www.funguselixirs.life/12003-217-5703-7446782/jacinto/tindex2.html
104.21.71.167 838 B URL www.funguselixirs.life/12003-217-5703-7446782/jacinto/tindex2.html
IP 104.21.71.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1a86ff84920498ff8b248c1cdff16544
bee2dd43043706be78e5ad6acaaa25f5b2945cfa
0d7fc819d33facb9d06d45cd17509a385c7bd4c26df3444dcc3290de6acac24d
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /12003-217-5703-7446782/jacinto/tindex2.html HTTP/1.1
Host: www.funguselixirs.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KZ5cH142h23oW%2BVL5FLUynhprYjJQZttFnwF7vRGW6VliafUHMzEJvOw3pJK6FvipCDTZqmeKTasq6Wj0hMgTXCe8oOL25UqgynjtGzVthVctFUnDSbfigExct4O6oYAsyp3Lxj67kLr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c1e84f98d52b511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 17cac047f503e9e8bf1818f4271c9b78
0aa3f3adbeb5649f345dc9d0be12f1e2381a98df
52a6e1bc3e2c1281f2ca2c53888cc785b4a00f7e065fc9f0441a2e2ae94e8b91
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
142.250.74.106 33 kB URL ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32089)
Hash bf899cc5ba60c522341e4d712a5246bf
2c92c54c9919c8b81b4e77a97bfd4d8f202e1a6a
4f8b9bf1630c24cf17444ec093052451c370c9371212db74b4bf8b4fd71a2817
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.funguselixirs.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 00:12:42 GMT
expires: Fri, 03 May 2024 00:12:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 20823
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.funguselixirs.life/ajax/get_js/main/
104.21.71.167 721 B URL www.funguselixirs.life/ajax/get_js/main/
IP 104.21.71.167:0
File type ASCII text, with CRLF line terminators
Hash 68ff9b89e802e92d13aacc616e51a12c
e63ae02b454fbf8bc3f3e86997c5f0f1d779ad18
2e6b7ba3eec9a60b566cdd3f208eab34357c10fe75222f892dfebf13136eb534
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /ajax/get_js/main/ HTTP/1.1
Host: www.funguselixirs.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.funguselixirs.life/12003-217-5703-7446782/jacinto/tindex2.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:45 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QBhw4XaKscWj4otR3f2J542nXttnOBIBYDZ7jROq5SxqPhruPiGEYYasDmy3ugTvpSomJwaezRuyJxTIUT818zJ9W0vGhAzmHdbWtIs%2FlcfBXpPLWZh3J%2FaT3XRNd12rUZSpmLYUJq1z"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c1e84fc189ab511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 17cac047f503e9e8bf1818f4271c9b78
0aa3f3adbeb5649f345dc9d0be12f1e2381a98df
52a6e1bc3e2c1281f2ca2c53888cc785b4a00f7e065fc9f0441a2e2ae94e8b91
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.funguselixirs.life/ajax/get_imgl/loading.gif/
104.21.71.167 8.3 kB URL www.funguselixirs.life/ajax/get_imgl/loading.gif/
IP 104.21.71.167:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 5ca630697891902c87111c0248617eb1
0eafb45eb48b02a558ed8bc0afe9306132234eb9
f5822f713ac663d495c62ecd1dfcdfb1ecc28d694166e8ecc7e6b466f025f154
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /ajax/get_imgl/loading.gif/ HTTP/1.1
Host: www.funguselixirs.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:45 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YvU5rWcIkN8zJZAlZ2x8FbLOjm%2BHPXAYJ263CeOxWimFsgY2JC12ekwQB6q6sTuWqpsbRlOtlFCoR99kO4Phk0VTmwU78IMMrYtOpQxjTPATL4FrjrmZb3hGa7c8nJvmpyDCOEFduCMC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c1e84fd8a0fb511-OSL
alt-svc: h2=":443"; ma=60
www.funguselixirs.life/ajax/get_imgl/loading.gif/
172.67.147.111 8.3 kB URL www.funguselixirs.life/ajax/get_imgl/loading.gif/
IP 172.67.147.111:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 5ca630697891902c87111c0248617eb1
0eafb45eb48b02a558ed8bc0afe9306132234eb9
f5822f713ac663d495c62ecd1dfcdfb1ecc28d694166e8ecc7e6b466f025f154
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /ajax/get_imgl/loading.gif/ HTTP/1.1
Host: www.funguselixirs.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.funguselixirs.life/12003-217-5703-7446782/jacinto/tindex2.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:45 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJ7%2FOQV7eoKpMxlouuXiCzp%2FEYy%2BpiiwXKLtnmnV%2F%2F5APHDXwt%2BRXvfD0FjvtYLAj%2Bwd7z6oqSVNU8F0tmb9Ri%2FMU8u7PsgiDExXhPstHTAP%2BvOeTaFoaQT5fFRdpRLbHQsFEDx3KTMF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c1e84fd08d31c0a-OSL
alt-svc: h2=":443"; ma=60
www.funguselixirs.life/ajax_m/get_main_page/12003/2/0/7446782/12003-7446782-0-0/217/5703/
172.67.147.111 90 B URL www.funguselixirs.life/ajax_m/get_main_page/12003/2/0/7446782/12003-7446782-0-0/217/5703/
IP 172.67.147.111:0
File type ASCII text, with no line terminators
Hash 2b1d399b64c086ed0516df2665131668
ab76afdc23410bf5e6e72d255776597e20dd2259
f26bd4a04abf59f4ac1cf7c6ed6d83d2d3938f3d7358c79b7e97ef386684ee14
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /ajax_m/get_main_page/12003/2/0/7446782/12003-7446782-0-0/217/5703/ HTTP/1.1
Host: www.funguselixirs.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.funguselixirs.life/12003-217-5703-7446782/jacinto/tindex2.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KcwxMUWjV9wE3%2BnoabB6hWij1HZVfWc20ak%2B6a5Wri4XXlgpkGPJs%2BRWQ36ORmkVdBLNVxQLsGjGI8UEDfv1mGj%2FYIvgZDmyvcyYxdW0OCkqNY0hfVKutsNNY4CioaEiK8Hu%2FZ%2B6Mg%2Bp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c1e84fe193b0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash cf6c376248960abfaf3d4b038044a190
5052ba3fdc9dea83586ce31e710ebf4127794587
724242778b3e2dd262935ddaf1789857d90f2b781188bd17108a1fb6194bd72d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 03 May 2023 18:59:23 GMT
Expires: Wed, 10 May 2023 18:59:22 GMT
Etag: "5052ba3fdc9dea83586ce31e710ebf4127794587"
Cache-Control: max-age=564574,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c1e85095ff80b06-OSL
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash cf6c376248960abfaf3d4b038044a190
5052ba3fdc9dea83586ce31e710ebf4127794587
724242778b3e2dd262935ddaf1789857d90f2b781188bd17108a1fb6194bd72d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 03 May 2023 18:59:23 GMT
Expires: Wed, 10 May 2023 18:59:22 GMT
Etag: "5052ba3fdc9dea83586ce31e710ebf4127794587"
Cache-Control: max-age=564573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c1e850f4c7c0b06-OSL
status.thawte.com/
192.229.221.95 471 B IP 192.229.221.95:0
Hash 87808f8ca6c02cd216b6aca2b134849a
d0b5c4edc0e672819cbcfc14d830554de43164b4
e18b87c9630941d322e650f142ea4292dffa13449dae84f39c193fa55a48944d
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 292
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:48 GMT
Last-Modified: Thu, 04 May 2023 05:54:56 GMT
Server: ECAcc (amb/6B35)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
192.229.221.95 471 B IP 192.229.221.95:0
Hash 87808f8ca6c02cd216b6aca2b134849a
d0b5c4edc0e672819cbcfc14d830554de43164b4
e18b87c9630941d322e650f142ea4292dffa13449dae84f39c193fa55a48944d
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4138
Cache-Control: max-age=158314
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:48 GMT
Etag: "64530114-1d7"
Expires: Sat, 06 May 2023 01:58:22 GMT
Last-Modified: Thu, 04 May 2023 00:49:24 GMT
