Report - www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/

Report Overview

Submitted URL
www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/
IP
44.241.228.163
ASN
#16509 AMAZON-02
Submitted
2024-04-23 21:06:24
Access
public
Website Title
Gluco Savior | LP
Final URL
glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pipedream.wistia.com	6958	2007-03-18	2017-01-30	2024-04-23	1.0 kB	914 B	143.204.55.100
www.clkmg.com	112778	2014-02-06	2016-03-24	2024-04-18	549 B	1.1 kB	44.237.104.168
www.buygoods.com	470240	2003-06-23	2017-09-10	2024-03-28	451 B	421 B	172.66.40.141
display.buygoods.com	389768	2003-06-23	2020-11-11	2024-04-18	438 B	37 kB	172.66.40.141
distillery.wistia.com	6708	2007-03-18	2012-09-30	2024-04-22	475 B	410 B	54.230.111.67
mweboutstanding.com	unknown	2023-05-19	2023-07-17	2024-04-16	492 B	4.5 kB	172.67.177.109
go.maxweb.com	389866	1995-07-17	2018-04-27	2024-04-18	565 B	2.0 kB	172.66.43.113
adhvtrk.com	unknown	2022-02-19	2022-02-19	2024-03-11	542 B	235 B	52.70.49.193
embed-cloudfront.wistia.com	unknown	2007-03-18	2022-11-08	2024-04-22	1.5 kB	650 kB	143.204.55.78
tracking.buygoods.com	303552	2003-06-23	2017-10-16	2024-04-18	616 B	8.5 kB	172.66.40.141
rum-static.pingdom.net	5211	2009-08-04	2012-11-02	2024-04-23	429 B	6.7 kB	104.22.54.104
glucosavior.com	unknown	2023-11-07	2024-01-18	2024-04-18	16 kB	184 kB	161.35.252.182
buygoods.com	125874	2003-06-23	2015-10-28	2024-04-18	1.1 kB	5.6 kB	172.66.40.141
rum-collector-2.pingdom.net	4751	2009-08-04	2017-06-14	2024-04-22	853 B	211 B	34.240.56.220
fast.wistia.com	5153	2007-03-18	2012-07-04	2024-04-23	4.1 kB	360 kB	151.101.130.132
embed-ssl.wistia.com	22795	2007-03-18	2017-01-29	2024-04-23	988 B	50 kB	143.204.55.51

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	mweboutstanding.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186	6.9 kB	2024-04-23	2024-04-23
Pretty URL tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186 IP 172.66.40.141 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 23:06:25 Last Seen2024-04-23 23:06:25 Times Seen1 Hash de9d6fe3ace19fc9011149f1914be80c cf6560ce2098a1048e378a041329b4b31e2993bb 2e12739514e1a1602662f7edd0315ba7692c85b111896b3642bbeabbf26de3a7 Loading...

	rum-static.pingdom.net/pa-63869521405b1d00110016b4.js	6.2 kB	2023-03-08	2024-04-28
Pretty URL rum-static.pingdom.net/pa-63869521405b1d00110016b4.js IP 104.22.54.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:13:07 Last Seen2024-04-28 11:44:39 Times Seen20 Hash c46143682d99b62601484b1b9c284883 726ecef49a385a427b4df136bfda29d54d8a03ba a2a6920a7f7eedd554646935e51d96f08f0719c8a6bc88e3c8374c7f42643d0f Loading...

	glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186	1.7 kB	2024-01-20	2024-04-25
Pretty URL glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 IP 161.35.252.182 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 17:51:10 Last Seen2024-04-25 05:06:49 Times Seen5 Hash eeeac23b45df62095f35457dedf65566 02d4b3ffb4943d03648b1e9818547573e70ecdd6 d3fc78f8e7f13a5bf1a45cc4d5957096f525f99deaf750983c801915d67a1096 Loading...

	unknown	32 B	2023-04-10	2024-05-01
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 22:32:17 Last Seen2024-05-01 12:39:31 Times Seen828 Hash 97b515b55c245bd91d4af67db61909aa 92f6b25efc717978b2a940cea8c89bb5ea6d956c 0c514bc08733b6cb3eb2fdcae00ede478fcba2667add9b5f2c035b9e88cd08e7 Loading...

	fast.wistia.com/embed/medias/w0pfeqihky.jsonp	58 kB	2024-04-23	2024-04-23
Pretty URL fast.wistia.com/embed/medias/w0pfeqihky.jsonp IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 23:06:25 Last Seen2024-04-23 23:06:26 Times Seen2 Hash 13345005370a7ba0aa4dca38d7c19b9a b812261466b59858d92389d787c06e9282d32f3e e8aaada230e7af0f9b7f3bc91fff7457f56e1bd6622b2695a9bab9781ad9f874 Loading...

	fast.wistia.com/assets/external/E-v1.js	821 kB	2024-04-23	2024-04-24
Pretty URL fast.wistia.com/assets/external/E-v1.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 14:43:51 Last Seen2024-04-24 13:01:27 Times Seen22 Hash 6656cf6994f83e724730f0522124563a bb5fdc5ef374b9aac08131c875e89f65be624905 e9a360f95fc6ab15d1a532ac8ad7ae05566977b92815570d26e2fe9d87ce5772 Loading...

	fast.wistia.com/assets/external/postRoll-v2.js	104 kB	2024-04-13	2024-04-26
Pretty URL fast.wistia.com/assets/external/postRoll-v2.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 16:03:10 Last Seen2024-04-26 17:06:57 Times Seen16 Hash 4b42810f874c9058336e641c8b9e5a93 04bbc106ca4511c5cf1b39e66f869bcde5509824 d2be004e9fbd5d93642c3880e92af2c3dc9b860f2a7f3f17709b76bfbcec5774 Loading...

	glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186	804 B	2024-01-20	2024-04-25
Pretty URL glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 IP 161.35.252.182 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 17:51:10 Last Seen2024-04-25 05:06:49 Times Seen5 Hash 17db4ee247e94a32e2d311fba6cca925 b299142e825c566f0c530c66f4de9116164f4085 8c47c790f93d7e98cb79ef72783055c8c98cac6c27e404c59380796e5424ea62 Loading...

