| www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/ | 44.237.104.168 | 302 Found | 230 B |
URL User Request GET HTTP/1.1www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/ IP44.237.104.168:443
CertificateIssuerGlobalSign nv-sa Subject*.clkmg.com Fingerprint63:8A:A6:9B:36:83:0A:EC:38:E5:D8:2E:98:37:F2:E2:93:A9:E6:B6 ValidityWed, 28 Feb 2024 22:20:05 GMT - Mon, 31 Mar 2025 22:20:04 GMT
File typeHTML document, ASCII text Hashfb2cfb1687f0d003b09bc9696f23c226 6306f033a4ce0ada68cb9289c1f3abfffc586333 24dfc686820f09ca750d1b7976876b82b778f07969c322f480ad70463b49f676
GET /flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/ HTTP/1.1
Host: www.clkmg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: undefined-origin
Access-Control-Max-Age: 300
Content-Type: text/html; charset=iso-8859-1
Date: Tue, 23 Apr 2024 21:05:57 GMT
Location: https://mweboutstanding.com/8859/186/3/?subid=
P3P: CP="This is not a P3P policy! See https://www.clkmg.com for more info."
Server: nginx
Set-Cookie: alc=1; domain=.clkmg.com; expires=Tue Apr 23 21:06:02 2024; path=/;
vid=1002428822; domain=.clkmg.com; expires=Wed Apr 23 21:05:57 2025; path=/; SameSite=None; Secure;
X-CM-FE: httpfe-2
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Content-Length: 230
Connection: keep-alive
|
|
| glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 | 161.35.252.182 | 200 OK | 7.9 kB |
URL User Request GET HTTP/1.1glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeHTML document, ASCII text, with very long lines (1139) Hash5bb25e9aaad8bbf4b803ec29a6f6bd1c 95c329e9d16bec276dbf11945107229f3dcf4d6f 19a9e9880093d90c40d7f2aa09c6d7fc277319443bfd49404b970fb9362d4f8b
GET /?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Cache-Control: no-cache, private, max-age=172800
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; expires=Tue, 23-Apr-2024 23:05:59 GMT; Max-Age=7200; path=/; samesite=lax
gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; expires=Tue, 23-Apr-2024 23:05:59 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Expires: Thu, 25 Apr 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 7892
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| glucosavior.com/css/normalize.css | 161.35.252.182 | 200 OK | 1.7 kB |
URL GET HTTP/1.1glucosavior.com/css/normalize.css IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
Hashe1030567246d42c130844834dafa2249 44425554e15bef2f529c71c137c1bca5d1093d8d 3fab07b2bc7594009a907f779e14c09d8ddea24485cc11fb8ab105fc8c1a294e
GET /css/normalize.css HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:44 GMT
ETag: "17fa-5f892c6932900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 1739
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.130.132 | 200 OK | 137 kB |
URL GET HTTP/2fast.wistia.com/assets/external/E-v1.js IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65474) Size137 kB (136728 bytes) Hash6656cf6994f83e724730f0522124563a bb5fdc5ef374b9aac08131c875e89f65be624905 e9a360f95fc6ab15d1a532ac8ad7ae05566977b92815570d26e2fe9d87ce5772
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 22 Apr 2024 20:07:28 GMT
etag: "00a9f6eded7773ee5c0548a1b76fdc61"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:05:59 GMT
age: 3438
x-served-by: cache-iad-kcgs7200116-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 644
x-timer: S1713906360.747168,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 136728
X-Firefox-Spdy: h2
|
|
| mweboutstanding.com/8859/186/3/?subid= | 172.67.177.109 | 302 Found | 3.6 kB |
URL User Request GET HTTP/2mweboutstanding.com/8859/186/3/?subid= IP172.67.177.109:443
CertificateIssuerGoogle Trust Services LLC Subjectmweboutstanding.com Fingerprint64:75:FE:F0:0D:ED:C1:64:48:80:FA:A9:1F:DF:C4:F2:3F:B7:60:49 ValiditySat, 09 Mar 2024 10:12:33 GMT - Fri, 07 Jun 2024 10:12:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x56, components 3 Hashcb53c0243314e34891d7e7b0344c0172 1fb2b2012b661e6d9bf04aee2a19e48cf3fe0f8b 5760aea6338e34cf7cf03a1b421ab19489aaec204ad0dabf6a135742189d8669
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /8859/186/3/?subid= HTTP/1.1
