b4478&v3=2022-12-07T14%3A35%3A38Z&v6=2022-12-07T14%3A35%3A38Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Finfo.insidetracker.com%2Fshift&s9=https%3A&s11=%2Fshift&s12=&s13=&s2=SHIFT+x+InsideTracker&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v21=131b7803-099f-48ff-aac7-1c242d300c93&s1=21837&s3=info.insidetracker.com
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /?v8=2_pageview&v0=2d83b1fb477fce12526fe158689b4478&v3=2022-12-07T14%3A35%3A38Z&v6=2022-12-07T14%3A35%3A38Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Finfo.insidetracker.com%2Fshift&s9=https%3A&s11=%2Fshift&s12=&s13=&s2=SHIFT+x+InsideTracker&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v21=131b7803-099f-48ff-aac7-1c242d300c93&s1=21837&s3=info.insidetracker.com HTTP/1.1
Host: analytics.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: image/gif
content-length: 35
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
via: 1.1 google
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: efa31836-5723-4491-8cd0-18eecdf75a05
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash abfe375096bfad484cdbeca1076184cd
41a864ca85b8798975b0bab4891129ff76f4fd55
6e89ad7525e4268ae0dc2f35741b2b3594f91e3242e576bedf6566d03fd09628
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1024
Cache-Control: max-age=143303
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "63902d81-1d7"
Expires: Fri, 09 Dec 2022 06:24:01 GMT
Last-Modified: Wed, 07 Dec 2022 06:06:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 9cf3ccbda3bc6b018f1dee2e36b1706f
8ff67eb73ad0be65572b3335016e88d7eb7c6acf
8d859aa693421fc54385d70644f1157fb2c988fbb25570908fcc8ff3d1cf18e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 884
Cache-Control: max-age=89493
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "638f5bdb-1d7"
Expires: Thu, 08 Dec 2022 15:27:11 GMT
Last-Modified: Tue, 06 Dec 2022 15:12:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 62db0933850c4f1ab6eae6f8999d237c
335b1878afc1b0bc8ad7d42f494b878c9821a6f3
28af4dcc400afd461f7216ae590219652cf3a5596b538026696e50c1ae53f053
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139731
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "63901dfe-1d7"
Expires: Fri, 09 Dec 2022 05:24:29 GMT
Last-Modified: Wed, 07 Dec 2022 05:00:46 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pYtNeA3VObV6y4vE0RjRTZorAdKjXUvcqKWAjZGBv7mdoR-zMtHpJA==
Age: 1423
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-OLj1c-nSTkenMKDxEHoIrHvPvjCD8ZbxCCFaKA
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-OLj1c-nSTkenMKDxEHoIrHvPvjCD8ZbxCCFaKA
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-OLj1c-nSTkenMKDxEHoIrHvPvjCD8ZbxCCFaKA HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 07 Dec 2022 14:35:38 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6735801514269068051; expires=Sun, 07 Jan 2024 14:35:38 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 07 Jan 2024 14:35:38 GMT; domain=smartadserver.com; path=/
csync=79:k-OLj1c-nSTkenMKDxEHoIrHvPvjCD8ZbxCCFaKA; expires=Thu, 07 Dec 2023 14:35:38 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sectigo.com/
200 OK 471 B IP
Hash 9dfb6f98524703cb28aa777c06f8307d
0259f1b07774b87d9bf5d69228f549946a1dd747
7b5ecd4e9bf216f4c71747b9eab5f135a610972adeb28d4f61118fab6decc065
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 13:56:48 GMT
Expires: Tue, 13 Dec 2022 13:56:47 GMT
Etag: "0259f1b07774b87d9bf5d69228f549946a1dd747"
Cache-Control: max-age=515468,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775dfd2f4b4ab4f3-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b7b7de880f8bc49786b374b33898d73
f058f2065e585e245f22e9645d93647e117e49f3
7d335ab945bf6d39e931d15cc1710ad78564c876223e73da367932670bb12008
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123530
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "638fe03c-1d7"
Expires: Fri, 09 Dec 2022 00:54:28 GMT
Last-Modified: Wed, 07 Dec 2022 00:37:16 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8HAJAD1Tiv95_xulugcIFGWBzD0f8cD3jDxpuT4uSTYZ05WES7hkwA==
Age: 1032
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0f822ad5b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=23898528689724636924496548037978285038; Max-Age=15552000; Expires=Mon, 05 Jun 2023 14:35:38 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: A0lXKaBVSVU=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash e2d765e33fd8a4c43c71474455353dd9
fc20d4d1da464956eee7ec36d32f4c83d1d4a159
4993f35d974adf6ad914e6ea5d6310bf78c743122e022bc64b3bf470d18c3197
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 216
Cache-Control: max-age=87747
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "638f57a6-1d7"
Expires: Thu, 08 Dec 2022 14:58:06 GMT
Last-Modified: Tue, 06 Dec 2022 14:54:30 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 884686fa80413218eeb7acabcbf24672
2318eb5d62ec0ba651eda1fbc3159158e8b7c172
3eca5d88c4990f8a582590eb87f1e3382690a1954e0b1c410c4e5cc5f6702d70
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168569
Date: Wed, 07 Dec 2022 14:35:38 GMT
Etag: "63908ea1-1d7"
Expires: Fri, 09 Dec 2022 13:25:07 GMT
Last-Modified: Wed, 07 Dec 2022 13:01:21 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TMJkkKauU07a9CaEApUOkO-OKc5DN8u7mU-jON3Oq6aIBVurtfL3ig==
Age: 1426
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fa073b93078665638ee8c9372bfa9390
c7c2f5a4c5d39e68e7f61b5008c4bbcef4422397
e7b0aa9ef7d544fca18588da8646099830c7099a4b495f31e41eb5de7a2f05e8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7B0AA9EF7D544FCA18588DA8646099830C7099A4B495F31E41EB5DE7A2F05E8"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6023
Expires: Wed, 07 Dec 2022 16:16:02 GMT
Date: Wed, 07 Dec 2022 14:35:39 GMT
Connection: keep-alive
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Pe37v-nSTkenMKDxEHoIrHvPvjCRp7WfC4k92A
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Pe37v-nSTkenMKDxEHoIrHvPvjCRp7WfC4k92A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Pe37v-nSTkenMKDxEHoIrHvPvjCRp7WfC4k92A HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 07 Dec 2022 14:35:39 GMT
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:39 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBLukkGMCEDTLNZIY9uDG-Qk6UWa5Z5IFEgEBAQH2kWOaYwAAAAAA_eMAAA&S=AQAAApXt1sZQWii_rfsHLqm6XQ0; Expires=Thu, 7 Dec 2023 20:35:39 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=419889&utk=3f751eade76e3cf7deada426902fd6aa&__hstc=123974229.3f751eade76e3cf7deada426902fd6aa.1670423737951.1670423737951.1670423737951.1&__hssc=123974229.1.1670423737951&contentId=47847012380¤tUrl=https%3A%2F%2Finfo.insidetracker.com%2Fshift
200 OK 185 B URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=419889&utk=3f751eade76e3cf7deada426902fd6aa&__hstc=123974229.3f751eade76e3cf7deada426902fd6aa.1670423737951.1670423737951.1670423737951.1&__hssc=123974229.1.1670423737951&contentId=47847012380¤tUrl=https%3A%2F%2Finfo.insidetracker.com%2Fshift