	fast.wistia.com/assets/external/playPauseLoadingControl.js	83 kB	2024-04-10	2024-05-03
Pretty URL fast.wistia.com/assets/external/playPauseLoadingControl.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 21:36:41 Last Seen2024-05-03 06:33:51 Times Seen257 Hash 7845f53703880c301c91e55dacfb2730 a91923e2fe5f5a139f65a41682cee83637c636bf 441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942 Loading...

	display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786	1.3 kB	2023-03-07	2024-05-02
Pretty URL display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786 IP 172.66.40.141 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2024-05-02 06:46:05 Times Seen733 Hash 40fc17a9bd2cd46c66a3efbdd13327cd a778267e7bce25b36c2e86cb7003331ffd1ecf44 b13361361dead3e8f8e37c273ea784761ba62008f9a6775fa36ff671302a3236 Loading...

	glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186	289 B	2024-01-20	2024-04-25
Pretty URL glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 IP 161.35.252.182 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 17:51:10 Last Seen2024-04-25 05:06:49 Times Seen5 Hash fcfdea895000ee24a3f9e30d0abecafd e1b64c81a6ba4d96bba07f78e76a7cc90bbffe55 21fab51f6a154d94de8e5ed0d7d74caeeb11e785ff1853622204f01672ce9826 Loading...

	fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js	91 kB	2024-04-13	2024-04-26
Pretty URL fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 16:03:10 Last Seen2024-04-26 17:06:57 Times Seen14 Hash 67f826e731cf1bd606ad4254698a884a 26e7f8c92ecb684829d32cb530961850c04fa9b1 dafa9eaea2a9c74a19baaa2a941a86a2c325b9ca38e02f2240136a8467ea6aec Loading...

	fast.wistia.com/assets/external/engines/hls_video.js	486 kB	2024-04-10	2024-04-29
Pretty URL fast.wistia.com/assets/external/engines/hls_video.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 21:36:41 Last Seen2024-04-29 20:49:28 Times Seen210 Hash 0d0944584a2e0b7299c788dfbcc6224b dbafb5834a1553d168e2e61633d9dfb37d29a438 c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738 Loading...

	glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186	552 B	2023-03-14	2024-04-28
Pretty URL glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 IP 161.35.252.182 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 04:10:55 Last Seen2024-04-28 11:44:39 Times Seen21 Hash 461071fe6fb12d345e1c8fcbfc778a3d b4b9fe6bf9e96ace1791d8fc4a0ad40149014ef7 a586bc7fa56325773a9ab30c926d95d56e0722267a9916fa895e044e4b37432d Loading...

HTTP Transactions (42)

URL IP Response Size

www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/

44.237.104.168

302 Found

230 B

URL User Request GET HTTP/1.1
www.clkmg.com/flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/
IP
44.237.104.168:443
ASN
#16509 AMAZON-02

Certificate
IssuerGlobalSign nv-sa
Subject*.clkmg.com
Fingerprint63:8A:A6:9B:36:83:0A:EC:38:E5:D8:2E:98:37:F2:E2:93:A9:E6:B6
ValidityWed, 28 Feb 2024 22:20:05 GMT - Mon, 31 Mar 2025 22:20:04 GMT

File type
HTML document, ASCII text
Size
230 B (230 bytes)
Hash
fb2cfb1687f0d003b09bc9696f23c226
6306f033a4ce0ada68cb9289c1f3abfffc586333
24dfc686820f09ca750d1b7976876b82b778f07969c322f480ad70463b49f676

HTTP Headers

GET /flowers12/wlgspromo/marcia.beckley@guthrie.org/healthbeauty2day.com/B/BLMF1/WLGS/ HTTP/1.1
Host: www.clkmg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: undefined-origin
Access-Control-Max-Age: 300
Content-Type: text/html; charset=iso-8859-1
Date: Tue, 23 Apr 2024 21:05:57 GMT
Location: https://mweboutstanding.com/8859/186/3/?subid=
P3P: CP="This is not a P3P policy! See https://www.clkmg.com for more info."
Server: nginx
Set-Cookie: alc=1; domain=.clkmg.com; expires=Tue Apr 23 21:06:02 2024; path=/;
vid=1002428822; domain=.clkmg.com; expires=Wed Apr 23 21:05:57 2025; path=/; SameSite=None; Secure;
X-CM-FE: httpfe-2
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Content-Length: 230
Connection: keep-alive

glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186

161.35.252.182

200 OK

7.9 kB

URL User Request GET HTTP/1.1
glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
HTML document, ASCII text, with very long lines (1139)
Size
7.9 kB (7892 bytes)
Hash
5bb25e9aaad8bbf4b803ec29a6f6bd1c
95c329e9d16bec276dbf11945107229f3dcf4d6f
19a9e9880093d90c40d7f2aa09c6d7fc277319443bfd49404b970fb9362d4f8b

HTTP Headers

GET /?aff_id=103&subid2=8859_sessid2024042321089352&subid=186 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Cache-Control: no-cache, private, max-age=172800
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; expires=Tue, 23-Apr-2024 23:05:59 GMT; Max-Age=7200; path=/; samesite=lax
gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; expires=Tue, 23-Apr-2024 23:05:59 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Expires: Thu, 25 Apr 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 7892
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

glucosavior.com/css/normalize.css

161.35.252.182

200 OK

1.7 kB

URL GET HTTP/1.1
glucosavior.com/css/normalize.css
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
ASCII text
Size
1.7 kB (1739 bytes)
Hash
e1030567246d42c130844834dafa2249
44425554e15bef2f529c71c137c1bca5d1093d8d
3fab07b2bc7594009a907f779e14c09d8ddea24485cc11fb8ab105fc8c1a294e