Host: mweboutstanding.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 23 Apr 2024 21:05:57 GMT
content-type: text/html; charset=UTF-8
location: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
cache-control: max-age=3600, private
pragma: no-cache
expires: Tue, 23 Apr 2024 22:08:13 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-server: WEB_6
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDvnJbjKdBkxKLVBqBrQP8wYzWkbUAfekeMQ7vYU4; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:05:57 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d08dda1356aa-OSL
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/w0pfeqihky.jsonp | 151.101.130.132 | 200 OK | 21 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/w0pfeqihky.jsonp IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeASCII text, with very long lines (57754) Hash13345005370a7ba0aa4dca38d7c19b9a b812261466b59858d92389d787c06e9282d32f3e e8aaada230e7af0f9b7f3bc91fff7457f56e1bd6622b2695a9bab9781ad9f874
GET /embed/medias/w0pfeqihky.jsonp HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"e8aaada230e7af0f9b7f3bc91fff7457"
x-request-id: 8a9853bf-4e30-476e-9cb7-a65e95125bf4
x-runtime: 0.129282
content-encoding: br
x-envoy-upstream-service-time: 132
via: 1.1 c34bd35d24f6df50307d1ac92d0f6110.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD89-C3
x-amz-cf-id: UC-Kyu0H5NAXB_TcNcsT4EA39viPfbTqTp3kdVR3dTQe05sFCbgXFQ==
accept-ranges: bytes
age: 37142
date: Tue, 23 Apr 2024 21:05:59 GMT
x-served-by: cache-iad-kjyo7100135-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 94, 0
x-timer: S1713906360.750836,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 20798
X-Firefox-Spdy: h2
|
|
| glucosavior.com/css/bootstrap.min.css | 161.35.252.182 | 200 OK | 23 kB |
URL GET HTTP/1.1glucosavior.com/css/bootstrap.min.css IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashabe91756d18b7cd60871a2f47c1e8192 7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d 7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /css/bootstrap.min.css HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:44 GMT
ETag: "260c5-5f892c6932900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 22983
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| glucosavior.com/css/style.css?v=1.17 | 161.35.252.182 | 200 OK | 17 kB |
URL GET HTTP/1.1glucosavior.com/css/style.css?v=1.17 IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeassembler source, ASCII text Hash6a876ccfa94590d0cd56ad2c4cf17b36 6a5e09c93b539718450818ef81e88c1ad614b526 87ccba036614decf7c7e6cc8f07686dae4106ebcd355328ff6d765d0ace16540
GET /css/style.css?v=1.17 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 22 Jan 2024 23:34:33 GMT
ETag: "1feb9-60f9145a1dd3a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 17061
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| glucosavior.com/imgs/five-stars.svg | 161.35.252.182 | 200 OK | 1.4 kB |
URL GET HTTP/1.1glucosavior.com/imgs/five-stars.svg IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeSVG Scalable Vector Graphics image Hashe782d7c1d70bdc8104f99b1825bd9576 f55afb1bd252d13570c38f70c4dd593b765ac75c 358af5f279832e59263c88ed37b408b64488382de64248017779210933caeaf2
GET /imgs/five-stars.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 18 Jun 2023 14:41:32 GMT
ETag: "dbc-5fe686a001f00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 1376
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| glucosavior.com/imgs/plan-gift.svg | 161.35.252.182 | 200 OK | 581 B |
URL GET HTTP/1.1glucosavior.com/imgs/plan-gift.svg IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeSVG Scalable Vector Graphics image Hash2f3981185389753812d1433fb9365895 81bbcb34c4cc6fad26e65d948e8b46a0c68ec0b2 28ea525dd5f710520d0638e6cab85d112d9b01553c47123a0e097c30a0419b34
GET /imgs/plan-gift.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 18 Jun 2023 14:41:32 GMT
ETag: "58c-5fe686a001f00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 581