Server: ECAcc (amb/6AC3)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash cf6c376248960abfaf3d4b038044a190
5052ba3fdc9dea83586ce31e710ebf4127794587
724242778b3e2dd262935ddaf1789857d90f2b781188bd17108a1fb6194bd72d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 03 May 2023 18:59:23 GMT
Expires: Wed, 10 May 2023 18:59:22 GMT
Etag: "5052ba3fdc9dea83586ce31e710ebf4127794587"
Cache-Control: max-age=564572,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c1e8513df6d0b06-OSL
vjs.zencdn.net/7.20.2/video-js.css
151.101.130.217200 OK 11 kB URL GET HTTP/2 vjs.zencdn.net/7.20.2/video-js.css
IP 151.101.130.217:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF1:9D:59:01:F6:51:96:37:CE:E1:24:CD:15:E5:5E:AA:56:F0:05:7E
ValidityTue, 30 Aug 2022 21:42:19 GMT - Sun, 01 Oct 2023 21:42:18 GMT
File type Unicode text, UTF-8 text, with very long lines (5844)
Hash fe56250286f5ded89eae50b54b7d1100
fa5e7d94f4604ab819f42f8b08257a70c86a6b54
76423f3d7320b1178fce25d069e2ff6c6cdc68f1ff8feb2181ea89bb348a80c4
GET /7.20.2/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 28 Jul 2022 18:58:38 GMT
etag: "92c4f5bba6e24134f07a508819300d2e"
content-type: text/css
content-encoding: gzip
date: Thu, 04 May 2023 05:59:49 GMT
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 9
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10964
X-Firefox-Spdy: h2
vjs.zencdn.net/7.20.2/video.min.js
151.101.130.217200 OK 163 kB URL GET HTTP/2 vjs.zencdn.net/7.20.2/video.min.js
IP 151.101.130.217:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF1:9D:59:01:F6:51:96:37:CE:E1:24:CD:15:E5:5E:AA:56:F0:05:7E
ValidityTue, 30 Aug 2022 21:42:19 GMT - Sun, 01 Oct 2023 21:42:18 GMT
File type Unicode text, UTF-8 text, with very long lines (48447)
Size 163 kB (162713 bytes)
Hash 430ea567cd84f443a9549455bb2336d3
525d4782b0b7be4dd32ec2d3a62f2a48945fd390
98310323304c63336f96dd80c6d620f1decb3798453b98dd6f023360b190f9c0
GET /7.20.2/video.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 28 Jul 2022 18:58:38 GMT
etag: "c038d4c38eb6160ddb328b8944a5422b"
content-type: application/javascript
content-encoding: gzip
date: Thu, 04 May 2023 05:59:49 GMT
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 4
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 162713
X-Firefox-Spdy: h2
getgorillaflowing.com/assets/images/packages/cartButton.png?v=10001
188.114.96.1200 OK 6.9 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/packages/cartButton.png?v=10001
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 266 x 107, 8-bit colormap, non-interlaced\012- data
Hash 0fdd26c996c78950b81a9622ec8962b4
755d497bbde2956a6d3f66b4972dc0efc4ad0b3e
0b17502341bc109c9430fe65bb63e599e01c572f8052c475271ec40fb29d2aeb
GET /assets/images/packages/cartButton.png?v=10001 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 6942
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "1b1e-5f20553ad3f99"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lATNXR18bsk7TOVyQDuW4zTCTZQYgq94gAt8LfJQFGipSJJHk6f8PfeZjZ5y02wPRLgbr5Tv3MAqs8yXGwU7rPMaMU9gAcC0t4MIYWPhBQFfv%2FGKP7yE6eRk%2F33kamC0diIcAORyRm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fbcb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/trust.png
188.114.96.1200 OK 11 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/trust.png
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 340 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash ac792ddea52365677d3b386169a5e597
7b85096ac3dbe7225649adb6fc77fdbec8d9cd82
33304dbff1bf17eb71e2da0f8b10e145a1280a01cf44bf743f54f0d4cedeaef6
GET /assets/images/trust.png HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 11079
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "2b47-5f20553adeb7a"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i6%2FkGykcylJY%2FxwmYcZdikpBSX%2Fw5QUSuLI%2FRxsEcddU0H5xgNfvRqYOZy2r5n4Vg0Lxf59IB1YRGldW9451Wl%2FNN205B4DNY1ijUlh92UqBtvgYDEJEQUAgzPjInHzeVAfvGAtWgCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fb5b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/packages/hundred.png?v=10002
188.114.96.1200 OK 22 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/packages/hundred.png?v=10002
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 346 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d01bd2d6ee12bb07328b706a81d8bce
aeb3c641838e48e39a66b18e90c725901edb022b
90b8b44ce60023b85809d3b3a7d6b5ca9876f681a2ee1ca618be8b8397ca82b8
GET /assets/images/packages/hundred.png?v=10002 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 21876
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "5574-5f20553ad3f99"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WmZz2GBhZw5JLW7ljiotOpiJtPtWCauB2L0N06OCFltwWGxBJ%2Bmvbfx83rcMxDzMb%2BU7nELGeuzfhGrR1raZjSzMm%2FUm0mmndLr%2FjgqQ7l1rvZm7HjP3wogZSx9HNY7BN2%2BAjG7BAWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fc0b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/packages/GorillaFlow_3.png?v=10002
188.114.96.1200 OK 153 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/packages/GorillaFlow_3.png?v=10002
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 452 x 329, 8-bit/color RGBA, non-interlaced\012- data
Size 153 kB (153161 bytes)
Hash 9f147ddf98097d758a87f9572e552036
a2ad33b5f54f72cbcb86460cddb7285500a27fed
de07f42659feab1eae3df66592c4125daef09429da94dcc5ee9208e311f570cd
GET /assets/images/packages/GorillaFlow_3.png?v=10002 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 153161
last-modified: Wed, 08 Mar 2023 21:58:16 GMT
etag: "25649-5f66aa0127806"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M7Jujj%2BUQUhtd%2BZW8VkSPP57x6m6lnRob46Gdv7jnZCgty7LSu3%2FCpqHJY1vMjBuvoCr%2Bpnn6SPm%2B2inUTNAhcESmgl8EOtKwcm4skTPhLjuTFkjHRHhq5NB2vQi6o7CxA8%2Fq8pWDOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fc4b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/VSL/button.png
188.114.96.1200 OK 37 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/VSL/button.png
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 497 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e4cb5857e7ffd48d749586b52bcf698
6140683e4ef54c648bce21164040c67ef3a7950f
a97979b889f84f37cd836652f2c40646127a130e6c7c65cbd89b3d2e5fea1258
GET /assets/images/VSL/button.png HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 37171
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "9133-5f20553acb2f9"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pbP8tuIdEwx%2BFH2s9yajAwfqxl0ZI3ond4SvHRmz%2BaGVzidEoc7YsKg8dc%2BMyczIB3Zqk8o8ZAueyEcq9pGXg5KLHZshtgsCjHMlmTzdmeh9ypKpD7CPDfeiS3ef4CxevgLQI3c3af4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139faeb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/packages/GorillaFlow_6.png?v=10002
188.114.96.1200 OK 164 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/packages/GorillaFlow_6.png?v=10002
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 452 x 329, 8-bit/color RGBA, non-interlaced\012- data
Size 164 kB (163514 bytes)
Hash eb7e043b109d0dc395b60bbc0ed398bc
d37b1561f0d15425ef8ace0426c8c8c66ed2fd8e
6ad0d0be2ff40b0cfa5cba11d92445be92117b454bb3b8869d4da9be4b08863c
GET /assets/images/packages/GorillaFlow_6.png?v=10002 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 163514