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:44 GMT
ETag: "17fa-5f892c6932900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 1739
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

fast.wistia.com/assets/external/E-v1.js

151.101.130.132

200 OK

137 kB

URL GET HTTP/2
fast.wistia.com/assets/external/E-v1.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JavaScript source, ASCII text, with very long lines (65474)
Size
137 kB (136728 bytes)
Hash
6656cf6994f83e724730f0522124563a
bb5fdc5ef374b9aac08131c875e89f65be624905
e9a360f95fc6ab15d1a532ac8ad7ae05566977b92815570d26e2fe9d87ce5772

HTTP Headers

GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 22 Apr 2024 20:07:28 GMT
etag: "00a9f6eded7773ee5c0548a1b76fdc61"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:05:59 GMT
age: 3438
x-served-by: cache-iad-kcgs7200116-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 644
x-timer: S1713906360.747168,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 136728
X-Firefox-Spdy: h2

mweboutstanding.com/8859/186/3/?subid=

172.67.177.109

302 Found

3.6 kB

URL User Request GET HTTP/2
mweboutstanding.com/8859/186/3/?subid=
IP
172.67.177.109:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmweboutstanding.com
Fingerprint64:75:FE:F0:0D:ED:C1:64:48:80:FA:A9:1F:DF:C4:F2:3F:B7:60:49
ValiditySat, 09 Mar 2024 10:12:33 GMT - Fri, 07 Jun 2024 10:12:32 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x56, components 3
Size
3.6 kB (3643 bytes)
Hash
cb53c0243314e34891d7e7b0344c0172
1fb2b2012b661e6d9bf04aee2a19e48cf3fe0f8b
5760aea6338e34cf7cf03a1b421ab19489aaec204ad0dabf6a135742189d8669

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8859/186/3/?subid= HTTP/1.1
Host: mweboutstanding.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 23 Apr 2024 21:05:57 GMT
content-type: text/html; charset=UTF-8
location: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
cache-control: max-age=3600, private
pragma: no-cache
expires: Tue, 23 Apr 2024 22:08:13 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-server: WEB_6
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDvnJbjKdBkxKLVBqBrQP8wYzWkbUAfekeMQ7vYU4; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:05:57 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d08dda1356aa-OSL
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/w0pfeqihky.jsonp

151.101.130.132

200 OK

21 kB

URL GET HTTP/2
fast.wistia.com/embed/medias/w0pfeqihky.jsonp
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
ASCII text, with very long lines (57754)
Size
21 kB (20798 bytes)
Hash
13345005370a7ba0aa4dca38d7c19b9a
b812261466b59858d92389d787c06e9282d32f3e
e8aaada230e7af0f9b7f3bc91fff7457f56e1bd6622b2695a9bab9781ad9f874

HTTP Headers

GET /embed/medias/w0pfeqihky.jsonp HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"e8aaada230e7af0f9b7f3bc91fff7457"
x-request-id: 8a9853bf-4e30-476e-9cb7-a65e95125bf4
x-runtime: 0.129282
content-encoding: br
x-envoy-upstream-service-time: 132
via: 1.1 c34bd35d24f6df50307d1ac92d0f6110.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD89-C3
x-amz-cf-id: UC-Kyu0H5NAXB_TcNcsT4EA39viPfbTqTp3kdVR3dTQe05sFCbgXFQ==
accept-ranges: bytes
age: 37142
date: Tue, 23 Apr 2024 21:05:59 GMT
x-served-by: cache-iad-kjyo7100135-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 94, 0
x-timer: S1713906360.750836,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 20798
X-Firefox-Spdy: h2

glucosavior.com/css/bootstrap.min.css

161.35.252.182

200 OK

23 kB

URL GET HTTP/1.1
glucosavior.com/css/bootstrap.min.css
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
23 kB (22983 bytes)
Hash
abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:44 GMT
ETag: "260c5-5f892c6932900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 22983
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

glucosavior.com/css/style.css?v=1.17

161.35.252.182

200 OK

17 kB

URL GET HTTP/1.1
glucosavior.com/css/style.css?v=1.17
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
assembler source, ASCII text
Size
17 kB (17061 bytes)
Hash
6a876ccfa94590d0cd56ad2c4cf17b36
6a5e09c93b539718450818ef81e88c1ad614b526
87ccba036614decf7c7e6cc8f07686dae4106ebcd355328ff6d765d0ace16540

HTTP Headers

GET /css/style.css?v=1.17 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:05:59 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 22 Jan 2024 23:34:33 GMT
ETag: "1feb9-60f9145a1dd3a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 23 May 2024 21:05:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 17061
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

glucosavior.com/imgs/five-stars.svg

161.35.252.182

200 OK

1.4 kB

URL GET HTTP/1.1
glucosavior.com/imgs/five-stars.svg
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1376 bytes)
Hash
e782d7c1d70bdc8104f99b1825bd9576
f55afb1bd252d13570c38f70c4dd593b765ac75c
358af5f279832e59263c88ed37b408b64488382de64248017779210933caeaf2

HTTP Headers

GET /imgs/five-stars.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 18 Jun 2023 14:41:32 GMT
ETag: "dbc-5fe686a001f00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 1376
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

glucosavior.com/imgs/plan-gift.svg

161.35.252.182

200 OK

581 B

URL GET HTTP/1.1
glucosavior.com/imgs/plan-gift.svg
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
SVG Scalable Vector Graphics image
Size
581 B (581 bytes)
Hash
2f3981185389753812d1433fb9365895
81bbcb34c4cc6fad26e65d948e8b46a0c68ec0b2
28ea525dd5f710520d0638e6cab85d112d9b01553c47123a0e097c30a0419b34

HTTP Headers

GET /imgs/plan-gift.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 18 Jun 2023 14:41:32 GMT
ETag: "58c-5fe686a001f00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 581
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

glucosavior.com/imgs/landing/volume-icon.svg

161.35.252.182

200 OK

314 B

URL GET HTTP/1.1
glucosavior.com/imgs/landing/volume-icon.svg
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
SVG Scalable Vector Graphics image
Size
314 B (314 bytes)
Hash
7874a21a99f05d9e4d940aa979d1913c
b894776a1cffd8c3cd36d823c9df236c0352be0c
aca3dc719cf77d15586f508b19f336be143ecf5c6b22bd3ed796e83b7f31fdee