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| glucosavior.com/imgs/landing/volume-icon.svg | 161.35.252.182 | 200 OK | 314 B |
URL GET HTTP/1.1glucosavior.com/imgs/landing/volume-icon.svg IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeSVG Scalable Vector Graphics image Hash7874a21a99f05d9e4d940aa979d1913c b894776a1cffd8c3cd36d823c9df236c0352be0c aca3dc719cf77d15586f508b19f336be143ecf5c6b22bd3ed796e83b7f31fdee
GET /imgs/landing/volume-icon.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:44:00 GMT
ETag: "2dd-5f892cb1ad400-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 314
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| www.buygoods.com/images/buygoods_black.png | 172.66.40.141 | 301 Moved Permanently | 0 B |
URL GET HTTP/3www.buygoods.com/images/buygoods_black.png IP172.66.40.141:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGoogle Trust Services LLC Subjectbuygoods.com FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/buygoods_black.png HTTP/1.1
Host: www.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Tue, 23 Apr 2024 21:06:00 GMT
content-length: 0
location: https://buygoods.com/images/buygoods_black.png
cf-cache-status: HIT
age: 647
expires: Wed, 24 Apr 2024 01:06:00 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 8790d09edbbe712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| buygoods.com/images/buygoods_black.png | 172.66.40.141 | 200 OK | 4.5 kB |
URL GET HTTP/3buygoods.com/images/buygoods_black.png IP172.66.40.141:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGoogle Trust Services LLC Subjectbuygoods.com FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT
File typeRIFF (little-endian) data, Web/P image Hash72bfa5a711311050989a65056ed84e7d dd99b3f59b3bc9c1139cfcbf7e6c96974518beb1 33123ac79fae6dd7ea03a3b2d7784cbac68cb4e4ca4527d570fdc8a628210159
GET /images/buygoods_black.png HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: image/webp
content-length: 4492
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=9596
content-disposition: inline; filename="buygoods_black.webp"
vary: Accept
cache-control: public, max-age=315360000
etag: "59b77ee8-257c"
expires: Fri, 21 Apr 2034 21:06:00 GMT
last-modified: Tue, 12 Sep 2017 06:30:00 GMT
strict-transport-security: max-age=15552000; includeSubDomains
x-frame-options: SAMEORIGIN
x-server: WEB_2
cf-cache-status: HIT
age: 7951
accept-ranges: bytes
server: cloudflare
cf-ray: 8790d09f2c19712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| glucosavior.com/fonts/OpenSans-Regular.woff | 161.35.252.182 | 200 OK | 21 kB |
URL GET HTTP/1.1glucosavior.com/fonts/OpenSans-Regular.woff IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeWeb Open Font Format, TrueType, length 20696, version 1.0 Hashc8ffdeb3144d5055756ef01ef98e8486 ad4dc70ae671b1007a35adc7f202861b99435a33 724ffca6332d70f4cbb540b05753e0e5d59a9b25a0eefd2e46fbf841ad41889b
GET /fonts/OpenSans-Regular.woff HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:52 GMT
ETag: "50d8-5f892c70d3b00"
Accept-Ranges: bytes
Content-Length: 20696
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff
|
|
| glucosavior.com/fonts/Konnect-Bold.woff2 | 161.35.252.182 | 200 OK | 35 kB |
URL GET HTTP/1.1glucosavior.com/fonts/Konnect-Bold.woff2 IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 34836, version 1.0 Hashde4629b9e8f3888bdd817de6b340a896 b095bbafae52290464ec83f46ff9ab9f99db16ef a944d6d160a439285ca6ec5e072c08990db829aec44ac1d6e206d883a40cbbda
GET /fonts/Konnect-Bold.woff2 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:48 GMT
ETag: "8814-5f892c6d03200"
Accept-Ranges: bytes
Content-Length: 34836
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786 | 172.66.40.141 | 200 OK | 36 kB |
URL GET HTTP/2display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786 IP172.66.40.141:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGoogle Trust Services LLC Subjectbuygoods.com FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT
Hashb23bd9b821da2b97e46f06ff35b3996e 752451a21c2b607c76d09231d9dffe1e5a116033 e9f8a3c33f014e47000b9a826ccea7aa7922c85340358b7f92b0933e654386df