last-modified: Wed, 08 Mar 2023 21:58:16 GMT
etag: "27eba-5f66aa0127806"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yhEXkOjOP53FakPdgsdMEvfGjlg2IF51jCjaHLuv8E22Pbd6Q5uVXbXhOr9xGCzgt4MVO%2BGsR2CaCd53ROxE3aFBqU%2FbUy83t3PqeJbv7QkyotzouLiaPU5aFeA1fCKum%2FkHUNhixks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fc5b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/images/VSL/trustDesktop.jpg
188.114.96.1200 OK 16 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/VSL/trustDesktop.jpg
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=823, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1172], progressive, precision 8, 340x36, components 3\012- data
Hash fbe88f2ed32710b772e44767dd334d15
b2bdaf58ade4ad208140ddb2aa6225744eaa6490
bfd1dfa6765654e85cec85dc6cdb53ad64cc3a3a64d0e010b35838f2c762a6f3
GET /assets/images/VSL/trustDesktop.jpg HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/jpeg
content-length: 15622
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "3d06-5f20553ad2059"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H7lRMpKgZXJzNtZMEAOb8gII1SYaqCCU7SuN6LSdqkYOSMGaLznJB1PmNuSaKrgCDVi4yZDDhW4nfbNg%2FwvpZTIbaey50zjJN6odBHuO5iAIIVDJ90JML8W%2FDiHK3FvRF%2FWcZ2OQ%2Fo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fc7b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/style/VSL.css?v=10102
188.114.96.1200 OK 2.0 kB URL GET HTTP/3 getgorillaflowing.com/assets/style/VSL.css?v=10102
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
Hash da218319bbc3e1c7d137575bafc3b22f
0a6df50b6379cf30180bd5f7ca4f00eb9c49e0cc
01b35b32cf16bf067953816220c36cf10b26cd5198cf4dd01408b7680e92da72
GET /assets/style/VSL.css?v=10102 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: text/css
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: W/"1def-5f20553adfb1a-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKhQY04jKILicpowHbOZAlo%2Bm%2FbWEdm05TbnR4SwEAgG7I4MCEwY5j9yWOCgi5Kup1UXxaPeNWW6s37noZThOOjEE6f7nEG0rtQ9EGAtcjLl2dL2TqAkIQjzeLujJUjeGDrCdOlR8L4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85138f9db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.digistore24.com/trusted-badge/20883/EfjVYOEtce43vzD/salespage
31.25.12.20200 OK 718 B URL GET HTTP/2 www.digistore24.com/trusted-badge/20883/EfjVYOEtce43vzD/salespage
IP 31.25.12.20:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subjectdigistore24.com
Fingerprint36:C1:56:56:26:83:AA:29:C1:07:7F:3B:9A:17:04:C7:34:E3:17:60
ValidityFri, 05 Aug 2022 00:00:00 GMT - Sat, 05 Aug 2023 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1544)
Hash ea5428b0ac13bb1b7cc4ad30f6fe2219
e5ef1ebc49d9941258df53893864985aa911a821
af69bdb8ef42a9f9eb3b99cb676477e36ce7389511dbe52b078903de54b35e5f
GET /trusted-badge/20883/EfjVYOEtce43vzD/salespage HTTP/1.1
Host: www.digistore24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
server: envoy
expires: Thu, 04 May 2023 06:58:09 GMT
pragma: cache
cache-control: max-age=3500
strict-transport-security: max-age=8640000
vary: Accept-Encoding,Origin
content-encoding: gzip
content-length: 718
content-type: text/javascript;charset=UTF-8
x-envoy-upstream-service-time: 54
via: 1.1 google
x-envoy-decorator-operation: null
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
getgorillaflowing.com/assets/images/packages/GorillaFlow_1.png?v=10002
188.114.96.1200 OK 81 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/packages/GorillaFlow_1.png?v=10002
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 452 x 329, 8-bit/color RGBA, non-interlaced\012- data
Hash c14be8e4a06f44a6bbf93c2f89383c4a
d43bebcc08195edb6bf415bcdbe32e126961b118
6fe23abfcc23fd9361f2b9b108befb5a28f32a04abc942eff3df2a296251a14e
GET /assets/images/packages/GorillaFlow_1.png?v=10002 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/png
content-length: 80576
last-modified: Wed, 08 Mar 2023 21:58:16 GMT
etag: "13ac0-5f66aa0127806"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2FCDlQqOzwzwSSma%2BDELfJ0H2Nza%2BzkaHC9nNrkpy5u9DcQuCG4FTv%2FdZE7GnrdhU9aM89updEOL4q45Sn%2FmXQlA4wND2qj%2BskXRq8351%2F2j1imJImISq5wucAwr926qXfn%2FCP7Z5as%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fbbb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.pushwoosh.com/webpush/v3/pushwoosh-web-notifications.js
195.201.193.122200 OK 45 kB URL GET HTTP/1.1 cdn.pushwoosh.com/webpush/v3/pushwoosh-web-notifications.js
IP 195.201.193.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash f092e06ff1e7e957d028ea9811b1f11b
689b795e3b8bad42a78e7e6c2e6a2d68653c9491
4c69e9317b545d023ea95040208d583463d1499099bb23ed10e828341e5e6816
GET /webpush/v3/pushwoosh-web-notifications.js HTTP/1.1
Host: cdn.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 08:45:52 GMT
x-rgw-object-type: Normal
ETag: W/"d50a1b2bd010ebf2eca5a3e1f9c1df25"
X-Amz-Storage-Class: STANDARD
Expires: Fri, 05 May 2023 05:59:49 GMT
Cache-Control: max-age=86400, public
X-Cache-Status: HIT
X-Proxy-Cache: HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
getgorillaflowing.com/assets/style/VSLCTAPackages.css?v=10001
188.114.96.1200 OK 1.9 kB URL GET HTTP/3 getgorillaflowing.com/assets/style/VSLCTAPackages.css?v=10001
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
Hash 2e534758cac9e3529733408a3bf1f516
93b72a2e549e3b44854a62b061efaf54bfcc696b
82f55257297527858ef0b5fc544005554d69a5f0e8eef3339a0cf44f8e945826
GET /assets/style/VSLCTAPackages.css?v=10001 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: text/css
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: W/"ef8-5f20553adfb1a-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bcYfc8JA45co7MVfJdoiRJGqgmpdzQU2fya46J79GtKb3SFa9IqK8yJFfdvLyjYgvj0ypJgEkDuXAKBKbi5wXxcAFKaEqECsOrlHoqSQV1a5Q8SB3T6C1T8iSHZsiYb0xP1fmXzQJew%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85138fa3b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.digistore24.com/webinc/badge/build/v1.0.1/digistore-banner-light.js
31.25.12.20200 OK 11 kB URL GET HTTP/3 www.digistore24.com/webinc/badge/build/v1.0.1/digistore-banner-light.js
IP 31.25.12.20:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subjectdigistore24.com
Fingerprint36:C1:56:56:26:83:AA:29:C1:07:7F:3B:9A:17:04:C7:34:E3:17:60
ValidityFri, 05 Aug 2022 00:00:00 GMT - Sat, 05 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (29861), with no line terminators
Hash 8366f37480603184e939eb10e860b0e5
a5db3f36e8cc543ba87f2fe7d1ace63b402d8eca
9ddca35cdd697f0745be62b2b7fa4f6d4ea1e93dd6fc5a3824113cea83bf29e8
GET /webinc/badge/build/v1.0.1/digistore-banner-light.js HTTP/1.1
Host: www.digistore24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.digistore24.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
server: envoy
last-modified: Wed, 03 May 2023 03:56:20 GMT
etag: "74a5-5fac209e2a100-gzip"
accept-ranges: bytes
vary: Accept-Encoding,Origin
content-encoding: gzip
content-length: 10805
content-type: application/javascript
x-envoy-upstream-service-time: 2
via: 1.1 google
x-envoy-decorator-operation: null
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscape.m3u8
54.230.245.150200 OK 1.1 kB URL GET HTTP/2 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscape.m3u8
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Hash e27ccbca30fa3ede60cef8847542f8f1
949ee11120f1303b57d3997f975a966177a2b90b
71e6b06f4b0ccb200e26cb598b2c80260a9504d17b42632e410807763e5efcf5
GET /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscape.m3u8 HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-mpegURL
content-length: 1135
date: Wed, 03 May 2023 11:05:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Wed, 08 Mar 2023 04:07:15 GMT
etag: "e27ccbca30fa3ede60cef8847542f8f1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CSxHxwx13eaIkfGGNYc_R5mui80yGC56v_y-bcZjlHHBqn2_srwq8g==
age: 68071
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5ad4075d7b787842face9d4577842722
ca2224ef9c7d8c7b18a1004f8b4a43711b142bd3
3287e67a0bcac6aa984025a233b9c1831a50d42f43f8ff81ff443f4c8bb77aa2
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 04 May 2023 05:59:49 GMT
Last-Modified: Thu, 04 May 2023 04:23:24 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: X_-4uaZS8ypEMsmx-XUYYNiocn6l3fMV7ppA9S-ZMPwo0w-xSAniOw==
Age: 5785
getgorillaflowing.com/assets/style/global.css?v=10004
188.114.96.1200 OK 819 kB URL GET HTTP/3 getgorillaflowing.com/assets/style/global.css?v=10004
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type ASCII text, with very long lines (406)
Size 819 kB (818826 bytes)
Hash 979325d936a9a9461e1674e5a54e7b10
85b446d49e990057a64c4f5553734d3770e5147f
2d8616d65523766c737b0ec6b8890d3b9c8d53599f20d52f72116b0a97a5c7e3
GET /assets/style/global.css?v=10004 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: text/css
last-modified: Thu, 23 Feb 2023 16:42:50 GMT
etag: W/"4725-5f560b416780c-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bbj%2F48ToHuH4p53ABKOukWFovUf%2FRfxPz172L3E%2B%2BVEHVFSGk5NbNFJf%2B0aKeN3oLm4BzwhM25k%2Bg9D%2FZoybf0SNmAjyhGde2nwoHDC9jDzRTBwwX%2FncK0GOB8vt%2BgMDjy9ks2RA%2Fro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85138f95b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6_v4.m3u8
54.230.245.150200 OK 40 kB URL GET HTTP/2 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6_v4.m3u8
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Hash 4954454accf2b980f4c2b64a2b918c5b
325db93bfd12341dc5aad99774ed8353a0599506
d76466663d63d318748930612dff5f3f7c6a007b84a4a17c58f8f06fc93e4817
GET /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6_v4.m3u8 HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
content-length: 40264
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Wed, 08 Mar 2023 04:02:56 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 04 May 2023 05:59:51 GMT
etag: "4954454accf2b980f4c2b64a2b918c5b"
vary: Origin
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NCyiVVGQet4A048g30iiM6bnOawAvsA-bqi7X_3JEZc9uviW9u-YIA==
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-7.2.1-min.gz.js
54.230.245.107200 OK 19 kB URL GET HTTP/2 cdn.amplitude.com/libs/amplitude-7.2.1-min.gz.js
IP 54.230.245.107:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subjectcdn.amplitude.com
FingerprintD0:B2:C8:11:03:39:A0:E7:9B:D4:75:31:29:A6:CE:3A:49:24:4A:06
ValidityThu, 12 Jan 2023 00:00:00 GMT - Sun, 11 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (60877)
Hash e7ee6bc7f428f90fb1b1ed0e94b9f835
12a8cedc4a363af306b438111de73bc4d8b399d7
4bdadec687b990a491b8a797c8fbfbea6e30b2a28bda402760262bbfc982a3af
GET /libs/amplitude-7.2.1-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 19222
date: Thu, 27 Apr 2023 23:28:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 22 Sep 2020 19:51:25 GMT
etag: "e7ee6bc7f428f90fb1b1ed0e94b9f835"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: rtLe8nVXDx8sL7XBGT5sDlFBE.TwGFEn
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xmyc5hFLc22n6zK8ydtVN4cwj_pG4-RXDTbc0-Jg3FI6JIGYeMJGug==
age: 541900
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 17cac047f503e9e8bf1818f4271c9b78
0aa3f3adbeb5649f345dc9d0be12f1e2381a98df
52a6e1bc3e2c1281f2ca2c53888cc785b4a00f7e065fc9f0441a2e2ae94e8b91
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 17cac047f503e9e8bf1818f4271c9b78
0aa3f3adbeb5649f345dc9d0be12f1e2381a98df
52a6e1bc3e2c1281f2ca2c53888cc785b4a00f7e065fc9f0441a2e2ae94e8b91
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
142.250.74.106200 OK 5.4 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
IP 142.250.74.106:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 20:49:30 GMT
expires: Sun, 28 Apr 2024 20:49:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 378620
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
getgorillaflowing.com/assets/scripts/jquery-2.2.0.min.js?v=10001
188.114.96.1200 OK 38 kB URL GET HTTP/3 getgorillaflowing.com/assets/scripts/jquery-2.2.0.min.js?v=10001
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type ASCII text, with very long lines (32069)
Hash 3dcef881482de5242acd31e6bc7e6f52
0057f79ae41d9a3c56b0cdd721a4b33344b84c09
9d0f1f17f86e241eb84493705e9440919c79f7bb5b206c7c0ca779c7ec6d00de
GET /assets/scripts/jquery-2.2.0.min.js?v=10001 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: W/"14e55-5f20553adfb1a-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ehj8sHA8SdCT9VAaK4d2xRKo8F%2F2CpT6I0UHJgo8upVfMkWdpWCOIfk70NsUerpuGn%2BS1koXhz%2F7BYhIuVhhCrwmOejZ1kYHrk05fR2gNO%2FwqS%2FARilaYoAYeEtYR4874oh7s8bOKDc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85138f97b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k_v4.m3u8
54.230.245.150200 OK 62 kB URL GET HTTP/2 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k_v4.m3u8
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Hash fccc82baa275c5be6ad937cb8ca26712
e745d0e13f96077db98f684709abbad169bb2484
4b37592a625126c9b3f570ea142c4b1a842fdeb7710df804e7646b9383a7406e
GET /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k_v4.m3u8 HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
content-length: 62463
date: Wed, 03 May 2023 11:05:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Wed, 08 Mar 2023 04:01:42 GMT
etag: "fccc82baa275c5be6ad937cb8ca26712"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BuZmCnVPlRXiYKgErPcq-1LiOyE1ywHQ8o_JXb_dLJP4cuk4fJBcuw==
age: 68071
X-Firefox-Spdy: h2
getgorillaflowing.com/favicon-16x16.png
188.114.96.1200 OK 1.2 kB URL GET HTTP/3 getgorillaflowing.com/favicon-16x16.png
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash a75a7d91039c117853352d0a21eb4462
ef85a4bbe1e9547d5348ef83207d0b67b1b4f531
0c48d6c14528790dcea7c7376f1133f88c1e6ab0376990805152a772099f1d7e
GET /favicon-16x16.png HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:50 GMT
content-type: image/png
content-length: 1164
last-modified: Fri, 24 Mar 2023 14:57:49 GMT
etag: "48c-5f7a69de2fdd7"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fv6IHUVnRAKtbsShCBE3VXnGsDOfxFb18hUhWnMifmnoUL9Hg%2Flb9G%2FKRuPqs%2F0Cb3i%2FrI2Y5QQWp%2FDIUH67fjTBCek2e9swzTZylKW3sNjXm52ITXUH%2FjMb%2BERo%2FSVo%2F2RR9ajSYds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e851a7ff2b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/android-icon-192x192.png
188.114.96.1200 OK 26 kB URL GET HTTP/3 getgorillaflowing.com/android-icon-192x192.png
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1cbe606f5b6408a6779d73308f470041
ef1da59ebb6a4e0a19b5b7a32a7868179c29e225
d51956287b052136fc052316e84fba0a3f8a944d453a7420aefe80ca0fb21899
GET /android-icon-192x192.png HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:50 GMT
content-type: image/png
content-length: 25656
last-modified: Fri, 24 Mar 2023 14:57:49 GMT
etag: "6438-5f7a69de2ee37"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ABAYyum01f8bGzVBk%2Bw%2Fp8a9ZYog3YkSjsd7qxApNqA%2FNThtaow1s17Lt9SY9OY%2FYvOG8wtLlsaOZ9c55QYgtdnF2qpAx60fdBW4vxeJgFMPmwoSHf1VFuTiLIA1gvyU9WjgA%2FjWog%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e851a7ff3b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash fca3fd51e8bb1cab2543864b38193c0c
258ead81ada46c0514b4aaad7d1142cf1cee096d
13c253ed224d3fd77420a46624765190c4f42d33ef0bc9c651b28cf6c8d830b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 07:44:41 GMT
expires: Sun, 28 Apr 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 425709
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
216.58.207.227200 OK 30 kB URL GET HTTP/2 fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
IP 216.58.207.227:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT
File type Web Open Font Format (Version 2), TrueType, length 29564, version 1.0\012- data
Hash 1b66ccb164151a6cf698667c8b570cc6
f5617a0f087645703c874453960be6382c8a7427
4884fec2c73aa52a2461073c1b87d1ceb80f400520391b43f97ca7d3c39eeb24
GET /s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 May 2023 23:22:52 GMT
expires: Thu, 02 May 2024 23:22:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 17:55:57 GMT
content-type: font/woff2
age: 23818
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 08:09:04 GMT
expires: Sun, 28 Apr 2024 08:09:04 GMT
cache-control: public, max-age=31536000
age: 424246
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash fca3fd51e8bb1cab2543864b38193c0c
258ead81ada46c0514b4aaad7d1142cf1cee096d
13c253ed224d3fd77420a46624765190c4f42d33ef0bc9c651b28cf6c8d830b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 05:59:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts
54.230.245.150206 Partial Content 0 B URL GET HTTP/3 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: range
Referer: https://getgorillaflowing.com/
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Thu, 04 May 2023 05:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: range
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: blXfd829yZhRMmh6nl-CbzMfj6Uhmqj2X3y5XG0anRDMNmbf1Tt0zA==
X-Firefox-Spdy: h2
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts
54.230.245.150206 Partial Content 0 B URL GET HTTP/3 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: range
Referer: https://getgorillaflowing.com/
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Thu, 04 May 2023 05:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: range
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uTGtAp_pr6bpBuJtv1XCp1AlcvFB3GQuRYe6YyZD9ofA73kZ5YG7Bg==
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts
54.230.245.150206 Partial Content 486 kB URL GET HTTP/3 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Size 486 kB (486356 bytes)
Hash 7295d4eee39e3c80acd7b76486010b03
d1311be049b97daf839f0b5d426e860eb7ce1863
1ab217f6f3cfeec88becdf6320d34051da19ee5c8bc5774240a2bebcadcd7083
GET /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls6.ts HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-486355
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
content-type: video/MP2T
content-length: 486356
content-range: bytes 0-486355/200976700
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Wed, 08 Mar 2023 04:02:56 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 04 May 2023 05:59:51 GMT
etag: "2c84b8cd4b03110d240ecc2206523ec8-39"
vary: Origin
x-cache: RefreshHit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DjXxGGHghxEyiGqKWXnwHKDnzEBdOJpcIZMaxedP_QPmbDcwNyEOkw==
ocsp.comodoca.com/
172.64.155.188 472 B IP 172.64.155.188:0
Hash 8215c18993b615780828251751f2427c
daea22422745fd453d5e2624c724f28e108f17b5
55a413ed1e24bb1ab2ee60a24d4abf5b34783968760c69db7764efbad4e63244
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 02 May 2023 16:47:33 GMT
Expires: Tue, 09 May 2023 16:47:32 GMT
Etag: "daea22422745fd453d5e2624c724f28e108f17b5"
Cache-Control: max-age=602692,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1177
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c1e851fbc52b4f9-OSL
d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts
54.230.245.150206 Partial Content 115 kB URL GET HTTP/3 d1pxo3gwlupsps.cloudfront.net/video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts
IP 54.230.245.150:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Size 115 kB (114868 bytes)
Hash 2485ad27e10d28e504f6cae36203087f
30d0cd1397c2c3a56e5ba3e822721fd57b3da5f6
4af806a1a6edcc165280f64b5c2072226555ffd999e9e330045228cfa1dcc217
GET /video/VSL_20230307_Joey_Landscape/VSL_20230307_Joey_Landscapehls_audio_160k.ts HTTP/1.1
Host: d1pxo3gwlupsps.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-114867
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
content-type: audio/MP2T
content-length: 114868
content-range: bytes 0-114867/67514184
date: Thu, 04 May 2023 05:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Wed, 08 Mar 2023 04:01:42 GMT
etag: "22627f8b7c674d68b73af78620a24336-13"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -k9wQxm0o8nM8BUU5qBTvsCHax8MXW-TgtaZnH3zigueCWyJIHfLPg==
api.amplitude.com/
54.149.231.199200 OK 7 B IP 54.149.231.199:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerCOMODO CA Limited
Subject*.amplitude.com
Fingerprint53:54:4A:24:1D:BE:06:A9:B0:CB:E8:8F:76:C2:8C:8F:F5:54:D1:F5
ValidityMon, 23 Jan 2023 00:00:00 GMT - Wed, 14 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1322
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 05:59:51 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-645349d7-1fb145a656268eb367e229da
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
api.amplitude.com/
54.149.231.199200 OK 7 B IP 54.149.231.199:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerCOMODO CA Limited
Subject*.amplitude.com
Fingerprint53:54:4A:24:1D:BE:06:A9:B0:CB:E8:8F:76:C2:8C:8F:F5:54:D1:F5
ValidityMon, 23 Jan 2023 00:00:00 GMT - Wed, 14 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 4004
Origin: https://getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 04 May 2023 05:59:51 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-645349d7-7aba0d676fdfea2d6b53620d
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
cp.pushwoosh.com/json/1.3/getConfig
188.40.221.212200 OK 570 B URL POST HTTP/1.1 cp.pushwoosh.com/json/1.3/getConfig
IP 188.40.221.212:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1034)
Hash a75666abebe88d173a3bd08851a76148
1de56778ed3cc34388550d135f86c82a445c76c5
3db4dd974848619bb77ea29e7eead09a132f644f1e051d6180bdfb474afcfcb5
POST /json/1.3/getConfig HTTP/1.1
Host: cp.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getgorillaflowing.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 333