HTTP Headers

GET /imgs/landing/volume-icon.svg HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:44:00 GMT
ETag: "2dd-5f892cb1ad400-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: index,follow
Content-Length: 314
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.buygoods.com/images/buygoods_black.png

172.66.40.141

301 Moved Permanently

0 B

URL GET HTTP/3
www.buygoods.com/images/buygoods_black.png
IP
172.66.40.141:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGoogle Trust Services LLC
Subjectbuygoods.com
FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA
ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/buygoods_black.png HTTP/1.1
Host: www.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Tue, 23 Apr 2024 21:06:00 GMT
content-length: 0
location: https://buygoods.com/images/buygoods_black.png
cf-cache-status: HIT
age: 647
expires: Wed, 24 Apr 2024 01:06:00 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 8790d09edbbe712e-OSL
alt-svc: h3=":443"; ma=86400

buygoods.com/images/buygoods_black.png

172.66.40.141

200 OK

4.5 kB

URL GET HTTP/3
buygoods.com/images/buygoods_black.png
IP
172.66.40.141:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGoogle Trust Services LLC
Subjectbuygoods.com
FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA
ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.5 kB (4492 bytes)
Hash
72bfa5a711311050989a65056ed84e7d
dd99b3f59b3bc9c1139cfcbf7e6c96974518beb1
33123ac79fae6dd7ea03a3b2d7784cbac68cb4e4ca4527d570fdc8a628210159

HTTP Headers

GET /images/buygoods_black.png HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: image/webp
content-length: 4492
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=9596
content-disposition: inline; filename="buygoods_black.webp"
vary: Accept
cache-control: public, max-age=315360000
etag: "59b77ee8-257c"
expires: Fri, 21 Apr 2034 21:06:00 GMT
last-modified: Tue, 12 Sep 2017 06:30:00 GMT
strict-transport-security: max-age=15552000; includeSubDomains
x-frame-options: SAMEORIGIN
x-server: WEB_2
cf-cache-status: HIT
age: 7951
accept-ranges: bytes
server: cloudflare
cf-ray: 8790d09f2c19712e-OSL
alt-svc: h3=":443"; ma=86400

glucosavior.com/fonts/OpenSans-Regular.woff

161.35.252.182

200 OK

21 kB

URL GET HTTP/1.1
glucosavior.com/fonts/OpenSans-Regular.woff
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
Web Open Font Format, TrueType, length 20696, version 1.0
Size
21 kB (20696 bytes)
Hash
c8ffdeb3144d5055756ef01ef98e8486
ad4dc70ae671b1007a35adc7f202861b99435a33
724ffca6332d70f4cbb540b05753e0e5d59a9b25a0eefd2e46fbf841ad41889b

HTTP Headers

GET /fonts/OpenSans-Regular.woff HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:52 GMT
ETag: "50d8-5f892c70d3b00"
Accept-Ranges: bytes
Content-Length: 20696
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff

glucosavior.com/fonts/Konnect-Bold.woff2

161.35.252.182

200 OK

35 kB

URL GET HTTP/1.1
glucosavior.com/fonts/Konnect-Bold.woff2
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34836, version 1.0
Size
35 kB (34836 bytes)
Hash
de4629b9e8f3888bdd817de6b340a896
b095bbafae52290464ec83f46ff9ab9f99db16ef
a944d6d160a439285ca6ec5e072c08990db829aec44ac1d6e206d883a40cbbda

HTTP Headers

GET /fonts/Konnect-Bold.woff2 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:48 GMT
ETag: "8814-5f892c6d03200"
Accept-Ranges: bytes
Content-Length: 34836
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2

display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786

172.66.40.141

200 OK

36 kB

URL GET HTTP/2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=8786
IP
172.66.40.141:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGoogle Trust Services LLC
Subjectbuygoods.com
FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA
ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT

File type
data
Size
36 kB (36181 bytes)
Hash
b23bd9b821da2b97e46f06ff35b3996e
752451a21c2b607c76d09231d9dffe1e5a116033
e9f8a3c33f014e47000b9a826ccea7aa7922c85340358b7f92b0933e654386df

HTTP Headers

GET /v1/disclaimer?id=disclaimer&account_id=8786 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:05:59 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
x-server: WEB_6_7500
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
__cflb=02DiuGr4oznJ5r4PV3Dejx8NzEQ8Hg5uRtWZqdL8dCZZn; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:05:59 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09c6d9a0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/postRoll-v2.js

151.101.130.132

200 OK

25 kB

URL GET HTTP/2
fast.wistia.com/assets/external/postRoll-v2.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65461)
Size
25 kB (25372 bytes)
Hash
4b42810f874c9058336e641c8b9e5a93
04bbc106ca4511c5cf1b39e66f869bcde5509824
d2be004e9fbd5d93642c3880e92af2c3dc9b860f2a7f3f17709b76bfbcec5774

HTTP Headers

GET /assets/external/postRoll-v2.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "725eb25fd2131a50c66180748fca8a34"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 1705
x-served-by: cache-iad-kiad7000156-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 693, 2
x-timer: S1713906360.376702,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 25372
X-Firefox-Spdy: h2

glucosavior.com/imgs/logo.webp

161.35.252.182

200 OK

5.2 kB

URL GET HTTP/1.1
glucosavior.com/imgs/logo.webp
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.2 kB (5160 bytes)
Hash
71e3e86515f03b40ea577d9a13a0e4c9
3e1df318d1aef1bfed0c14c8ca06ad302f67258d
0b66950dde9cd4f1687589f6d47dcd702269bf3347fa9d77b8f39fc987841a2f