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 78ec9c360392f1df7d37eb2a626b8832
0bbe23dd0bea4805ac5da0a0d5886c704b5cfebe
b32e1215f94484ac82f68871124caede2ed82f15adfcd2cff9095420f77c2c7f
GET /lead-flows-config/v1/config/json?portalId=419889&utk=3f751eade76e3cf7deada426902fd6aa&__hstc=123974229.3f751eade76e3cf7deada426902fd6aa.1670423737951.1670423737951.1670423737951.1&__hssc=123974229.1.1670423737951&contentId=47847012380¤tUrl=https%3A%2F%2Finfo.insidetracker.com%2Fshift HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: f4b3ae54-2c05-48e2-93c2-cf8f238e18d0
access-control-allow-credentials: false
access-control-allow-origin: https://info.insidetracker.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=1nIQ53wl41eCt_iLK0lyaxqXBt5SycwaxwfarJS9xtU-1670423738-0-Ad2GC95NUhBXKH3zAKxnhlVGc6abl5bjNQY8JEwsBQt4Km+IYlfsON/q+a4uP32uLMVlIq7/5GEimnZ6Ddj8ikw=; path=/; expires=Wed, 07-Dec-22 15:05:38 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTvDd7iSHGYnJUsC7%2Br6BHXSvkxPT5CvXqVGWyV8Po6yVj86Vwy9PUVFxLzvWlvTMYmdpQxHJx0CJj2OXsJQ0ovHhqkBJhLibzILYRL4t85CMqowo%2FBlg3bAb4H0XMivibEe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775dfd2d7e03b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw
set-cookie: tuuid=02bef412-c1bf-4d9c-9f64-4f2b3cae38d3; Expires=Tue, 07 Mar 2023 14:35:39 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1670423739; Expires=Tue, 07 Mar 2023 14:35:39 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
200 OK 1.2 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
IP
Hash 3e814a84988640ae15c39165e4df0cd3
b88d8b6eac98d93448a2dc0a0f934e92131cf506
28257937f407bd94ef2891fb8f6521b99f2f2460362c00563ae95318203bf3d6
GET /st?ga_tracking_id=UA-24034771-2&ga_client_id=275583067.1670423734&shpt=SHIFT%20x%20InsideTracker&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-24034771-2%22%2C%22ga_client_id%22%3A%22275583067.1670423734%22%2C%22shpt%22%3A%22SHIFT%20x%20InsideTracker%22%2C%22dcm_cid%22%3A%22275583067.1670423734%22%2C%22dcm_gid%22%3A%22623427290.1670423735%22%2C%22mntnis%22%3A%22P7SawAIa6jSgtvwTqFzP%2Bjip09D0%2FukP%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=275583067.1670423734&dcm_gid=623427290.1670423735&dxver=4.0.0&shaid=32784&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Csh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 07 Dec 2022 14:35:36 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=69f2ab8f-763c-11ed-b408-bbc5eadecc10;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
cm.adform.net/pixel?adform_pid=15&adform_pc=k-5quN8-nSTkenMKDxEHoIrHvPvjBIuyCV06DEKQ
200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-5quN8-nSTkenMKDxEHoIrHvPvjBIuyCV06DEKQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-5quN8-nSTkenMKDxEHoIrHvPvjBIuyCV06DEKQ HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 11 Oct 2017 14:26:30 GMT
etag: "59de2a16-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 50d44347480ddbf69ff2e269edb5cce5
33dd3dfeab6f79c528cad49c3ce78c82b2d675bc
5a1afe32968aa9a3c3e2240e7766ebe312b3d017505fe8a8596138ce95ab208e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1034
Cache-Control: max-age=155887
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "63905ea0-1d7"
Expires: Fri, 09 Dec 2022 09:53:46 GMT
Last-Modified: Wed, 07 Dec 2022 09:36:32 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 1d31d718be6377022ac23d56458d6f89
a6bb53788fea848534af4b8397464c373d0b866d
9208e3a85a56c309c7031bc62b76ca5fcd8a981203596e3b9f9ce65b386761d6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 14:35:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Dec 2022 08:45:39 GMT
Expires: Thu, 08 Dec 2022 08:45:39 GMT
ETag: "a6bb53788fea848534af4b8397464c373d0b866d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
id5-sync.com/s/966/9.gif?puid=k-pDr7BenSTkenMKDxEHoIrHvPvjBIIeYEWsy_0A
200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-pDr7BenSTkenMKDxEHoIrHvPvjBIIeYEWsy_0A
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-pDr7BenSTkenMKDxEHoIrHvPvjBIIeYEWsy_0A HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Wed, 07-Dec-2022 14:40:39 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Wed, 07 Dec 2022 14:35:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-bDXCHunSTkenMKDxEHoIrHvPvjBAeMocAdj_-A&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-bDXCHunSTkenMKDxEHoIrHvPvjBAeMocAdj_-A&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-bDXCHunSTkenMKDxEHoIrHvPvjBAeMocAdj_-A&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-UBQqfunSTkenMKDxEHoIrHvPvjB9h25WDgWRTA&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 07 Dec 2022 14:35:39 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBLukkGMCEAnXmF_kVr4DZh_gbbrSDBwFEgEBAQH2kWOaYwAAAAAA_eMAAA&S=AQAAAmpndcqcPP3RMP1e2aMVpDE; Expires=Thu, 7 Dec 2023 20:35:39 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw
200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-ghadjunSTkenMKDxEHoIrHvPvjCZtrAIbvieLw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0d492e21d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: +BHmtU4IRCc=
Content-Length: 59
Connection: keep-alive
ad.yieldlab.net/m?dt_id=8664&ext_id=k-z-NNqOnSTkenMKDxEHoIrHvPvjDwhviBkWd25A
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-z-NNqOnSTkenMKDxEHoIrHvPvjDwhviBkWd25A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-z-NNqOnSTkenMKDxEHoIrHvPvjDwhviBkWd25A HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 06 Dec 2022 14:35:39 GMT
Date: Wed, 07 Dec 2022 14:35:39 GMT
Connection: keep-alive
Set-Cookie: id=f1b04809-22a5-43bd-b7df-efd0244ca96a; Path=/; Domain=prod.svc.y6b.de; Expires=Thu, 07-Dec-2023 14:35:39 GMT; Max-Age=31536000; Secure; SameSite=None
status.thawte.com/
200 OK 471 B IP
Hash 92e078f3076c59137dae77470733c126
43134eef6a45a528530d6710b0618baac8219348
82c36c961246e5642b9bbc34c584cc23eca4466687fa81d57d35d949befb577d
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4533
Cache-Control: max-age=114787
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "638fb069-1d7"
Expires: Thu, 08 Dec 2022 22:28:46 GMT
Last-Modified: Tue, 06 Dec 2022 21:13:13 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
e1.emxdgt.com/put?d=d53&uid=k-24S-5OnSTkenMKDxEHoIrHvPvjBb74GdNA5XwQSmIJOl-Zhs
204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-24S-5OnSTkenMKDxEHoIrHvPvjBb74GdNA5XwQSmIJOl-Zhs
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-24S-5OnSTkenMKDxEHoIrHvPvjBb74GdNA5XwQSmIJOl-Zhs HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Wed, 07 Dec 2022 14:35:38 GMT
content-length: 0
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA&KRTB&23144-uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA&KRTB&23286-uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA&KRTB&23287-uid:k-eepJsOnSTkenMKDxEHoIrHvPvjCayRogQMjWpA; domain=pubmatic.com; secure; expires=Fri, 06-Jan-2023 14:35:38 GMT; path=/
PugT=1670423738; domain=pubmatic.com; secure; expires=Fri, 06-Jan-2023 14:35:38 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:38 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 774462