GET /v1/disclaimer?id=disclaimer&account_id=8786 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:05:59 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
x-server: WEB_6_7500
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
__cflb=02DiuGr4oznJ5r4PV3Dejx8NzEQ8Hg5uRtWZqdL8dCZZn; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:05:59 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09c6d9a0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/postRoll-v2.js | 151.101.130.132 | 200 OK | 25 kB |
URL GET HTTP/2fast.wistia.com/assets/external/postRoll-v2.js IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65461) Hash4b42810f874c9058336e641c8b9e5a93 04bbc106ca4511c5cf1b39e66f869bcde5509824 d2be004e9fbd5d93642c3880e92af2c3dc9b860f2a7f3f17709b76bfbcec5774
GET /assets/external/postRoll-v2.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "725eb25fd2131a50c66180748fca8a34"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 1705
x-served-by: cache-iad-kiad7000156-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 693, 2
x-timer: S1713906360.376702,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 25372
X-Firefox-Spdy: h2
|
|
| glucosavior.com/imgs/logo.webp | 161.35.252.182 | 200 OK | 5.2 kB |
URL GET HTTP/1.1glucosavior.com/imgs/logo.webp IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeRIFF (little-endian) data, Web/P image Hash71e3e86515f03b40ea577d9a13a0e4c9 3e1df318d1aef1bfed0c14c8ca06ad302f67258d 0b66950dde9cd4f1687589f6d47dcd702269bf3347fa9d77b8f39fc987841a2f
GET /imgs/logo.webp HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 18 Dec 2023 00:56:42 GMT
ETag: "1428-60cbe39204680"
Accept-Ranges: bytes
Content-Length: 5160
Cache-Control: max-age=172800
Expires: Thu, 25 Apr 2024 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| glucosavior.com/fonts/OpenSans-Bold.woff | 161.35.252.182 | 200 OK | 21 kB |
URL GET HTTP/1.1glucosavior.com/fonts/OpenSans-Bold.woff IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeWeb Open Font Format, TrueType, length 20676, version 1.0 Hashf9fc9780feed3b7444ba6277f067c7f5 b69fec868a543c183983b7d1ef89bc75f8fcf7b6 f21a07b8173a59a6cdf3f46d46a4bd1b14e4146d4e1c80a543021a6d69b2fe8c
GET /fonts/OpenSans-Bold.woff HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:52 GMT
ETag: "50c4-5f892c70d3b00"
Accept-Ranges: bytes
Content-Length: 20676
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
|
|
| fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js | 151.101.130.132 | 200 OK | 23 kB |
URL GET HTTP/2fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65462) Hash67f826e731cf1bd606ad4254698a884a 26e7f8c92ecb684829d32cb530961850c04fa9b1 dafa9eaea2a9c74a19baaa2a941a86a2c325b9ca38e02f2240136a8467ea6aec
GET /assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "bba82f99f4bd03339743f1525ceac565"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3365
x-served-by: cache-iad-kjyo7100154-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 9
x-timer: S1713906360.433459,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 23018
X-Firefox-Spdy: h2
|
|
| go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434 | 172.66.43.113 | 200 OK | 1.3 kB |
URL GET HTTP/2go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434 IP172.66.43.113:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectmaxweb.com Fingerprint0A:CD:DD:BD:95:0C:D2:00:0B:46:8A:C1:CA:53:50:87:83:FD:42:2A ValiditySun, 03 Mar 2024 04:01:42 GMT - Sat, 01 Jun 2024 04:01:41 GMT
File typeHTML document, ASCII text, with no line terminators Hash93edbe3be07b3aba6dc503791f94278d 4bc9cdf991afb615a9f2abc8a6b3a05ca10dec99 6bddb133eec6d95ff51562f0fbbdac3e3c457b6c74a660b5212e47ec91c58fee
GET /conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 23 Apr 2024 22:08:15 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-server: WEB_6
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDvnJbjKdBkxKLVBqBrQP8wYzWkbUCt7KF3LzjXwJ; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:06:00 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09eef3256ca-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| glucosavior.com/imgs/favicon/apple-touch-icon.png | 161.35.252.182 | 200 OK | 7.8 kB |