HTTP Headers

GET /imgs/logo.webp HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 18 Dec 2023 00:56:42 GMT
ETag: "1428-60cbe39204680"
Accept-Ranges: bytes
Content-Length: 5160
Cache-Control: max-age=172800
Expires: Thu, 25 Apr 2024 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

glucosavior.com/fonts/OpenSans-Bold.woff

161.35.252.182

200 OK

21 kB

URL GET HTTP/1.1
glucosavior.com/fonts/OpenSans-Bold.woff
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
Web Open Font Format, TrueType, length 20676, version 1.0
Size
21 kB (20676 bytes)
Hash
f9fc9780feed3b7444ba6277f067c7f5
b69fec868a543c183983b7d1ef89bc75f8fcf7b6
f21a07b8173a59a6cdf3f46d46a4bd1b14e4146d4e1c80a543021a6d69b2fe8c

HTTP Headers

GET /fonts/OpenSans-Bold.woff HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:52 GMT
ETag: "50c4-5f892c70d3b00"
Accept-Ranges: bytes
Content-Length: 20676
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff

fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js

151.101.130.132

200 OK

23 kB

URL GET HTTP/2
fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JavaScript source, ASCII text, with very long lines (65462)
Size
23 kB (23018 bytes)
Hash
67f826e731cf1bd606ad4254698a884a
26e7f8c92ecb684829d32cb530961850c04fa9b1
dafa9eaea2a9c74a19baaa2a941a86a2c325b9ca38e02f2240136a8467ea6aec

HTTP Headers

GET /assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "bba82f99f4bd03339743f1525ceac565"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3365
x-served-by: cache-iad-kjyo7100154-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 9
x-timer: S1713906360.433459,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 23018
X-Firefox-Spdy: h2

go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434

172.66.43.113

200 OK

1.3 kB

URL GET HTTP/2
go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434
IP
172.66.43.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectmaxweb.com
Fingerprint0A:CD:DD:BD:95:0C:D2:00:0B:46:8A:C1:CA:53:50:87:83:FD:42:2A
ValiditySun, 03 Mar 2024 04:01:42 GMT - Sat, 01 Jun 2024 04:01:41 GMT

File type
HTML document, ASCII text, with no line terminators
Size
1.3 kB (1276 bytes)
Hash
93edbe3be07b3aba6dc503791f94278d
4bc9cdf991afb615a9f2abc8a6b3a05ca10dec99
6bddb133eec6d95ff51562f0fbbdac3e3c457b6c74a660b5212e47ec91c58fee

HTTP Headers

GET /conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 23 Apr 2024 22:08:15 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-server: WEB_6
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDvnJbjKdBkxKLVBqBrQP8wYzWkbUCt7KF3LzjXwJ; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:06:00 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09eef3256ca-OSL
content-encoding: br
X-Firefox-Spdy: h2

glucosavior.com/imgs/favicon/apple-touch-icon.png

161.35.252.182

200 OK

7.8 kB

URL GET HTTP/1.1
glucosavior.com/imgs/favicon/apple-touch-icon.png
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
7.8 kB (7820 bytes)
Hash
e5ef86f01f59212fbfe45ba527d3e178
828b3abb07aa9d87770f55404f28b9db09199acb
9470462abe9fd85e5f38761d0b463b73c934b47df4c62e396f0a3490d61baed3

HTTP Headers

GET /imgs/favicon/apple-touch-icon.png HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 17 Dec 2023 16:31:18 GMT
ETag: "1e8c-60cb729acc180"
Accept-Ranges: bytes
Content-Length: 7820
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

adhvtrk.com/p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3}

52.70.49.193

200 OK

2 B

URL GET HTTP/1.1
adhvtrk.com/p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3}
IP
52.70.49.193:443
ASN
#14618 AMAZON-AES

Requested by
https://go.maxweb.com/conversion/iframe/?a=8859&token=93b6023776c2688c8f7c64d58a35d434
Certificate
IssuerGlobalSign nv-sa
Subject*.adhvtrk.com
Fingerprint9F:80:E1:E0:87:34:50:81:B3:76:58:F4:2B:A0:C6:7A:5E:70:CF:8A
ValidityMon, 26 Feb 2024 10:31:19 GMT - Sat, 29 Mar 2025 10:31:18 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
227dc251e1411f6b6fffcd1c30486f4d
8c71b835789865c9f242316c7ebbdc25cea35b2d
6a4b804705e725b9f4fd4adf6500180b54cc5ddefed460e48d1be724fed155d6

HTTP Headers

GET /p.ashx?a=320&e=605&fb=1&t=ORDER_ID&r={SUBID3} HTTP/1.1
Host: adhvtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.maxweb.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 2
Content-Type: text/plain; charset=utf-8
Date: Tue, 23 Apr 2024 21:06:00 GMT
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Connection: close

fast.wistia.com/assets/external/playPauseLoadingControl.js

151.101.130.132

200 OK

22 kB

URL GET HTTP/2
fast.wistia.com/assets/external/playPauseLoadingControl.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
22 kB (21596 bytes)
Hash
7845f53703880c301c91e55dacfb2730
a91923e2fe5f5a139f65a41682cee83637c636bf
441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942

HTTP Headers

GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:29 GMT
etag: "054f6647c2b3166c5479ecec2e1cdb23"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3450
x-served-by: cache-iad-kjyo7100161-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 43, 111
x-timer: S1713906361.803772,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 21596
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/engines/hls_video.js

151.101.130.132

200 OK

118 kB

URL GET HTTP/2
fast.wistia.com/assets/external/engines/hls_video.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (118197 bytes)
Hash
0d0944584a2e0b7299c788dfbcc6224b
dbafb5834a1553d168e2e61633d9dfb37d29a438
c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738

HTTP Headers

GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 22 Apr 2024 20:07:28 GMT
etag: "eb7dd49fb6d9bc27920e7403bf0de676"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 3440
x-served-by: cache-iad-kcgs7200036-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 73
x-timer: S1713906361.808496,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 43cdfc69361cc01cdd6080913883c331f07714c7
content-length: 118197
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/w0pfeqihky.m3u8