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e2a880777201cd52592f5649a4763bfc
c0301503c652721b0b3fae742223f4a873456df8
b6cbe7a377078205eca9cf15e5e929affeca110baedcafd7a4c7694c79812a7b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164482
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "63908085-1d7"
Expires: Fri, 09 Dec 2022 12:17:01 GMT
Last-Modified: Wed, 07 Dec 2022 12:01:09 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Nn2d40Ss6bKEv73xAKsZVZGEqXUL9kXC7LolZEHjE37grVuGG37kzA==
Age: 952
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 4a4d131bd7d8c86082311ef51a15aec1
4d0ab3e3ed92eafa5f130bb95be983f548c2af26
3b5e894fb9f5ec86402893a5d6ea151d6948b6220d77889aca066bc2b826c70f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=97285
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "638f7832-1d7"
Expires: Thu, 08 Dec 2022 17:37:04 GMT
Last-Modified: Tue, 06 Dec 2022 17:13:22 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _ZvIV2EsKAbqph4sltXwjjhxN_wFqDZj9oeMya08IzB35e1t-b5bgA==
Age: 1422
ocsp.sectigo.com/
200 OK 471 B IP
Hash eb3ada812f0727a3c3c20655e43c20ab
2766d9dd26318e92c32ec924383ec39a9669b56b
5608fdbb0ddf0610e19db1f02ca3210c89a9bbd530c806c065d0d6e3dd4649d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 03:11:57 GMT
Expires: Wed, 14 Dec 2022 03:11:56 GMT
Etag: "2766d9dd26318e92c32ec924383ec39a9669b56b"
Cache-Control: max-age=563176,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775dfd30dd72b4f3-OSL
sync-criteo.ads.yieldmo.com/sync?id=k-UCbjzOnSTkenMKDxEHoIrHvPvjBsnVrPI7MO4A&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-UCbjzOnSTkenMKDxEHoIrHvPvjBsnVrPI7MO4A&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-UCbjzOnSTkenMKDxEHoIrHvPvjBsnVrPI7MO4A&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g5e4a0559d95b8b5926a%7C1670423739219%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 07-Dec-2023 14:35:39 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-UCbjzOnSTkenMKDxEHoIrHvPvjBsnVrPI7MO4A; Domain=ads.yieldmo.com; Expires=Thu, 07-Dec-2023 14:35:39 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 490b1e5c5cc4b7443ba20caf2a6b450b
c295d33b69b27c4f8762af8267456214218d83de
265a4334c9ea36f14b68cd4c1782f1a746a772fd3b6246792be2ef3610e6f0bc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137014
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "63901441-1d7"
Expires: Fri, 09 Dec 2022 04:39:13 GMT
Last-Modified: Wed, 07 Dec 2022 04:19:13 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4rCh5tQqIeHJouJHGuurVSg41FDUg10sb20sdgLFcPTu_DsdYTmZBw==
Age: 1200
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 490b1e5c5cc4b7443ba20caf2a6b450b
c295d33b69b27c4f8762af8267456214218d83de
265a4334c9ea36f14b68cd4c1782f1a746a772fd3b6246792be2ef3610e6f0bc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137003
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "63901441-1d7"
Expires: Fri, 09 Dec 2022 04:39:02 GMT
Last-Modified: Wed, 07 Dec 2022 04:19:13 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RUYjbsq9LFZz3xjRygspW8CUKi8SHgCK_-fpdJvebbEFG2s5iJ2MNw==
Age: 1189
sync.outbrain.com/cookie-sync?p=criteo&uid=k-WjsZPunSTkenMKDxEHoIrHvPvjB033pPxBs2lQ
200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-WjsZPunSTkenMKDxEHoIrHvPvjB033pPxBs2lQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-WjsZPunSTkenMKDxEHoIrHvPvjB033pPxBs2lQ HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 14:35:39 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 50e7824ef9dbb1d1138077510f8af82b
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-cu99EenSTkenMKDxEHoIrHvPvjC5cdq-TE-xPA
200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-cu99EenSTkenMKDxEHoIrHvPvjC5cdq-TE-xPA
IP
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-cu99EenSTkenMKDxEHoIrHvPvjC5cdq-TE-xPA HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=cb43b18865bdbdd9e94b6ed715650149; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 14:35:39 GMT
content-length: 49
x-envoy-upstream-service-time: 19
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 50596c352614ac34197ef22f2b1751a8
469911ca4a7d9bb4d52cd99b9bb546f1ece549ce
a1f8eab0897f94325f42351c5ab7845d00d045b59710deab89761a2975b9cd81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5975
Cache-Control: max-age=169502
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 14:35:39 GMT
Etag: "63908082-1d7"
Expires: Fri, 09 Dec 2022 13:40:41 GMT
Last-Modified: Wed, 07 Dec 2022 12:01:06 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
errors.client.optimizely.com/log
200 OK 13 B URL HTTP/1.1 errors.client.optimizely.com/log
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://info.insidetracker.com/
Origin: https://info.insidetracker.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://info.insidetracker.com
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Content-Type: text/plain
Date: Wed, 07 Dec 2022 14:35:39 GMT
Content-Length: 13
Connection: keep-alive
static.hsappstatic.net/feedback-web-renderer-ui/static-1.12900/bundles/fetcher.js
200 OK 6.5 kB URL HTTP/2 static.hsappstatic.net/feedback-web-renderer-ui/static-1.12900/bundles/fetcher.js
IP
File type Unicode text, UTF-8 text, with very long lines (15868)
Hash 2a7c954e17a96577276d5005936c6c63
9ac56a90f1babcd744722c0ba8aecb6e0f81dadd
6bb05191075f5ed5aeaa176792bace6cc7992e088646fab6e88260ec08d058c8
GET /feedback-web-renderer-ui/static-1.12900/bundles/fetcher.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 06:20:47 GMT
etag: W/"d03a04401a72b74ef6c2adfa00b24429"
x-amz-server-side-encryption: AES256
x-amz-version-id: Zl0aC32xEw9ZB33FPu_nKhyZiF1su08r
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 752474607e5162b3278b647bb0ff3818.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL50-C1
x-amz-cf-id: AaZBg4yurw6Ao0nKMiYCu4lQrjqywjx-1u039shDZ0IuOHSo9g_zCg==
cf-cache-status: HIT
age: 1314467
expires: Thu, 07 Dec 2023 14:35:38 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPo1tXihIJBfqMPe7e3kA4SPbBJVNA4RsNBUyPE41vQ1rgPPD5d%2BRWP%2FX19u%2FT%2FuA0Nefq8BFTaPGSSxWITK6eG%2Far1M6tc9mbRr8iZ8KZkIFkrawRPG4jJ69IqYmyGjT5fk%2B8uAR4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775dfd2d8997b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 07 Dec 2022 14:35:38 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 516631
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
errors.client.optimizely.com/log
204 No Content 0 B URL HTTP/1.1 errors.client.optimizely.com/log
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 329
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://info.insidetracker.com
Access-Control-Expose-Headers:
Content-Type: text/plain
Date: Wed, 07 Dec 2022 14:35:39 GMT
Connection: keep-alive
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 4efff111dfc11a8ee5d293e618b45f43
9039cc21e1a0f4d45323a6d2fa7d0d7433473d8c
51c357935dfe0f1fda98298758251c3963c5aa6b301229cd18398469fca1166e