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:51 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Host-Ip: 172.16.3.26
X-Host-Name: r3-cl-35.r3h.nue
X-Pod-Ip: 10.222.147.210
X-Pod-Name: pushwoosh-device-api-585d5554cf-gsd2l
X-Pod-Namespace: pushwoosh
X-Powered-By: pushwoosh/device-api
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
cp.pushwoosh.com/json/1.3/applicationOpen
188.40.221.212200 OK 127 B URL POST HTTP/1.1 cp.pushwoosh.com/json/1.3/applicationOpen
IP 188.40.221.212:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b0e58d3ea52ebb6ea97e5877a2eb6f09
f2d91ab15ce37d02154de7b44e2ae3289dfc8031
834bdcdfc4cfc4cdd0a398e131bea4fd46d2e83f9f58bb877e69f1e5d3421fc5
POST /json/1.3/applicationOpen HTTP/1.1
Host: cp.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getgorillaflowing.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 250
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:52 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
cdn.pushwoosh.com/webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
195.201.193.122 27 kB URL cdn.pushwoosh.com/webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
IP 195.201.193.122:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 96a9e556b9405a94db6237d14399fbf1
ecf8972c28f57ba5d71c1179a5335cb92db5f341
008a20bc1c9a1f75178b26d93c18391aae4afc7690804b990937d6b3ac2545a9
GET /webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac HTTP/1.1
Host: cdn.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 08:45:52 GMT
x-rgw-object-type: Normal
ETag: W/"d3aa7a7ef179cfa8f5c244ae6379bc42"
X-Amz-Storage-Class: STANDARD
Expires: Thu, 04 May 2023 06:59:53 GMT
Cache-Control: max-age=3600, public
X-Cache-Status: MISS
X-Proxy-Cache: MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
getgorillaflowing.com/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
188.114.96.1 0 B URL getgorillaflowing.com/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
IP 188.114.96.1:0
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D; amp_0a2f9a=OZKw3Za1fPILZVXZa7Vk-x...1gvilh4nn.1gvilh5kg.2.2.4
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Wed, 11 Jan 2023 23:26:16 GMT
If-None-Match: W/"6a-5f20553ae0aba-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/3 304 Not Modified
date: Thu, 04 May 2023 05:59:54 GMT
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "6a-5f20553ae0aba-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=obp%2F7JC50laHogOkLAjG7n3NXJeEuc3NODUqDSUZe5J4xtDgruY%2B%2B1d72HD0QZM7OanItn98bu%2FGaBTnf5LM27Vbp3HjieXu3DyOyxmdyAvC7Aayx5U2fzCaOGzrvbYIxUBz5vGLca4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85344cd4b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash 5742f3abeee5f3a9a7c66321c48cc948
abf4b4ea1b01a51efd7a32b78f142ac03f469454
b15d8b002f5989f95eb32ebb0b3ec08c5216faa7d3f5d2929e390159a0ac2040
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 05:59:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 02 May 2023 05:52:36 GMT
Expires: Tue, 09 May 2023 05:52:35 GMT
Etag: "abf4b4ea1b01a51efd7a32b78f142ac03f469454"
Cache-Control: max-age=430960,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c1e8534f8540b06-OSL
cdn.pushwoosh.com/webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
94.130.239.232 27 kB URL cdn.pushwoosh.com/webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac
IP 94.130.239.232:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 96a9e556b9405a94db6237d14399fbf1
ecf8972c28f57ba5d71c1179a5335cb92db5f341
008a20bc1c9a1f75178b26d93c18391aae4afc7690804b990937d6b3ac2545a9
GET /webpush/v3/pushwoosh-service-worker.js?cache_clean=49a3da1e-4777-493b-99a3-cbb9241a92ac HTTP/1.1
Host: cdn.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 08:45:52 GMT
x-rgw-object-type: Normal
ETag: W/"d3aa7a7ef179cfa8f5c244ae6379bc42"
X-Amz-Storage-Class: STANDARD
Expires: Thu, 04 May 2023 06:59:54 GMT
Cache-Control: max-age=3600, public
X-Cache-Status: MISS
X-Proxy-Cache: MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
cdn.pushwoosh.com/webpush/img/FF.jpg
195.201.193.122200 OK 37 kB URL GET HTTP/1.1 cdn.pushwoosh.com/webpush/img/FF.jpg
IP 195.201.193.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 500x130, components 3\012- data
Hash 7d3915a7d11ae927099d2eb0ad523cd3
c0c85e69f51d4edd98e5585a5f4f0719190cf8fb
54e02a92678bae8e1505bdab994bce17b4b4979bed827d33159f44adcf63f834
GET /webpush/img/FF.jpg HTTP/1.1
Host: cdn.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:55 GMT
Content-Type: image/jpeg
Content-Length: 37009
Connection: keep-alive
Last-Modified: Wed, 09 Jun 2021 13:23:32 GMT
x-rgw-object-type: Normal
ETag: "7d3915a7d11ae927099d2eb0ad523cd3"
Expires: Thu, 04 May 2023 06:59:55 GMT
Cache-Control: max-age=3600, public
X-Cache-Status: HIT
X-Proxy-Cache: HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
cdn.pushwoosh.com/webpush/img/FF_unlock.jpg
195.201.193.122200 OK 42 kB URL GET HTTP/1.1 cdn.pushwoosh.com/webpush/img/FF_unlock.jpg
IP 195.201.193.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 500x230, components 3\012- data
Hash e865726ac3e87b953406c246bbc659ad
1636d16959a0de998862b0af6dd9a371af4cd304
3c445a00ee0a5a45af217b799a6793052c81e70a570d8def7ecdb8bdc75a7101
GET /webpush/img/FF_unlock.jpg HTTP/1.1
Host: cdn.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 May 2023 05:59:55 GMT
Content-Type: image/jpeg
Content-Length: 42302
Connection: keep-alive
Last-Modified: Wed, 09 Jun 2021 13:23:32 GMT
x-rgw-object-type: Normal
ETag: "e865726ac3e87b953406c246bbc659ad"
Expires: Thu, 04 May 2023 06:59:55 GMT
Cache-Control: max-age=3600, public
X-Cache-Status: HIT
X-Proxy-Cache: HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
getgorillaflowing.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
188.114.96.1200 OK 1.2 kB URL GET HTTP/3 getgorillaflowing.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 14:11:40 GMT
etag: W/"644bd41c-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w7ftUtZPQ3vP0CTc3jIN2w%2B6JVVJW5Tr%2FzjmfR%2FrT4EuVmjcuQHdPF9VBI2DkmEBSYncukvn9aplNVKfG57a0HvLBPBVZpWNrNsiic8xfZKxm44F%2Fe5gF88NAB%2FCmDKuYwfGSJyuhlI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e85139fcbb512-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 06 May 2023 05:59:49 GMT
cache-control: max-age=172800, public
content-encoding: gzip
www.digistore24.com/webinc/badge/build/v1.0.1/loader.js
31.25.12.20200 OK 2.0 kB URL GET HTTP/3 www.digistore24.com/webinc/badge/build/v1.0.1/loader.js
IP 31.25.12.20:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subjectdigistore24.com
Fingerprint36:C1:56:56:26:83:AA:29:C1:07:7F:3B:9A:17:04:C7:34:E3:17:60
ValidityFri, 05 Aug 2022 00:00:00 GMT - Sat, 05 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (2030), with no line terminators
Hash 50b8288e26c4bf0af7c04f1669c31750
40aa4d17bd6254846efc2fb85d60cb38fb0eda13
9f0cb022ca8d330661c87954be351b39292a0e6e8f3f87de8292249dfb55a93b
GET /webinc/badge/build/v1.0.1/loader.js HTTP/1.1
Host: www.digistore24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.digistore24.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
server: envoy
last-modified: Wed, 03 May 2023 03:56:20 GMT
etag: "7b6-5fac209e2a100-gzip"
accept-ranges: bytes
vary: Accept-Encoding,Origin
content-encoding: gzip
content-length: 891
content-type: application/javascript
x-envoy-upstream-service-time: 1
via: 1.1 google
x-envoy-decorator-operation: null
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
getgorillaflowing.com/manifest.json
188.114.96.1200 OK 953 B URL GET HTTP/3 getgorillaflowing.com/manifest.json
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type ASCII text, with very long lines (1126), with no line terminators
Hash 86054dee2b0e832d2b544cfb4942a3ee
927c3d2ff715817f8357ef04663d54d1b4881eb4
33be9fd9ff94b6c3fdf946f00e4d3f6e28df10f127fd34934010b1f374e63947
GET /manifest.json HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Content-Type: application/json;charset=UTF-8
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D; amp_0a2f9a=OZKw3Za1fPILZVXZa7Vk-x...1gvilh4nn.1gvilh5kg.2.2.4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:52 GMT
content-type: application/json
last-modified: Fri, 24 Mar 2023 14:57:49 GMT
etag: W/"3b9-5f7a69de2fdd7-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sG%2BVztCaTDojUcTwDOGxXereESq9mq%2F9IOsIrhWOH8W841NTB8R0SIKVGC%2B80Yl3PnsawZpkmeIutUMiG4Y3%2BgmoOtwlUdAG9Euet%2B9a1OjceUZISd020mVfZStqDZ7HVW8ZB%2FPjR4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e852a8998b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
track.azurebugle.com/tr?offer_id=640&aff_id=4430&sub1=gftp
104.16.243.78307 Temporary Redirect 115 kB URL User Request GET HTTP/2 track.azurebugle.com/tr?offer_id=640&aff_id=4430&sub1=gftp
IP 104.16.243.78:443
Certificate IssuerLet's Encrypt
Subjecttrack.azurebugle.com
FingerprintC3:BE:E0:8C:77:80:D2:16:C1:89:E9:C6:C5:D2:34:73:E8:38:07:65
ValidityMon, 20 Mar 2023 18:49:05 GMT - Sun, 18 Jun 2023 18:49:04 GMT
Size 115 kB (115218 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr?offer_id=640&aff_id=4430&sub1=gftp HTTP/1.1
Host: track.azurebugle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.funguselixirs.life/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Thu, 04 May 2023 05:59:47 GMT
content-type: text/html; charset=UTF-8
location: https://www.digistore24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430
set-cookie: click_id=645349d31d233645349d31d235; expires=Fri, 05-May-2023 06:01:27 GMT; Max-Age=86500; path=/; secure; SameSite=None
access-control-allow-origin: *
x-do-app-origin: f5bc0a9f-bba6-4049-9b6e-0d99ca7d4053
cache-control: private
x-do-orig-status: 307
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e8501291e0b06-OSL
X-Firefox-Spdy: h2
getgorillaflowing.com/assets/images/unmute.svg
188.114.96.1200 OK 2.5 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/unmute.svg
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2518), with no line terminators
Hash 610f7f9fc96f4718f3593f7abd4b9fe3
fd68e1289fa7c36e3ae0effe65547d571dc63a60
546c9b1322fd3181c3c19554c80fea5e23fae94e566239889b67c1f5f60401a8
GET /assets/images/unmute.svg HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/svg+xml
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: W/"9a8-5f20553adeb7a-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kN70DAuiVr1u%2B8z0PfLaUxkbzr5evzeRZpIzkbAAdkrLIY0bBEGTaUUYL%2FKloJ9EgwSFAKgB%2FToYAqTMQYyzF9rxBCXsFDeTGH0Wcpr%2F31QJt15nsQCKuhzjvaUnUhH3by8P0WCnBIY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e8516fb8eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.digistore24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430
31.25.12.20301 Moved Permanently 115 kB URL User Request GET HTTP/2 www.digistore24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430
IP 31.25.12.20:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerSectigo Limited
Subjectdigistore24.com
Fingerprint36:C1:56:56:26:83:AA:29:C1:07:7F:3B:9A:17:04:C7:34:E3:17:60
ValidityFri, 05 Aug 2022 00:00:00 GMT - Sat, 05 Aug 2023 23:59:59 GMT
Size 115 kB (115218 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430 HTTP/1.1
Host: www.digistore24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.funguselixirs.life/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 04 May 2023 05:59:47 GMT
server: envoy
x-robots-tag: noindex, nofollow, noarchive
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: 0
set-cookie: splittest/479212/initial=none%7C0%7C0; expires=Sun, 14-May-2023 04:53:07 GMT; Max-Age=860000; path=/; domain=www.digistore24.com
pro_700550=1863979%3D%3D%3D645349d31d233645349d31d235~4430%3D1683179987%3D~~~~%3D%3D479212%3DN%3D0%3D%3D1683179987645349d3afb701.48227482%3Dwww.digistore24.com%3Dhttp%253A%252F%252Fwww.funguselixirs.life%252F%3D; expires=Fri, 03-May-2024 05:59:47 GMT; Max-Age=31536000; path=/; secure; SameSite=None
pro_700550=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.digistore24.com; secure; SameSite=None
fc_clicked_479212[initial]=1; path=/; domain=www.digistore24.com; secure; SameSite=None
location: https://www.checkout-ds24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430&aff=todaysoffr&ds24_domain=www.digistore24.com
vary: Origin, Accept-Encoding
content-type: text/html; charset=UTF-8
x-envoy-upstream-service-time: 684
content-encoding: gzip
via: 1.1 google
x-envoy-decorator-operation: null
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
getgorillaflowing.com/assets/images/VSL/cover3_HD.jpg
188.114.96.1200 OK 814 kB URL GET HTTP/3 getgorillaflowing.com/assets/images/VSL/cover3_HD.jpg
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:08:03 14:15:50], baseline, precision 8, 1600x900, components 3\012- data
Size 814 kB (813930 bytes)
Hash cdccb33749df3f306650f26f6d909485
1bcf475f6e2d671f5b3a17c9eecbabb55aa2bac5
7db3575b2343e879613daeb5c4785dcf90c1835e5820d87815c3da43313034a5
GET /assets/images/VSL/cover3_HD.jpg HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: image/jpeg
content-length: 813930
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: "c6b6a-5f20553acf179"
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEtr10muymysFim9iAOW7%2BdxuAJS7D1gE9TpNEKpAtrLyMh01j9b1WJJNQ819NjKani0UFEEFaDL6UjKFg2ehiNWeCDsBDP8q31gLh2Xe9Fy8b%2BVRgTK7L4b7opJi5C4TWhzrFrC944%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c1e8515ca55b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/ajax/click/import
188.114.96.1200 OK 77 B URL POST HTTP/3 getgorillaflowing.com/ajax/click/import
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 8e0b2e0f0404fad11b3f1657f2d654db
7c06d9eca41ef0d2a106d21ad93f0cb18444ffdb
da02b5472c85c272bd7be192478a4bd116ab91be4eac1aaa24bd4964d83dcf3a
POST /ajax/click/import HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 72
Origin: https://getgorillaflowing.com
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:50 GMT
content-type: application/json
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: getgorillaflowing.com
set-cookie: Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D; expires=Sun, 14-May-2023 05:59:49 GMT; Max-Age=864000; HTTPOnly; Secure
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xuka01ZTv0vT8iXvCKlic%2FuuLlDb%2FEvaPASUyEdmau5sHuziAC74z9jtkvE4rERB7bf%2BuG4P%2BJD7omuJwNa6uGNBm2jj%2FVg%2BJJfBiw9okGCepEvq9JOLScvUWSZHa0WS2z9Q53Gjabs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e8515ea80b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
getgorillaflowing.com/assets/scripts/global.js?v=10001
188.114.96.1200 OK 12 kB URL GET HTTP/3 getgorillaflowing.com/assets/scripts/global.js?v=10001
IP 188.114.96.1:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
File type ASCII text, with very long lines (303)
Hash 4bc58ab4b230ee1274073ac6a17d6c88
f6ba9b01ff9994178f336cf9c0b709f94d5c941e
8875f54d682fa12f7c1a154b6d88b5c731aa739e25b67bb9514c7989f020ecb0
GET /assets/scripts/global.js?v=10001 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: getgorillaflowing.com
Connection: keep-alive
Referer: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 04 May 2023 05:59:49 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 23:26:16 GMT
etag: W/"30ff-5f20553adfb1a-gzip"
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L3AEeSGROKe4rXUxIzdkuQcuyN8zi%2BB9xrbB5l7%2B98S9VRsNQyL9iCxFfaNzj1F32p1hAnDZxLvut%2BAPwWAsxAJhFx65qmlcR3BD0zcd67GX3cuSDIkjnlNcQ3ldGBwvD2pWPh%2B%2F2CM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85138f9ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
redhotm.pushwoosh.com/json/1.3/checkDevice
88.198.239.118200 OK 145 B URL POST HTTP/2 redhotm.pushwoosh.com/json/1.3/checkDevice
IP 88.198.239.118:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 45aaa39e8c196e8a79f188232ca33403
e8b032f93fa9187e993babb4eb8e19cc96bc3b40
d5515b26158370a13153609f4a0d75c4afd35d647ec0e545bff2707ed4efdb57
POST /json/1.3/checkDevice HTTP/1.1
Host: redhotm.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getgorillaflowing.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 250
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 05:59:54 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
188.114.96.1200 OK 115 kB URL User Request GET HTTP/2 getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subject*.getgorillaflowing.com
Fingerprint4F:F5:5B:AE:CE:0C:05:C5:F9:88:0B:2F:B4:8F:E1:1B:10:C8:59:34
ValidityMon, 06 Mar 2023 19:31:23 GMT - Sun, 04 Jun 2023 19:31:22 GMT
Size 115 kB (115218 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430 HTTP/1.1
Host: getgorillaflowing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.funguselixirs.life/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 05:59:48 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nosnippet
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=62ng11ffderor9qg5aifggdbh0; expires=Sun, 14-May-2023 05:59:48 GMT; Max-Age=864000; path=/; domain=.getgorillaflowing.com; secure; HttpOnly; SameSite=lax; HTTPOnly; Secure
Affiliate=a%3A3%3A%7Bs%3A4%3A%22type%22%3Bs%3A7%3A%22unknown%22%3Bs%3A4%3A%22AFID%22%3Bi%3A0%3Bs%3A6%3A%22subIDs%22%3Ba%3A0%3A%7B%7D%7D; expires=Sun, 14-May-2023 05:59:48 GMT; Max-Age=864000; HTTPOnly; Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5STjPLWPfPMLmk2VKye0BGLtR2o5kMpwqSE6VAWEyaRUTJjvsJk5E1k6ZsrLimIbjPuP8iAWAadWF%2FFKL1eMkOiVRmgRs5BFkFVSUFQSMeFGuEnaV5af0blGJdsznTWELURG4qrEQSY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c1e85116dbe0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
redhotm.pushwoosh.com/json/1.3/getInboxMessages
88.198.239.118200 OK 92 B URL POST HTTP/2 redhotm.pushwoosh.com/json/1.3/getInboxMessages
IP 88.198.239.118:443
ASN #24940 Hetzner Online GmbH
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerSectigo Limited
Subject*.pushwoosh.com
FingerprintDB:2A:4B:E9:C9:81:11:5E:DE:B8:7B:01:AA:89:F9:D6:0E:C2:06:FF
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 774f807a393209765fd90f2f14522b7e
02a5f3d1876788b7c09e4e2ae2feb9721d1c72db
090bf01a0cfeb54d56e83339f8b5d7cbd2416e400fad01f880a5b019ead54e62
POST /json/1.3/getInboxMessages HTTP/1.1
Host: redhotm.pushwoosh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getgorillaflowing.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 297
Origin: https://getgorillaflowing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 05:59:55 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: phpDaemon/1.0-beta3
x-pw-cluster-node: inbox-api-69f769d874-jlf7p
x-pw-front-node: inbox-api-69f769d874-jlf7p
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS, DELETE, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Headers, is_auto_request, Content-Length, Accept-Encoding, X-Registry-Auth
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
www.checkout-ds24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430&aff=todaysoffr&ds24_domain=www.digistore24.com
31.25.12.50301 Moved Permanently 115 kB URL User Request GET HTTP/2 www.checkout-ds24.com/redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430&aff=todaysoffr&ds24_domain=www.digistore24.com
IP 31.25.12.50:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerDigiCert Inc
Subject*.checkout-ds24.com
FingerprintF4:0C:84:48:D1:22:B1:F0:1A:30:41:D0:1B:8A:98:E9:11:06:79:0B
ValidityFri, 30 Sep 2022 00:00:00 GMT - Sat, 30 Sep 2023 23:59:59 GMT
Size 115 kB (115218 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redir/479212/todaysoffr/?cid=645349d31d233645349d31d235&sid1=4430&aff=todaysoffr&ds24_domain=www.digistore24.com HTTP/1.1
Host: www.checkout-ds24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.funguselixirs.life/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 04 May 2023 05:59:48 GMT
server: envoy
x-robots-tag: noindex, nofollow, noarchive
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: 0
set-cookie: splittest/479212/initial=none%7C0%7C0; expires=Sun, 14-May-2023 04:53:08 GMT; Max-Age=860000; path=/; domain=www.digistore24.com
pro_700550=1863979%3D%3D%3D645349d31d233645349d31d235~4430%3D1683179988%3D~~~~%3D%3D479212%3DN%3D0%3D%3D1683179988645349d4921f33.16441437%3D%3Dhttp%3A%2F%2Fwww.funguselixirs.life%2F; expires=Fri, 03-May-2024 05:59:48 GMT; Max-Age=31536000; path=/; secure; SameSite=None
pro_700550=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.checkout-ds24.com; secure; SameSite=None
location: https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
vary: Origin, Accept-Encoding
content-type: text/html; charset=UTF-8
x-envoy-upstream-service-time: 96
content-encoding: gzip
via: 1.1 google
x-envoy-decorator-operation: null
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Permanent+Marker:400%7CRoboto:400,600,900
142.250.74.106200 OK 4.8 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Permanent+Marker:400%7CRoboto:400,600,900
IP 142.250.74.106:443
Requested by https://getgorillaflowing.com/?aff=todaysoffr&cid=645349d31d233645349d31d235&sid1=4430
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File type ASCII text, with very long lines (4900), with no line terminators
Hash 62bb0b0c2986bd8a70de6f5e8300de23
18cc234fa947361482ab943d461791ce544b2ae1
9a89821f1144d76625089fdd9ef7bdd7ab9ff2336f641794d9ee60cbfd697d8b
GET /css?family=Permanent+Marker:400%7CRoboto:400,600,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getgorillaflowing.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 04 May 2023 05:59:50 GMT
date: Thu, 04 May 2023 05:59:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2