151.101.130.132

200 OK

1.1 kB

URL GET HTTP/2
fast.wistia.com/embed/medias/w0pfeqihky.m3u8
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
M3U playlist, ASCII text
Size
1.1 kB (1145 bytes)
Hash
4569d6bfc0ffe84d83c687790e9b6687
6b7552131ba578298455df51bddba470574edb75
5f9e9bd204e0b93397c657308ca3857bb3377483781592ccd32dabc32eab5d17

HTTP Headers

GET /embed/medias/w0pfeqihky.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"5f9e9bd204e0b93397c657308ca3857b"
x-request-id: 5553cf04-2aa0-4006-bb5b-86dd8850e5e5
x-runtime: 0.030139
x-envoy-upstream-service-time: 31
via: 1.1 51216641aa2cfdaadb386a6a151c2424.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: CJ9eo5XwGr5fOIIIivHDDXukJGIyZutiV_Rq_L6i7gX-mSWKzD8gWQ==
accept-ranges: bytes
age: 17455
date: Tue, 23 Apr 2024 21:06:00 GMT
x-served-by: cache-iad-kiad7000175-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 76, 0
x-timer: S1713906361.974600,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1145
X-Firefox-Spdy: h2

fast.wistia.com/assets/images/blank.gif

151.101.130.132

200 OK

1.2 kB

URL GET HTTP/2
fast.wistia.com/assets/images/blank.gif
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
GIF image data, version 89a, 100 x 100
Size
1.2 kB (1214 bytes)
Hash
fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2

HTTP Headers

GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 23 Apr 2024 21:06:00 GMT
age: 2264
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 64
x-timer: S1713906361.980375,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2

rum-collector-2.pingdom.net/img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1

34.240.56.220

200 OK

0 B

URL GET HTTP/1.1
rum-collector-2.pingdom.net/img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1
IP
34.240.56.220:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.pingdom.net
FingerprintFC:B3:2A:2E:A3:35:95:66:4B:D1:52:41:46:D6:C6:FB:73:39:D1:E3
ValidityMon, 06 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/beacon.gif?id=63869521405b1d00110016b4&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=1296&cE=2780&dLE=1296&dLS=1217&fS=1217&hS=1387&rE=-1&rS=-1&reS=2780&resS=2867&resE=2892&uEE=-1&uES=-1&dL=3069&dI=3543&dCLES=3568&dCLEE=3573&dC=4260&lES=4263&lEE=4265&s=nt&title=Gluco%20Savior%20%7C%20LP&path=https%3A%2F%2Fglucosavior.com%2F&ref=&sId=dml0qnez&sST=1713906360&sIS=1&rV=0&v=1.4.1 HTTP/1.1
Host: rum-collector-2.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 23 Apr 2024 21:06:00 GMT
Expires: 0
Pragma: no-cache
Content-Length: 0
Connection: keep-alive

embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8

143.204.55.78

200 OK

99 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8
IP
143.204.55.78:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.wistia.com
Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
99 kB (99311 bytes)
Hash
ebd705a3c752569094c4c6c5c05c592f
8ebe48979b057ffd9cafabd03778488592d14977
55df0f31b71424690f414655c44b77fdfc6cc28c756802e15e9d2483ee216c78

HTTP Headers

GET /deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 99311
server: envoy
date: Thu, 18 Apr 2024 17:44:12 GMT
expires: Fri, 18 Apr 2025 17:44:12 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
surrogate-key: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 122
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FqnqeRjnf08pyPmZe8J5SWjqK9Js33AgIxBa1O4SaVYehqcQKuHmww==
age: 444108
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts

143.204.55.78

200 OK

449 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts
IP
143.204.55.78:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.wistia.com
Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT

File type
MPEG transport stream data
Size
449 kB (448568 bytes)
Hash
324da34a48f25b94dce3693aba4ae54e
b2cc635f0b0681cda4ee01693ad4e7b379ed0409
1b7506955cc6b056dc7a6b634840a25881ee3235687f4d54beabac752445aa62

HTTP Headers

GET /deliveries/d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 448568
server: envoy
date: Sat, 20 Apr 2024 19:53:20 GMT
expires: Sun, 20 Apr 2025 19:53:20 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
surrogate-key: d1d5fd8ac68a249e17d5762d7e9e1dbfa8f18779-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 73
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3WNC4LmWKwjySWoUeKeTe86QqLKtb4BDaicqpkk9nKOhfSTD2W90Dg==
age: 263561
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

distillery.wistia.com/x

54.230.111.67

204 No Content

0 B

URL POST HTTP/2
distillery.wistia.com/x
IP
54.230.111.67:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subjectstats-tap-production-cloudfront-app-cname.wistia.com
Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: text/plain
Content-Length: 1620
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1FSchNW99uamEAD3EglZQFKPIYZTlCzbMsloSrZVabotM82OVW6uQg==
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8

143.204.55.78

200 OK

99 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8
IP
143.204.55.78:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.wistia.com
Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
99 kB (99311 bytes)
Hash
cc916dc5bd0617720099c164446d8cff
6c3ff444c92afea732f19f473aa3325f992cc816
f5769ccf476802b70f5bc40242528b79153479f0beccbc0d6397dc9a8f63258c

HTTP Headers

GET /deliveries/b31a7fd41ee4ab74f53c7f2c1563277b50211cce.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 99311
server: envoy
date: Sat, 20 Apr 2024 03:45:25 GMT
expires: Sun, 20 Apr 2025 03:45:25 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: b31a7fd41ee4ab74f53c7f2c1563277b50211cce-hls-segment
surrogate-key: b31a7fd41ee4ab74f53c7f2c1563277b50211cce-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 104
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jvY3mtcdnwKDNENyS5PeZBg7nJRa8nyxwl3ReoSp7Nrek6DRlITX5g==
age: 321636
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.100

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1002
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uPe4n4qbQSGZRaMsOAYcIGgslnqbqKRAgY79mymf2p0K5r9Y2tXDww==
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.100