URL GET HTTP/1.1glucosavior.com/imgs/favicon/apple-touch-icon.png IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashe5ef86f01f59212fbfe45ba527d3e178 828b3abb07aa9d87770f55404f28b9db09199acb 9470462abe9fd85e5f38761d0b463b73c934b47df4c62e396f0a3490d61baed3
GET /imgs/favicon/apple-touch-icon.png HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 17 Dec 2023 16:31:18 GMT
ETag: "1e8c-60cb729acc180"
Accept-Ranges: bytes
Content-Length: 7820
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
|
|
| adhvtrk.com/p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3} | 52.70.49.193 | 200 OK | 2 B |
URL GET HTTP/1.1adhvtrk.com/p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3} IP52.70.49.193:443
Requested byhttps://go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434 CertificateIssuerGlobalSign nv-sa Subject*.adhvtrk.com Fingerprint9F:80:E1:E0:87:34:50:81:B3:76:58:F4:2B:A0:C6:7A:5E:70:CF:8A ValidityMon, 26 Feb 2024 10:31:19 GMT - Sat, 29 Mar 2025 10:31:18 GMT
File typeASCII text, with no line terminators Hash227dc251e1411f6b6fffcd1c30486f4d 8c71b835789865c9f242316c7ebbdc25cea35b2d 6a4b804705e725b9f4fd4adf6500180b54cc5ddefed460e48d1be724fed155d6
GET /p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3} HTTP/1.1
Host: adhvtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.maxweb.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 2
Content-Type: text/plain; charset=utf-8
Date: Tue, 23 Apr 2024 21:06:00 GMT
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Connection: close
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.130.132 | 200 OK | 22 kB |
URL GET HTTP/2fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hash7845f53703880c301c91e55dacfb2730 a91923e2fe5f5a139f65a41682cee83637c636bf 441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "054f6647c2b3166c5479ecec2e1cdb23"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3450
x-served-by: cache-iad-kjyo7100161-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 43, 111
x-timer: S1713906361.803772,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 21596
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/engines/hls_video.js | 151.101.130.132 | 200 OK | 118 kB |
URL GET HTTP/2fast.wistia.com/assets/external/engines/hls_video.js IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size118 kB (118197 bytes) Hash0d0944584a2e0b7299c788dfbcc6224b dbafb5834a1553d168e2e61633d9dfb37d29a438 c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:28 GMT
etag: "eb7dd49fb6d9bc27920e7403bf0de676"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3440
x-served-by: cache-iad-kcgs7200036-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 73
x-timer: S1713906361.808496,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 118197
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/w0pfeqihky.m3u8 | 151.101.130.132 | 200 OK | 1.1 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/w0pfeqihky.m3u8 IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash4569d6bfc0ffe84d83c687790e9b6687 6b7552131ba578298455df51bddba470574edb75 5f9e9bd204e0b93397c657308ca3857bb3377483781592ccd32dabc32eab5d17
GET /embed/medias/w0pfeqihky.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"5f9e9bd204e0b93397c657308ca3857b"
x-request-id: 5553cf04-2aa0-4006-bb5b-86dd8850e5e5
x-runtime: 0.030139
x-envoy-upstream-service-time: 31
via: 1.1 51216641aa2cfdaadb386a6a151c2424.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: CJ9eo5XwGr5fOIIIivHDDXukJGIyZutiV_Rq_L6i7gX-mSWKzD8gWQ==
accept-ranges: bytes
age: 17455
date: Tue, 23 Apr 2024 21:06:00 GMT
x-served-by: cache-iad-kiad7000175-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 76, 0
x-timer: S1713906361.974600,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1145
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.130.132 | 200 OK | 1.2 kB |
URL GET HTTP/2fast.wistia.com/assets/images/blank.gif IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 2264