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "51C357935DFE0F1FDA98298758251C3963C5AA6B301229CD18398469FCA1166E"
Last-Modified: Wed, 07 Dec 2022 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3566
Expires: Wed, 07 Dec 2022 15:35:05 GMT
Date: Wed, 07 Dec 2022 14:35:39 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 6bd8a970-763c-11ed-baf9-0000ac170317
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/step-icon-3.svg
200 OK 0 B URL HTTP/2 info.insidetracker.com/hubfs/step-icon-3.svg
IP
ASN #209242 Cloudflare London, LLC
GET /hubfs/step-icon-3.svg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/svg+xml
cf-ray: 775dfd0b29a60b69-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"d568c0fbc44019961a53a0d59e2ee72d"
last-modified: Tue, 28 Jul 2020 21:08:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 cc493ed59590651c91f2b3884a8bc9f6.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-32982992015,P-419889,FLS-ALL
edge-cache-tag: F-32982992015,P-419889,FLS-ALL
x-amz-cf-id: A0heC6lsZgzfr0kPhWWUrFcMWszqUYn6Lk2xZnHOycWwU6B4jsKtJQ==
x-amz-cf-pop: CPH50-C1
x-amz-id-2: I8vg0tKGoAerfkxwgzW7pH7QyZAe6PwNvhRuSjlXFjuq/l6SSo1YFtOrhsD9hF0tIVxgrzi44t8sH3+YwCInAA==
x-amz-meta-cache-tag: F-32982992015,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1595970482553
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: QA16ZJ41CRP23WJP
x-amz-server-side-encryption: AES256
x-amz-version-id: F0v2niwZIdTCF3dGo9mi4WiJ3rElDwv6
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o2QGkI7EgcP%2BWjJ%2FwogOYzWbSGxQ3RAEYMS9%2FwhFJ6aE6TaKUecpzrTuQNcfmzWN1tRtvQp048F%2FYfaeS2aeZBScjsNgWtYjPDIBoJ7%2FqeRYL98NrlEPkKrHU7W%2BGv4%2BFgsCnqf7U9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32983601871/1601991084291/module_32983601871_white-section_right-img.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32983601871/1601991084291/module_32983601871_white-section_right-img.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/module_assets/32983601871/1601991084291/module_32983601871_white-section_right-img.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09880b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"8bda943b7c8dbca072994460305acd75"
last-modified: Tue, 06 Oct 2020 13:31:25 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 1814689e6a53bd70e892d4abd59ed626.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: ns-P8x_DOsTzzwkyyCh_drJYh_B_3N_zfBiY5xQIaxNQAh6bQm9oAQ==
x-amz-cf-pop: IAD55-P5
x-amz-id-2: JTKwGR2oGy9WHtEb7StQfh9rjjmRm5NWO3aSyeYSYatFFQ83bigruujwARfSNNDTpdnke2gFu4E=
x-amz-meta-created-unix-time-millis: 1601991084291
x-amz-replication-status: COMPLETED
x-amz-request-id: 6Y60QSHZ4E9M2P1R
x-amz-server-side-encryption: AES256
x-amz-version-id: YtyqBCdRhoQp8dgzkTfheCp_1Ue8CiGH
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OGAABSWy7koqgTNRWb6YlVoWudI5hNLseSTwPmjXQ0epUWSjT71R7ZR35MYbx3HAw%2Bhx%2F3PVqLOHt4ojRUGljx7xTkWcQBnu7JUeNDyFFCs4l34ui4XM1wppofaLMFhvB6hbvVpdLgY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699817425/1574853361879/Coded_files/Custom/styles/components_2019/hide_show2019.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699817425/1574853361879/Coded_files/Custom/styles/components_2019/hide_show2019.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/10699817425/1574853361879/Coded_files/Custom/styles/components_2019/hide_show2019.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09820b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"8855bfe66716197c547426ff4ccfa063"
last-modified: Wed, 27 Nov 2019 11:16:02 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 4a66fbee8ce857225d1bddf53b79420c.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: rNRbUo0Qi4ABlzvz2yRSphrVbUosOFR9A8C5bbsHzF0myFTyjUB-eA==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: jCkH2X8jLr4MT22kPCmSof/pmg/Bcqup0DNqy606DA+Vt8lLhK2PKEa05iK5tW6bdVc4QTvsFS4=
x-amz-request-id: 37NVG3VH3KQXMXZ9
x-amz-version-id: JPhT.klGAb.N.o20IBkTxRzDbr1J5xAq
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tM8EE8Enby7MaD1nDK85mUI8GyTGm0HE3t24%2FwXkR7iFQHbB6hyXiUZhNewJ5VX8DE84THlGV1A6KvJnGvMcDBd%2FCPMNLawc3etdgBLas8OVQpWiPsI8nEhddqV%2FnGT3WyD%2F2pktwSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FSRE4enSTkenMKDxEHoIrHvPvjDN8bsitz7zjA&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 334042
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-34QkeenSTkenMKDxEHoIrHvPvjA1ugESkKhr0A
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-34QkeenSTkenMKDxEHoIrHvPvjA1ugESkKhr0A
IP
GET /sync?UICR=k-34QkeenSTkenMKDxEHoIrHvPvjA1ugESkKhr0A HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:39 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10698842224/1569596317171/Coded_files/Custom/scripts/2019/modules/header.js
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10698842224/1569596317171/Coded_files/Custom/scripts/2019/modules/header.js
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/10698842224/1569596317171/Coded_files/Custom/scripts/2019/modules/header.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0b39ba0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"b6b7a0f87b1b4a49588450f65081dffa"
last-modified: Fri, 27 Sep 2019 14:58:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 de349bd2105a0a744704f391ff854e62.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: NQqQ1UI2S-43kbyNoxiS4Ijppx6m_YtLWlPHUUzpmcSJfn8FDj0jYw==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: t7VgunX0/kZeuy+Ejtq0Fu3g0qGyTH7tX37KoC82wnqczAz6N8Ve6MDgYy/bnTAPvx2pcB911sY=
x-amz-request-id: TD9BRBMRPE7P9CRC
x-amz-version-id: lIGGD2o6durfY8aygQQVydXN_dbzzkwc
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u6IKVuW9vImRBE8wuDa5BQLAkVxO%2BGZvolDwYoNGI%2BVG44NIQhQoaQqixUeoezTvkNY%2FhvetkFUU2gbZRKBmcWrOCgY1wWaeDcQC8eQhPHMzynnRVRALnktSrrUIC6KtvaKMXgStquQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1357789844/1569596314010/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-main.js
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1357789844/1569596314010/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-main.js
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/1357789844/1569596314010/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-main.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0b49c20b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"45c17d1e1d5f47d2b2d213576ad0c1da"
last-modified: Fri, 27 Sep 2019 14:58:35 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 e418fd5667de46c635f0321ea814c2e0.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: 1PwbEG1pds2B5HeMCCoNigkAs6NuLe2ulTXbXBnyWAqo93RougGRkQ==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: u65S2/cg+Ez0T3mi9j5ilD4c1RImHhoGFkXjLkxXSVJ8Me7vcE2eLPRAvwek10rFjnFDY69CL3cr+91g4NDe0Q==
x-amz-request-id: TD93GWBW2AYP0TDC
x-amz-version-id: OIVwrIlLxk5hm947CwnBG.aE2vkgLvSK