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glucosavior.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 2186
Origin: https://glucosavior.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 23 Apr 2024 21:06:01 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uDOEalfhvtVHrx6GTtoqYRkbKWmNYANRVetv-OufQQCK3n7M7mkxMQ==
X-Firefox-Spdy: h2

glucosavior.com/imgs/favicon/favicon-16x16.png

161.35.252.182

200 OK

1.1 kB

URL GET HTTP/1.1
glucosavior.com/imgs/favicon/favicon-16x16.png
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.1 kB (1147 bytes)
Hash
1abf4f0878a0a3cf27671527d066a04d
001aae1457db54931c77e8952b0b0c30a82dcc80
d8110ea95d0a5791e12037be21b255a4c390d5a7df13dfcb13d1297badab201d

HTTP Headers

GET /imgs/favicon/favicon-16x16.png HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 17 Dec 2023 16:31:18 GMT
ETag: "47b-60cb729acc180"
Accept-Ranges: bytes
Content-Length: 1147
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186

172.66.40.141

200 OK

6.9 kB

URL GET HTTP/3
tracking.buygoods.com/track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186
IP
172.66.40.141:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGoogle Trust Services LLC
Subjectbuygoods.com
FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA
ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT

File type
ASCII text, with very long lines (7331), with no line terminators
Size
6.9 kB (6930 bytes)
Hash
8c5526e2bcda538509d150861887cabb
b9183451684e68ecb092b4c3b3b4d349844dc436
a30a2d9f98d1de0e2306cb8c7ae58505c2560470d5c3c09f60f18926aed63566

HTTP Headers

GET /track/?a=8786&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=glu1,glu3,glu6&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fglucosavior.com%2F%3Faff_id%3D103%26subid2%3D8859_sessid2024042321089352%26subid%3D186 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
vary: Accept-Encoding
x-server: WEB_6
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: spiaffid_8786=103; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spisubid_8786=186%7C8859_sessid2024042321089352; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spicampaign_id_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
spireferrer_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
spireferrer_8786=91.90.42.154::glucosavior.com; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spisessid2_8786=sessid20240423210824014; Max-Age=7776000; Domain=.buygoods.com; Path=/; Expires=Mon, 22 Jul 2024 21:08:15 GMT; Secure
spi_funnel_codename_8786=; Domain=.buygoods.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure
__cflb=02DiuEJgUPmnkKW5JETNtVJGZX1NbzGS84n7xpL4yCND2; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 20:06:00 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d09e9b9c712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

glucosavior.com/fonts/Konnect-Medium.woff2

161.35.252.182

200 OK

35 kB

URL GET HTTP/1.1
glucosavior.com/fonts/Konnect-Medium.woff2
IP
161.35.252.182:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerLet's Encrypt
Subjectglucosavior.com
Fingerprint68:BF:6A:23:7F:75:1A:BE:5F:33:BD:42:BE:40:29:4B:2B:BF:08:65
ValidityFri, 29 Mar 2024 07:58:49 GMT - Thu, 27 Jun 2024 07:58:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34844, version 1.0
Size
35 kB (34844 bytes)
Hash
25f9bba62f573633c009b9683bfc08ca
95cc4b07e6a85c8491c86efa001bb9d174ece28f
8794e0c4f6493cbad9ba38e6ee7872329f8e2436b12b3b7fb1a39a64f0ce8470

HTTP Headers

GET /fonts/Konnect-Medium.woff2 HTTP/1.1
Host: glucosavior.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/css/style.css?v=1.17
Cookie: XSRF-TOKEN=eyJpdiI6IlZyc3NwenZ0SkVPYkhLUzVSTHhZYVE9PSIsInZhbHVlIjoiOUdzakxDbWEyZitRaHNLQTlneUVVaGZkSUhBTlNkMXk1elh1cmdSNGR5WmZ4QlU1RFU5NkJxMUFSNWFUTlFoTVUyREIzNUhrMkVQOHgvSm1HR3hNU2xoeXZDZ1F6K2VZRmpuQW8wUWY0anBWQ2pDaS9ERXpXbEhwTS9NMlVsL0oiLCJtYWMiOiIwODc5MmQ2YjU5MWE1MDFjNDk1Y2JmYjhmMTk0YTJkMjQ3NjE1ODI1OWE2ZjI1NmJmNjNkZTYwMmY0ZjA0MGNiIn0%3D; gluco_savior_session=eyJpdiI6InFVaXI5eXFQS1g0a1ZFNWkzeVdtVFE9PSIsInZhbHVlIjoibklySmNVdTRMVE15ZnV0NkJJOU9hL21vejhsblpaQzdzNmpTKzFLaEVSUHY3MnBIWExMM000T0lTdDZEVXJnUXhudzNnbFk4VjRmTTZDNTV1ajFSMVk0Tlc3SE5hUlVpdHA5OHFiOUlGWXBSazJVWDhPVUw1UU0zWGYyUVpoNlIiLCJtYWMiOiI1ZWE4NGZmOGJmYjkxYWZiN2ZiZmI3MzM4ODQ4MmUyMDcwOWQ1M2MyY2FjN2U0NDEzZThjMDYxODEzMjMzYTZhIn0%3D; showoffers=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:06:00 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Wed, 05 Apr 2023 08:42:48 GMT
ETag: "881c-5f892c6d03200"
Accept-Ranges: bytes
Content-Length: 34844
Cache-Control: max-age=31536000
Expires: Wed, 23 Apr 2025 21:06:00 GMT
X-Robots-Tag: index,follow
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

embed-ssl.wistia.com/deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720

143.204.55.51

200 OK

24 kB

URL GET HTTP/2
embed-ssl.wistia.com/deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720
IP
143.204.55.51:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.wistia.com
Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
Size
24 kB (24270 bytes)
Hash
4ce82dc174f18916dbf70da4d33ae560
dd8ecde9768b4c4b8f882900bbb4997fac92284c
bb57a36174f9631ba12db330794948b79c70cffad9c5a208f1cab41e1142421d