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 64
x-timer: S1713906361.980375,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2
|
|
| rum-collector-2.pingdom.net/img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1 | 34.240.56.220 | 200 OK | 0 B |
URL GET HTTP/1.1rum-collector-2.pingdom.net/img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1 IP34.240.56.220:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.pingdom.net FingerprintFC:B3:2A:2E:A3:35:95:66:4B:D1:52:41:46:D6:C6:FB:73:39:D1:E3 ValidityMon, 06 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1 HTTP/1.1
Host: rum-collector-2.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 23 Apr 2024 21:06:00 GMT
Expires: 0
Pragma: no-cache
Content-Length: 0
Connection: keep-alive
|
|
| embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8 | 143.204.55.78 | 200 OK | 99 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8 IP143.204.55.78:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hashebd705a3c752569094c4c6c5c05c592f 8ebe48979b057ffd9cafabd03778488592d14977 55df0f31b71424690f414655c44b77fdfc6cc28c756802e15e9d2483ee216c78
GET /deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 99311
server: envoy
date: Thu, 18 Apr 2024 17:44:12 GMT
expires: Fri, 18 Apr 2025 17:44:12 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
surrogate-key: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 122
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FqnqeRjnf08pyPmZe8J5SWjqK9Js33AgIxBa1O4SaVYehqcQKuHmww==
age: 444108
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts | 143.204.55.78 | 200 OK | 449 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts IP143.204.55.78:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeMPEG transport stream data Size449 kB (448568 bytes) Hash324da34a48f25b94dce3693aba4ae54e b2cc635f0b0681cda4ee01693ad4e7b379ed0409 1b7506955cc6b056dc7a6b634840a25881ee3235687f4d54beabac752445aa62
GET /deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
content-length: 448568
server: envoy
date: Sat, 20 Apr 2024 19:53:20 GMT
expires: Sun, 20 Apr 2025 19:53:20 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
surrogate-key: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 73
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3WNC4LmWKwjySWoUeKeTe86QqLKtb4BDaicqpkk9nKOhfSTD2W90Dg==
age: 263561
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| distillery.wistia.com/x | 54.230.111.67 | 204 No Content | 0 B |
IP54.230.111.67:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40 ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: text/plain
Content-Length: 1620
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1FSchNW99uamEAD3EglZQFKPIYZTlCzbMsloSrZVabotM82OVW6uQg==
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8 | 143.204.55.78 | 200 OK | 99 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8 IP143.204.55.78:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hashcc916dc5bd0617720099c164446d8cff 6c3ff444c92afea732f19f473aa3325f992cc816 f5769ccf476802b70f5bc40242528b79153479f0beccbc0d6397dc9a8f63258c
GET /deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 99311
server: envoy
date: Sat, 20 Apr 2024 03:45:25 GMT
expires: Sun, 20 Apr 2025 03:45:25 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: b31a7fd41ee4ab74f53c7f2c1563277b50211cce-hls-segment
surrogate-key: b31a7fd41ee4ab74f53c7f2c1563277b50211cce-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 104
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jvY3mtcdnwKDNENyS5PeZBg7nJRa8nyxwl3ReoSp7Nrek6DRlITX5g==
age: 321636
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.100 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.100:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1002
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uPe4n4qbQSGZRaMsOAYcIGgslnqbqKRAgY79mymf2p0K5r9Y2tXDww==
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.100 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.100:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 2186
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uDOEalfhvtVHrx6GTtoqYRkbKWmNYANRVetv-OufQQCK3n7M7mkxMQ==
X-Firefox-Spdy: h2
|
|
| glucosavior.com/imgs/favicon/favicon-16x16.png | 161.35.252.182 | 200 OK | 1.1 kB |
URL GET HTTP/1.1glucosavior.com/imgs/favicon/favicon-16x16.png IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash1abf4f0878a0a3cf27671527d066a04d 001aae1457db54931c77e8952b0b0c30a82dcc80 d8110ea95d0a5791e12037be21b255a4c390d5a7df13dfcb13d1297badab201d
GET /imgs/favicon/favicon-16x16.png HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 17 Dec 2023 16:31:18 GMT
ETag: "47b-60cb729acc180"
Accept-Ranges: bytes
Content-Length: 1147
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
|
|
| tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186 | 172.66.40.141 | 200 OK | 6.9 kB |
URL GET HTTP/3tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186 IP172.66.40.141:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGoogle Trust Services LLC Subjectbuygoods.com FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT
File typeASCII text, with very long lines (7331), with no line terminators Hash8c5526e2bcda538509d150861887cabb b9183451684e68ecb092b4c3b3b4d349844dc436 a30a2d9f98d1de0e2306cb8c7ae58505c2560470d5c3c09f60f18926aed63566
GET /track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
vary: Accept-Encoding
x-server: WEB_6
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: spiaffid_8786=103; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spisubid_8786=186%7C8859_sessid2024042321089352; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spicampaign_id_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
spireferrer_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
spireferrer_8786=91.90.42.154::glucosavior.com; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spisessid2_8786=sessid20240423210824014; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spi_funnel_codename_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
__cflb=02DiuEJgUPmnkKW5JETNtVJGZX1NbzGS84n7xpL4yCND2; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:06:00 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09e9b9c712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| glucosavior.com/fonts/Konnect-Medium.woff2 | 161.35.252.182 | 200 OK | 35 kB |
URL GET HTTP/1.1glucosavior.com/fonts/Konnect-Medium.woff2 IP161.35.252.182:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerLet's Encrypt Subjectglucosavior.com Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65 ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 34844, version 1.0 Hash25f9bba62f573633c009b9683bfc08ca 95cc4b07e6a85c8491c86efa001bb9d174ece28f 8794e0c4f6493cbad9ba38e6ee7872329f8e2436b12b3b7fb1a39a64f0ce8470
GET /fonts/Konnect-Medium.woff2 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:48 GMT
ETag: "881c-5f892c6d03200"
Accept-Ranges: bytes
Content-Length: 34844
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| embed-ssl.wistia.com/deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720 | 143.204.55.51 | 200 OK | 24 kB |
URL GET HTTP/2embed-ssl.wistia.com/deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720 IP143.204.55.51:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hash4ce82dc174f18916dbf70da4d33ae560 dd8ecde9768b4c4b8f882900bbb4997fac92284c bb57a36174f9631ba12db330794948b79c70cffad9c5a208f1cab41e1142421d
GET /deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
accept-ranges: none
access-control-request-method: *
content-disposition: inline
edge-cache-tag: 18551dbb78156c1c6ea48b7344442e47
last-modified: Thu, 05 Jan 2023 13:59:20 UTC
surrogate-key: 18551dbb78156c1c6ea48b7344442e47 thumbnail-delivery
x-envoy-upstream-service-time: 243
server: envoy
cache-control: max-age=31536000
date: Sat, 20 Apr 2024 04:39:36 GMT
etag: Tgvxc518PVds1x4A3LgZhfdtB6E=
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WXB6bP_2767kR9pU398QdHvjXkhmLVs9ADyyfXUyO__SntUvzfGKxg==
age: 318383
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2
|
|
| buygoods.com/affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014 | 172.66.40.141 | 200 OK | 0 B |
URL GET HTTP/3buygoods.com/affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014 IP172.66.40.141:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGoogle Trust Services LLC Subjectbuygoods.com FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014 HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-server: WEB_2
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuEzB32VBtgHEATQMGM4TwBH7nn3iMyE6QxiMtEaJG; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 21:06:01 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d0a4da74712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.wistia.com/embed/medias/w0pfeqihky/swatch | 151.101.130.132 | 200 OK | 3.6 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/w0pfeqihky/swatch IP151.101.130.132:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x56, components 3 Hashcb53c0243314e34891d7e7b0344c0172 1fb2b2012b661e6d9bf04aee2a19e48cf3fe0f8b 5760aea6338e34cf7cf03a1b421ab19489aaec204ad0dabf6a135742189d8669
GET /embed/medias/w0pfeqihky/swatch HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: envoy
cache-control: public, no-cache,max-age=31536000
access-control-request-method: *
content-disposition: inline
edge-cache-tag: c8bdcd78317e10e715c107e065d4a0ab
etag: 4-DTD4vvFtJqb4OIHvZPlIf6Xz8=
last-modified: Wed, 20 Dec 2023 15:43:04 UTC
x-envoy-upstream-service-time: 37
via: 1.1 c3af1bb2028605770032345c7c19b7aa.cloudfront.net (CloudFront), 1.1 0712e4ad4264127dfcb76a114b130494.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-cdn: cloudfront
access-control-allow-origin: *,*
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
timing-allow-origin: *
x-amz-cf-pop: IAD89-P2, IAD89-C3
x-amz-cf-id: bcZchWhJQkoApPnaMpi1xMFnvOnglY92-Ny6XDKL16y-DdH2coQlLw==
accept-ranges: bytes
age: 61788
date: Tue, 23 Apr 2024 21:05:59 GMT
x-served-by: cache-iad-kcgs7200057-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 6940, 0
x-timer: S1713906360.749450,VS0,VE1
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 3643
X-Firefox-Spdy: h2
|
|
| rum-static.pingdom.net/pa-63869521405b1d00110016b4.js | 104.22.54.104 | 200 OK | 6.2 kB |
URL GET HTTP/2rum-static.pingdom.net/pa-63869521405b1d00110016b4.js IP104.22.54.104:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerCloudflare, Inc. Subjectpingdom.net Fingerprint95:37:DC:08:FB:5D:32:8E:03:08:92:BA:43:FB:74:8B:E0:82:A8:E3 ValiditySat, 14 Oct 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6409), with no line terminators Hash2ed8e7502613096120b71683f9f6f135 e19cb9c4307ac1030023181a5400dae1768c89f0 234d7aa30d126debb8fb498d241c324b7740f8d89638f3db54673b7ae3943a9b
GET /pa-63869521405b1d00110016b4.js HTTP/1.1
Host: rum-static.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:05:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 06:22:28 GMT
vary: Accept-Encoding
etag: W/"63490024-1852"
expires: Tue, 23 Apr 2024 21:10:59 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8790d09c380cb518-OSL
X-Firefox-Spdy: h2
|
|
| embed-ssl.wistia.com/deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720 | 143.204.55.51 | 200 OK | 24 kB |
URL GET HTTP/2embed-ssl.wistia.com/deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720 IP143.204.55.51:443
Requested byhttps://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hash089d4f4c24cdd942a6ee4547715495ae 6e88adc7138b811bf4d7b37fec55e3583e02cec6 2295709a98d43e7e2cd9d1cfa250ecc03f1d5d452741545b83588529afb6c1dd
GET /deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
accept-ranges: none
access-control-request-method: *
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: c8bdcd78317e10e715c107e065d4a0ab
etag: LyHA2MZ26AqSQLVFCi2aUD_ehaQ=
last-modified: Wed, 20 Dec 2023 15:43:04 UTC
surrogate-key: c8bdcd78317e10e715c107e065d4a0ab thumbnail-delivery
date: Thu, 18 Apr 2024 10:34:25 GMT
x-envoy-upstream-service-time: 134
server: envoy
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qJoU2PfqUu82QVAKxir77f9bQsHUJtouXqc6IMNzrUuHtvXTpH5Pow==
age: 469895
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2
|
|