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cHGIrAU4fLYGYbO1YDXfdEwmRa6uNXcir%2FemHkJka1S%2BYRw8S4tsLBhXC3jd5upTaJnD1tp3siQojuRjL0p52EbzjSirFosCVbPywMiB7TFRccjm2xiuid%2FPMj%2BEUWm%2FkrJcXMk8c9Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=32784&tdr=&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term=value
200 0 B URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=32784&tdr=&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term=value
IP
GET /spx?dxver=4.0.0&shaid=32784&tdr=&plh=https%3A%2F%2Finfo.insidetracker.com%2Fshift&cb=33896937869748524term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 07 Dec 2022 14:35:34 GMT
connection: close
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/21677327954/1574689269500/Coded_files/Custom/styles/components_2019/icons.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/21677327954/1574689269500/Coded_files/Custom/styles/components_2019/icons.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/21677327954/1574689269500/Coded_files/Custom/styles/components_2019/icons.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b299d0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"c9034dc9bb5686dd90c8ed7b8a670dc6"
last-modified: Mon, 25 Nov 2019 13:41:10 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 349b149961d8d2361c29d4be4b5847f2.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: ahsMOmPphHEmS_ExTiNdR1c-8pmMFIXww5t3_dyEb5CErdlkgeKRKw==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: fMeBALWg5nXBGvLEA/oUNhMswnL/KU51vLWyrlCp4Gqth13o+KygYoV4LK+eZKEgpSNZrPtqwk0=
x-amz-request-id: 8QTFPAVX9WNJTVC7
x-amz-version-id: DwmHBYhfgEjioN3ibokqBhcWEYcXzrw_
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XSz3%2Ba5rSQXCqJkpUuY2OvDHkedTUL%2FstfzbrFtkeiz7VpD7ZLb6LLZJOPF584BUIg1f5KM%2FMZeMHYmJdQN8VfHiJHOzNADkLA9oOe7qXXMPFBRuYo1yI1d6FVqDnvrso3RzpTONkvo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 93858
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
info.insidetracker.com/hs/hsstatic/HubspotToolsMenu/static-1.138/js/index.js
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs/hsstatic/HubspotToolsMenu/static-1.138/js/index.js
IP
ASN #209242 Cloudflare London, LLC
GET /hs/hsstatic/HubspotToolsMenu/static-1.138/js/index.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:32 GMT
content-type: application/javascript
cf-ray: 775dfd0a58d20b69-OSL
age: 11402244
cache-control: public, max-age=31536000
etag: W/"0d86ec7be24f2dff2308b8edf54c2f32"
expires: Thu, 07 Dec 2023 14:35:32 GMT
last-modified: Wed, 27 Jul 2022 14:35:54 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 9185d752d6f0456185fc3ff8fe29c34a.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: Tv-P7H9DsBBtIRBWHUhuMxVyw4vho5khyLbmwwq72AL0vsyOH_Fv8A==
x-amz-cf-pop: CPH50-C1
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: k79.hN9WG526nViFF800Vr3DxQF_q.yo
x-cache: Hit from cloudfront
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VhG%2FqPaoltBxmL66f%2FsPrV99lZMyuB8HG6iUr2Zc8NFYao%2FPGgPTgPhIYvxANirddYsKejEm1NU2bvq45qrQgOI%2BeKdUNY7xZoTUx50FmZDA%2B2HafE3CxAg2XvGIWELxoMbVaGPjSnk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=CtQa6TjAREgFq0TQZoapABhKrrJwz9rNqaRE50lq18M-1670423732-0-AV1FgxI3ye3w6SAcwPdW37sY4mUZrOxpWgSvYt+8kYGxGPjhqE8DEck/L4x0bssSSzxokt5vLu7LpUh/E1Xt+Po=; path=/; expires=Wed, 07-Dec-22 15:05:32 GMT; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
__cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732; path=/; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/step-icon-4.svg
200 OK 0 B URL HTTP/2 info.insidetracker.com/hubfs/step-icon-4.svg
IP
ASN #209242 Cloudflare London, LLC
GET /hubfs/step-icon-4.svg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/svg+xml
cf-ray: 775dfd0b29a70b69-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"203a24f7c70e740965282cc4438967f7"
last-modified: Tue, 28 Jul 2020 21:08:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 0b29dbae3ec4657017234abf5689a8f8.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-32982990456,P-419889,FLS-ALL
edge-cache-tag: F-32982990456,P-419889,FLS-ALL
x-amz-cf-id: Aa3v3p67qSpOSZ0LvfhLKcWYPzrX6PoOzYjrbSUcuxPR1godFoiqHg==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: A9H9oTVKDCeBwsLrt/TobyZ2eYjW83wnoP0l5Ga39vEYK1nVCtV2+KVaxz4aXDCHGRGE3icfHDQ=
x-amz-meta-cache-tag: F-32982990456,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1595970482552
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: NN6WA8WPTJTP9FZV
x-amz-server-side-encryption: AES256
x-amz-version-id: RWzxixshAMkzXfN80GiZnfOSR.yNpdyF
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PAoAO%2Fv7mhe3s6AOT4X6WWAqKg2%2B7MkBNwNYfLulBTE7ssllbGcJ94dK2zCRszP%2FSzfejNmiTr3HmsxJv3%2B86hIwK2NIMc8l8r9QRMfxA15G%2F932lFkE66WM57H4Qs1RxXGlA8wPoo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32982432378/1612794479232/module_32982432378_gray-section_left-img.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/32982432378/1612794479232/module_32982432378_gray-section_left-img.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/module_assets/32982432378/1612794479232/module_32982432378_gray-section_left-img.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09870b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"f4d91b8f5a04df345c5d6b63a873c7ea"
last-modified: Mon, 08 Feb 2021 14:28:00 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 349b149961d8d2361c29d4be4b5847f2.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: cfwwUMg48k71DNzsJPdiZt_EKC8KUsmQIE57n5QmYRhQYeARPXNK1g==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: TiU6/DiYK7Vifk0g2aUG0G4ZB0bOz0dKns3snlgkHREbL+zseHYk6NUWETLABXtxec88/cjrJcE=
x-amz-meta-created-unix-time-millis: 1612794479232
x-amz-replication-status: COMPLETED
x-amz-request-id: QF655D3A1C6NVXX6
x-amz-server-side-encryption: AES256
x-amz-version-id: MEL7XP5YQgMihujMmkO_CMsgOFO_scX3
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xin1SRNBDkKpYi4kQknshte%2FgkZGDRYD1FoBzCPpM201gMwm2%2BxWXUEncl8%2FR6gSERtou%2BVsyC%2Bf%2F8hKH2nhqP3uQ09UHUPz%2BewXLmJU255U0egiEqBFyoIKdIAollMPoanoUcwKdXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: text/javascript
last-modified: Tue, 08 Nov 2022 15:05:46 GMT
etag: W/"636a704a-a8d9"
expires: Thu, 08 Dec 2022 14:35:35 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
IP
GET /css?family=Open+Sans+Condensed:700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 14:35:33 GMT
date: Wed, 07 Dec 2022 14:35:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sleeknotestaticcontent.sleeknote.com/production/package-tracker.js
200 OK 0 B URL HTTP/2 sleeknotestaticcontent.sleeknote.com/production/package-tracker.js
IP
GET /production/package-tracker.js HTTP/1.1
Host: sleeknotestaticcontent.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 06 Dec 2022 13:42:25 GMT
x-amz-version-id: K89OLTXUwxC5S0VCaWD3FgXSU0uUQUyD
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Dec 2022 14:34:57 GMT
cache-control: no-cache
etag: W/"dea284a3de51d3561b3488c7390a675f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: K36MiGaGRDp394zb6xiubHch1zF-tSLTBTi2kjwekciMJ7xP7DF4XA==
age: 42
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Dec 2022 06:43:00 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: T1IjqsvgSmawtyw.pCqFWdAGnSoGFmJW
etag: W/"8f439d2ed98f003d67aea552f3341836"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6b29c936420d116b13807604a0e67044.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: TgShLvI7nQk9G4_gqm8xdCpsFV5jAMQafQM2YEtRKGhCC5W-gg7byQ==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11476/bundles/project.js&cfRay=77573909cc7e95f1-IAD
x-hs-target-asset: conversations-embed/static-1.11476/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 775dfd131fc3b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-scripts.com/419889.js
200 OK 0 B URL HTTP/2 js.hs-scripts.com/419889.js
IP
GET /419889.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BDAABB8E56314CC23AD79688DD607BD0049FD1510000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 24bffaae-a1fe-43f8-8616-11afcb24fff5
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://info.insidetracker.com
last-modified: Wed, 07 Dec 2022 14:29:42 GMT
cf-cache-status: EXPIRED
expires: Wed, 07 Dec 2022 14:36:33 GMT
server: cloudflare
cf-ray: 775dfd0b68381c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699816207/1569596309842/Coded_files/Custom/styles/adjustments2019.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699816207/1569596309842/Coded_files/Custom/styles/adjustments2019.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/10699816207/1569596309842/Coded_files/Custom/styles/adjustments2019.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b19990b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"7c2c5062a632c6b949bd0e176c7f19be"
last-modified: Fri, 27 Sep 2019 14:58:30 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 dd8234c537f24852341189e294a7180a.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: N0y8bxkeRIJfx3qflUYBNeDnhCQHnIKAzsp3dLmAQnGSyhZGWVAIIg==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: KbLyQe1icBiSctflDFKD9OHwBBk1GGNkNLUKTsDvbYaE9pWznMVQNTwO9d1RO5bEXSsM1HdfJn0=
x-amz-request-id: B96ZB3W7WR3QYGB7
x-amz-version-id: 5EZ5RM2MwPiYj6CX1rKdx_phOJ7I1jTP
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BMG%2FkFgPP2n%2BAfMvStUWJrnofnuka3z1r58WqITurZtCkRE1Uil5trBg1CTlhWSDyjEtws371f9gwf0oIwqiKMa4wseE3XqT6p0ukvS6yVTu1Usiqvz%2F4aIDrLadc93ixNlPtpTHMu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=Wz7wCl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czdrRG5Vd3c4ZDNiU2hubFZ5WDY0NGZpNm9SYTIydUtTd2J2JTJGU1JKTnMxRg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=BYm19V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czdrRG5Vd3c4ZDNiU2hubFZ5WDY0NGRkMlpHYSUyQk03U3FCaVVrYnRsY1o2VA; expires=Mon, 01 Jan 2024 14:35:35 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 280306
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537668/module_34154732659_header_blog_2020.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537668/module_34154732659_header_blog_2020.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/module_assets/34154732659/1642415537668/module_34154732659_header_blog_2020.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09830b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"b685ed194907e2431f0f376e643b6437"
last-modified: Mon, 17 Jan 2022 10:32:18 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 49f322be3af49b998559c8c7dffadf10.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: p6AYU-r40JN82vO-6o4Bk6uH3V9_XzIWzQ3BxFdIqpIgRNijbmoH_Q==
x-amz-cf-pop: IAD55-P5
x-amz-id-2: thyxIsYTNrz0kue7JSA1bsuGR0tLHjxalnrTsZwlEHLNsy3lX9yA45LcDIn0mmSXi0QCBSZzB5I=
x-amz-meta-created-unix-time-millis: 1642415537668
x-amz-replication-status: COMPLETED
x-amz-request-id: 5QCTGT7A1A0NX1SK
x-amz-server-side-encryption: AES256
x-amz-version-id: rw0WyO5gSPAwnlW5Y3Zfv.cOhZ240YjF
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eTZjXyOY%2FVjeAojz4IflMGmBgOicYxYDGB%2BWJRCckv2LrK2EeOfs3ZMD5LCuxGZYxph3BjeyhLUG9L4nbQoDuCduxbpyxTD5074%2BHULFQQgBmGyXj%2BIJQJOQRszXrmrP1ibcxftsGSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.upsellit.com/active/insidetracker.jsp
200 OK 0 B URL HTTP/2 www.upsellit.com/active/insidetracker.jsp
IP
GET /active/insidetracker.jsp HTTP/1.1
Host: www.upsellit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: application/x-javascript;charset=ISO-8859-1
vary: Accept-Encoding
expires: Thu, 08 Dec 2022 14:35:34 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
info.insidetracker.com/shift
200 OK 0 B URL HTTP/2 info.insidetracker.com/shift
IP
ASN #209242 Cloudflare London, LLC
GET /shift HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:32 GMT
content-type: text/html;charset=utf-8
cf-ray: 775dfd024f220b69-OSL
cache-control: s-maxage=7200,max-age=5
last-modified: Wed, 07 Dec 2022 14:35:32 GMT
link: </hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>; rel=preload; as=script, </hs/hsstatic/HubspotToolsMenu/static-1.138/js/index.js>; rel=preload; as=script, </_hcms/forms/v2.js>; rel=preload; as=script
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: false
cache-tag: CT-47847012380,P-419889,L-32989230629,CW-10192619343,CW-32982432378,CW-32982796024,CW-32983601871,CW-32989230686,CW-34154732659,E-10698568655,E-10698842224,E-10699814981,E-10699816207,E-10699817425,E-10699819834,E-10936765513,E-11119676992,E-1353406436,E-1357789844,E-1357789879,E-21676450621,E-21677327954,PGS-ALL,SW-3,GC-26626317741,GC-34154921109
content-security-policy: upgrade-insecure-requests
edge-cache-tag: CT-47847012380,P-419889,L-32989230629,CW-10192619343,CW-32982432378,CW-32982796024,CW-32983601871,CW-32989230686,CW-34154732659,E-10698568655,E-10698842224,E-10699814981,E-10699816207,E-10699817425,E-10699819834,E-10936765513,E-11119676992,E-1353406436,E-1357789844,E-1357789879,E-21676450621,E-21677327954,PGS-ALL,SW-3,GC-26626317741,GC-34154921109
referrer-policy: no-referrer-when-downgrade
x-hs-cache-config: BrowserCache-5s-EdgeCache-7200s
x-hs-content-campaign-id: c0856458-6b50-4c5f-a7bd-53d6f472cb08
x-hs-content-id: 47847012380
x-hs-https-only: worker
x-hs-hub-id: 419889
x-hubspot-correlation-id: b5a6f677-ccb4-42a9-8dc0-eb5e5eab1a74
x-powered-by: HubSpot
x-trace: 2B399558164A6C40FBDB3299734858871F3288C5A3000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7JRNMnTr9mYEy0aQMZRlull1YOXCn4ce%2F5FJ%2FCC4WDxfLtrGul8vILVrkTLhWt3nOGgjhG%2BM5%2FHrNYJdayxrm7AhkGGBXV9qkTCwacGLw80%2Bk%2FNtGM4nxYlF7pXmnp%2BXt%2FQGqJmtZ%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; path=/; expires=Wed, 07-Dec-22 15:05:32 GMT; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
__cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732; path=/; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>,</hs/hsstatic/HubspotToolsMenu/static-1.138/js/index.js>,</_hcms/forms/v2.js>
X-Firefox-Spdy: h2
cdn2.hubspot.net/hub/7052064/hub_generated/template_assets/1670411345901/hubspot/hubspot_default/shared/responsive/layout.min.css
200 OK 0 B URL HTTP/2 cdn2.hubspot.net/hub/7052064/hub_generated/template_assets/1670411345901/hubspot/hubspot_default/shared/responsive/layout.min.css
IP
GET /hub/7052064/hub_generated/template_assets/1670411345901/hubspot/hubspot_default/shared/responsive/layout.min.css HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b4a630b55-OSL
access-control-allow-origin: *
age: 12329
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"94daf62e7e6df83595c6251fb0c7c055"
last-modified: Wed, 07 Dec 2022 11:09:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET
x-amz-cf-pop: IAD55-P1
x-amz-meta-created-unix-time-millis: 1670411346513
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UFX4wMwr%2B47X79g896k0nJqzYur5IAGP7gTTsSPoAdS1uyDbOxM1ovbifLocRu7cEe2cAOo3CVjybM8GyDH2HwDIKc1J1DyrJ1UAU05sK3D1p25nfntJUavQUo8VIzvDlzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1357789879/1654230997759/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-style.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/1357789879/1654230997759/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-style.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/1357789879/1654230997759/Coded_files/Custom/page/Segterra_August2014-theme/Segterra_August2014-style.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b19980b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"093fdeef18c320e80f83cdfb2e56f308"
last-modified: Fri, 03 Jun 2022 04:36:38 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 a0788dc6a48d56ff490dfc05e450fb46.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: 1o-lTsz2_hlU2IQ542yyGx81_dRDLP6r8EjwUg80PO_54waHywlr2Q==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: TXeHziNWCQBsztewpBQNxyoo6grgrqsH/+WMUaJhVhnB/uT6rpXB6eY4bgC/e7CGGFgBjDy9Rmk=
x-amz-meta-created-unix-time-millis: 1654230997760
x-amz-replication-status: COMPLETED
x-amz-request-id: 5R1NDTAD5KVZ36PM
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: L8IZwBs0z7fZ6ZBNYaMAov6Y2XJRgXqV
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TwN0Cn03qApKh6SrIwm89HWAg9XMqWbt6PzHImBpZ11lMw2Wby7G0X42KrykfzNV%2Bl7jv%2BHTvSXSC1mbB32gfeimne6kormshHvdLbAhwGVWiMNbmm06TDX5rNSEhBfOwEWmry0JZos%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699814981/1569596308959/Coded_files/Custom/styles/components_2019/link.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699814981/1569596308959/Coded_files/Custom/styles/components_2019/link.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/10699814981/1569596308959/Coded_files/Custom/styles/components_2019/link.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b09800b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"977f6c06c704f737e4fcd486abefe870"
last-modified: Fri, 27 Sep 2019 14:58:29 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 b9d1b307966c2273bf97ed7c681603da.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: YQAVvwlkl-CWqt8mrx56eNTfgTYBCTRfCalg_Bgv44fy0SaaBemo0w==
x-amz-cf-pop: IAD89-P1
x-amz-id-2: 4ugWhvm51wbQUG/U3oQsVg7GUHN/T03PE3JQxrdiqRCZNpm30x0mgQnTQJJOtZ4EMzBjE1GxaLI=
x-amz-request-id: 8QTC556HXFP1WRVJ
x-amz-version-id: Kq7rHJ74RPakxkU3O2eiNuxvCUpIO8m7
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Viqfxk7Qga2ExisMU9bkN2HmPpejiB0trdSi7sDG8jbabsRP5m2smap3XEWrmPpxoGGnMXonZwixD6FfAUyEZnJFIwjVFx5odDoAgVwxA%2B7WIX1HwGza1CPrixudXdVGzr4AM%2FJ%2BL70%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 88324
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-lfiYh-nSTkenMKDxEHoIrHvPvjAf53PBrv8uAMBK-l2GETlL
200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-lfiYh-nSTkenMKDxEHoIrHvPvjAf53PBrv8uAMBK-l2GETlL
IP
GET /usersync/push?partner=criteo&partnerId=k-lfiYh-nSTkenMKDxEHoIrHvPvjAf53PBrv8uAMBK-l2GETlL HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:38 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%226b303470-763c-11ed-9657-9fc1177836fb%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Dec 2022 14:35:38 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%226b303470-763c-11ed-9657-9fc1177836fb%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Dec 2022 14:35:38 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%226b303470-763c-11ed-9657-9fc1177836fb%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Dec 2022 14:35:38 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%226b303470-763c-11ed-9657-9fc1177836fb%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 21 Dec 2022 14:35:38 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-lfiYh-nSTkenMKDxEHoIrHvPvjAf53PBrv8uAMBK-l2GETlL%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 21 Dec 2022 14:35:38 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
cdn2.hubspot.net/hubfs/419889/sprites/sprite-social.svg
200 OK 0 B URL HTTP/2 cdn2.hubspot.net/hubfs/419889/sprites/sprite-social.svg
IP
GET /hubfs/419889/sprites/sprite-social.svg HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.insidetracker.com
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:34 GMT
content-type: image/svg+xml
cf-ray: 775dfd1269ca0b69-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"3781456ecc0d19f88306ce1fd4a43179"
last-modified: Thu, 21 Nov 2019 17:10:13 GMT
vary: Accept-Encoding
via: 1.1 78c7e5b1be457bfecc477642c3ddd802.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-21684537459,FD-21670945393,P-419889,FLS-ALL
edge-cache-tag: F-21684537459,FD-21670945393,P-419889,FLS-ALL
x-amz-cf-id: 7_cEFpM_0NyloOmx5kUQbzdfHxzPiYB-tbVX1eVdC-9bDJCMqoKJUw==
x-amz-cf-pop: LHR3-C2
x-amz-id-2: 3f6GXl4FEO9BNsJBs7skZ0Xt0kZk7euQ7tOmd47wSBSpisuezfOMIr/vbeTBo4uYsURHEH8MusE=
x-amz-meta-cache-tag: F-21684537459,FD-21670945393,P-419889,FLS-ALL
x-amz-request-id: Q1ZMQJ16JBV0TS35
x-amz-version-id: Hnoi.s2QyFOzsLQlS9NsR00qngZPfJmb
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HvcwGTRUvDhEEKHXwYxjjj5%2F7Ebj%2F4VbPwgNCzz0XdEYTjddd7wF30RnCefHMQMB4vF6jJn%2BkbYcwogwU6ZQsgTlUGpvyB8GougG4UmRlnbcW4xEf4TCzhVc3%2BYuXJHYy1k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
info.insidetracker.com/hubfs/step-icon-2.svg
200 OK 0 B URL HTTP/2 info.insidetracker.com/hubfs/step-icon-2.svg
IP
ASN #209242 Cloudflare London, LLC
GET /hubfs/step-icon-2.svg HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: image/svg+xml
cf-ray: 775dfd0b29a40b69-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"8608a1d15a7e664fc6a3ebaa40230114"
last-modified: Tue, 28 Jul 2020 21:08:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 0562d7d213bde9a129ec458c631f9cee.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-32982667347,P-419889,FLS-ALL
edge-cache-tag: F-32982667347,P-419889,FLS-ALL
x-amz-cf-id: SDSeJlggFx9IlH1yTob4fCHhrxjhcAuaOMFG7LvkEfOgOOV2HFWR3Q==
x-amz-cf-pop: CPH50-C1
x-amz-id-2: m43kKR8R9xyfFIkbSCdoA4QkN0MlUmtZ1qMaQoCZ/k7RCyxkkITQIAqXXd51RlhOR+/HeAfQ+b0=
x-amz-meta-cache-tag: F-32982667347,P-419889,FLS-ALL
x-amz-meta-created-unix-time-millis: 1595970482554
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: BBEVM4Z1H9P6ZN7R
x-amz-server-side-encryption: AES256
x-amz-version-id: 3tkT6W5WsqBL1Naxh0DkKB4kYYfLJZrV
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
x-robots-tag: all
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EWOZxH3LtIwvCaQ5YVdDAXTMTmFHbsSG1itu0jDKAyrFEAjE569gVxgsQNWl3NYmiOnmIZBauThAHCEVcOOnD375Zo5TyMrHsdun0aimYw%2BYoB%2BBofIazCdjXC1aCA7Q12QOY0wrn9s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699819834/1569596309294/Coded_files/Custom/styles/components_2019/button.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/template_assets/10699819834/1569596309294/Coded_files/Custom/styles/components_2019/button.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/template_assets/10699819834/1569596309294/Coded_files/Custom/styles/components_2019/button.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b097d0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"a051db99eca6f23789b3a1b7ed2728d8"
last-modified: Fri, 27 Sep 2019 14:58:30 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 3718533b4f5d67c52ce24dc2e8ef04b4.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: yEClPlYnk0hhSeKln3jzBpGrjLPnhJQ9pesPyXTUmJttBy4xcMKD4w==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: pEt5FGzk8b5wBB0jKqDIt+GMI+Q7gAsvkpuEy1r+ceUJwvRt7IC/h7HqYy9d0eENsTifDBfKyvA=
x-amz-request-id: FMY8JNV1N7W3QAD1
x-amz-version-id: .XQmmdQQKGujOerRH4a66Fk8PF_1Sib2
x-cache: Miss from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=325S%2F7S1TSlJAJ%2FG1est54t0MeKhB3H0K0x8Lx4XjssfXUYpEwacToK7xdVyWPAQOWDPy1c8h0GgqLYOoe53zDStgSHdPHP2Sp9AQxau0xCsNHnXkY4faR3h4vjidk0yGR%2Bl7b4hcZ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dev.visualwebsiteoptimizer.com/j.php?a=483215&u=https%3A%2F%2Finfo.insidetracker.com%2Fshift&f=1&r=0.6468834724013661
200 OK 0 B URL HTTP/2 dev.visualwebsiteoptimizer.com/j.php?a=483215&u=https%3A%2F%2Finfo.insidetracker.com%2Fshift&f=1&r=0.6468834724013661
IP
GET /j.php?a=483215&u=https%3A%2F%2Finfo.insidetracker.com%2Fshift&f=1&r=0.6468834724013661 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:36 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sleeknotestaticcontent.sleeknote.com/core.js
200 OK 0 B URL HTTP/2 sleeknotestaticcontent.sleeknote.com/core.js
IP
GET /core.js HTTP/1.1
Host: sleeknotestaticcontent.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Tue, 06 Dec 2022 13:42:41 GMT
last-modified: Tue, 06 Dec 2022 13:42:27 GMT
etag: W/"1b28f833c261b020dacb7d20f7a37596"
cache-control: max-age=604800
x-amz-version-id: WqM90PuzDi8z__NeiYkpT7Mbs1n2JB0i
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JeWKfKICyVJE1uBtzUi46qLMCp3Xn441NDylk37KiA6u1CWuC-jHcw==
age: 89578
X-Firefox-Spdy: h2
info.insidetracker.com/_hcms/forms/v2.js
200 OK 0 B URL HTTP/2 info.insidetracker.com/_hcms/forms/v2.js
IP
ASN #209242 Cloudflare London, LLC
GET /_hcms/forms/v2.js HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:32 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 775dfd0a58d30b69-OSL
access-control-allow-origin: *
age: 484
cache-control: s-maxage=600, max-age=300
etag: W/"3b6979d7ec112db3eb4cdf45fe71918d"
last-modified: Wed, 07 Dec 2022 09:43:10 UTC
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 1b0f041f103652001e37f5806000d24a.cloudfront.net (CloudFront)
cf-cache-status: HIT
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=forms-embed/static-1.2450/bundles/project-v2.js&cfRay=775c5d44428b0a2d-IAD
x-amz-cf-id: OJhN9reyn4LErYU4ir1hO_4cU7PniSDOAHDjWc9xAgTefF0hsntntA==
x-amz-cf-pop: IAD55-P3
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: 7gZlvElh.xtgvB0Jk1d46UighAwbsZ6P
x-cache: Hit from cloudfront
x-hs-cache-status: HIT
x-hs-https-only: worker
x-hs-target-asset: forms-embed/static-1.2450/bundles/project-v2.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8KCG9b%2FBVA3chrNbxCmbZnkHH0uj8Hq7i%2Fr29UN21fOsWDggcX3cF1oiLcenTE85elsglkk47WescalSouCeKGSwI2xkfHYg4C%2BJPXPOsF9rpuYN%2BFxCT7LCeRqA0A%2FE5EMw6sYNlM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=TJ9OF4VyqKBxWSrkslSUl3XXPBMnbk6LMJXhXokXse8-1670423732-0-AZq3J/CSsdGDSvm7Pq8HFLrVTncxRPjzpoMDy5DABJvRCr5OUWQ5xbAsdokDho7J7RfL+vOY1/EcfoA3nbDNSI8=; path=/; expires=Wed, 07-Dec-22 15:05:32 GMT; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
__cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732; path=/; domain=.info.insidetracker.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/10192619343/1659361872396/module_10192619343_footer_blog_2019.min.css
200 OK 0 B URL HTTP/2 info.insidetracker.com/hs-fs/hub/419889/hub_generated/module_assets/10192619343/1659361872396/module_10192619343_footer_blog_2019.min.css
IP
ASN #209242 Cloudflare London, LLC
GET /hs-fs/hub/419889/hub_generated/module_assets/10192619343/1659361872396/module_10192619343_footer_blog_2019.min.css HTTP/1.1
Host: info.insidetracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.insidetracker.com/shift
Connection: keep-alive
Cookie: __cf_bm=KXaiEC7T0kZxYCnKOn0lWoV8ZfPTuuRg18YVK2_0oPs-1670423732-0-AUr8AzipcXAd8aMgAyB9SfIyXy2qIwBVEOj0eS+XtnQQ0AeLY/MwEQKG4j0aBjkYfnP0Rsyes4pbj4iOVuGJ7jI=; __cfruid=516dcc89e38cd0865f705278339a0a61f2ed1054-1670423732
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:33 GMT
content-type: text/css
cf-ray: 775dfd0b198a0b69-OSL
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900, s-maxage=31536000, max-age=31536000
etag: W/"0280115a513e35a09af99d8020f3ba11"
last-modified: Mon, 01 Aug 2022 13:51:13 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 b2179245b8d8ae2b245dd8946895eb1e.cloudfront.net (CloudFront)
cf-cache-status: REVALIDATED
access-control-allow-credentials: false
x-amz-cf-id: QUvgKkcrB18FtYkaZaQ82BJujQQIgERoYKiw1TXz1yaRnifaTXtCaQ==
x-amz-cf-pop: IAD55-P1
x-amz-id-2: fDzDV0oE3eKCivAVPQuIL60AMHmq0saljdqCB4PeyK/STtxVuXkphl6xuEyLSL0gFgedYMUeqdo=
x-amz-meta-created-unix-time-millis: 1659361872396
x-amz-replication-status: COMPLETED
x-amz-request-id: B96HT1RPJ9KC1E7F
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: EQV6q.L5DE2h5causX44XpLpdVrxvF4G
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-hs-https-only: worker
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k7kB%2FccX4uo1YDPNTKZPjNJcNBHzLmjCodcjBHrRO574j9wVwXxQKDiFxLgwxUBp%2FoCbjKceK4Mj%2BXvRroXyZ2z2lzjIdCZy%2B6OtBbyWgCXd8%2BwCci7bjwh%2BAGrlfQixZ%2FM4MXGUeIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=info.insidetracker.com&origin=onetag
200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=info.insidetracker.com&origin=onetag
IP
GET /syncframe?topUrl=info.insidetracker.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.insidetracker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 14:35:35 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=f62e5647-ca44-4646-afa1-c4a470b52121; expires=Mon, 01 Jan 2024 14:35:35 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 593139
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
35.153.107.51
104.17.214.204
23.43.133.70
178.250.0.157
23.36.76.226
37.157.4.25
185.64.189.110
3.66.45.161
54.194.137.201