HTTP Headers

GET /deliveries/18551dbb78156c1c6ea48b7344442e47.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
accept-ranges: none
access-control-request-method: *
content-disposition: inline
edge-cache-tag: 18551dbb78156c1c6ea48b7344442e47
last-modified: Thu, 05 Jan 2023 13:59:20 UTC
surrogate-key: 18551dbb78156c1c6ea48b7344442e47 thumbnail-delivery
x-envoy-upstream-service-time: 243
server: envoy
cache-control: max-age=31536000
date: Sat, 20 Apr 2024 04:39:36 GMT
etag: Tgvxc518PVds1x4A3LgZhfdtB6E=
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WXB6bP_2767kR9pU398QdHvjXkhmLVs9ADyyfXUyO__SntUvzfGKxg==
age: 318383
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2

buygoods.com/affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014

172.66.40.141

200 OK

0 B

URL GET HTTP/3
buygoods.com/affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014
IP
172.66.40.141:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGoogle Trust Services LLC
Subjectbuygoods.com
FingerprintDF:D8:7F:0A:B1:2F:51:6F:B8:1D:21:82:1E:72:F1:FA:4F:B8:83:CA
ValidityFri, 01 Mar 2024 06:47:34 GMT - Thu, 30 May 2024 07:46:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /affiliates/go/conversion/iframe/bg?a=8786&t=3ce0c230432153a56afe8a94c484f38f&s=sessid20240423210824014 HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:06:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-server: WEB_2
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuEzB32VBtgHEATQMGM4TwBH7nn3iMyE6QxiMtEaJG; SameSite=Lax; path=/; expires=Wed, 24-Apr-24 21:06:01 GMT; HttpOnly
server: cloudflare
cf-ray: 8790d0a4da74712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fast.wistia.com/embed/medias/w0pfeqihky/swatch

151.101.130.132

200 OK

3.6 kB

URL GET HTTP/2
fast.wistia.com/embed/medias/w0pfeqihky/swatch
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66
ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x56, components 3
Size
3.6 kB (3643 bytes)
Hash
cb53c0243314e34891d7e7b0344c0172
1fb2b2012b661e6d9bf04aee2a19e48cf3fe0f8b
5760aea6338e34cf7cf03a1b421ab19489aaec204ad0dabf6a135742189d8669

HTTP Headers

GET /embed/medias/w0pfeqihky/swatch HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: envoy
cache-control: public, no-cache,max-age=31536000
access-control-request-method: *
content-disposition: inline
edge-cache-tag: c8bdcd78317e10e715c107e065d4a0ab
etag: 4-DTD4vvFtJqb4OIHvZPlIf6Xz8=
last-modified: Wed, 20 Dec 2023 15:43:04 UTC
x-envoy-upstream-service-time: 37
via: 1.1 c3af1bb2028605770032345c7c19b7aa.cloudfront.net (CloudFront), 1.1 0712e4ad4264127dfcb76a114b130494.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-cdn: cloudfront
access-control-allow-origin: *,*
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
timing-allow-origin: *
x-amz-cf-pop: IAD89-P2, IAD89-C3
x-amz-cf-id: bcZchWhJQkoApPnaMpi1xMFnvOnglY92-Ny6XDKL16y-DdH2coQlLw==
accept-ranges: bytes
age: 61788
date: Tue, 23 Apr 2024 21:05:59 GMT
x-served-by: cache-iad-kcgs7200057-IAD, cache-hel1410033-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 6940, 0
x-timer: S1713906360.749450,VS0,VE1
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 3643
X-Firefox-Spdy: h2

rum-static.pingdom.net/pa-63869521405b1d00110016b4.js

104.22.54.104

200 OK

6.2 kB

URL GET HTTP/2
rum-static.pingdom.net/pa-63869521405b1d00110016b4.js
IP
104.22.54.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerCloudflare, Inc.
Subjectpingdom.net
Fingerprint95:37:DC:08:FB:5D:32:8E:03:08:92:BA:43:FB:74:8B:E0:82:A8:E3
ValiditySat, 14 Oct 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6409), with no line terminators
Size
6.2 kB (6239 bytes)
Hash
2ed8e7502613096120b71683f9f6f135
e19cb9c4307ac1030023181a5400dae1768c89f0
234d7aa30d126debb8fb498d241c324b7740f8d89638f3db54673b7ae3943a9b

HTTP Headers

GET /pa-63869521405b1d00110016b4.js HTTP/1.1
Host: rum-static.pingdom.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:05:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 06:22:28 GMT
vary: Accept-Encoding
etag: W/"63490024-1852"
expires: Tue, 23 Apr 2024 21:10:59 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8790d09c380cb518-OSL
X-Firefox-Spdy: h2

embed-ssl.wistia.com/deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720

143.204.55.51

200 OK

24 kB

URL GET HTTP/2
embed-ssl.wistia.com/deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720
IP
143.204.55.51:443
ASN
#16509 AMAZON-02

Requested by
https://glucosavior.com/?aff_id=103&subid2=8859_sessid2024042321089352&subid=186
Certificate
IssuerAmazon
Subject*.wistia.com
Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2
ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
Size
24 kB (24378 bytes)
Hash
089d4f4c24cdd942a6ee4547715495ae
6e88adc7138b811bf4d7b37fec55e3583e02cec6
2295709a98d43e7e2cd9d1cfa250ecc03f1d5d452741545b83588529afb6c1dd

HTTP Headers

GET /deliveries/c8bdcd78317e10e715c107e065d4a0ab.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glucosavior.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
accept-ranges: none
access-control-request-method: *
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: c8bdcd78317e10e715c107e065d4a0ab
etag: LyHA2MZ26AqSQLVFCi2aUD_ehaQ=
last-modified: Wed, 20 Dec 2023 15:43:04 UTC
surrogate-key: c8bdcd78317e10e715c107e065d4a0ab thumbnail-delivery
date: Thu, 18 Apr 2024 10:34:25 GMT
x-envoy-upstream-service-time: 134
server: envoy
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qJoU2PfqUu82QVAKxir77f9bQsHUJtouXqc6IMNzrUuHtvXTpH5Pow==
age: 469895
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL