clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
301 Moved Permanently 162 B URL HTTP/1.1 clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907& HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Sep 2022 10:39:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 10:04:39 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GoNlR1MQydJii6S646uJiT-b9utHLQWvpuvAYHA_232PF_smd_7dzw==
Age: 2065
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12888
Expires: Wed, 07 Sep 2022 14:13:52 GMT
Date: Wed, 07 Sep 2022 10:39:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5n803-oAtSYtU1LmrmqdiPc4gD8Rx6hDrxaLPHjVqUcxd9zFCsHGhw==
age: 24751
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 07 Sep 2022 10:38:18 GMT
Cache-Control: max-age=3600
Expires: Wed, 07 Sep 2022 10:57:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ht4cNVuKrNuUobYXlreiLUuPbu4nmaUMoiQa69WA6jpnnRBaUeXIuw==
Age: 47
ocsp.digicert.com/
200 OK 471 B IP
Hash a81b0f5b5d11bf95fc176833b2f6e808
5b194aa5a8bf3a6b0d117ccfd0f487f6db0587b5
8f6ae83f2b85db7174bbbc6553e2921617b5c8a401315e76082682949a0bd9cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1961
Cache-Control: max-age=165619
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:05 GMT
Etag: "63185113-1d7"
Expires: Fri, 09 Sep 2022 08:39:24 GMT
Last-Modified: Wed, 07 Sep 2022 08:06:43 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
200 OK 13 kB URL HTTP/2 clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3197), with CRLF line terminators
Hash d73e062645399e6932729fb15436f221
80c873d3ad8040e0f480ff086eb3bbd9f422a4a0
24ca9fc0cec4f2f0446dbe2597d312c373aafc7c83e768599f31cbb530633226
GET /lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907& HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:05 GMT
content-type: text/html; charset=UTF-8
content-length: 12846
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss; path=/
permissions-policy: vr=(); xr-spatial-tracking=('none');
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bUvL/Zwwb8lRjKJ/s3MXpw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g3UBfUjsVX6HOS6zqzvlMeOVfyI=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.9.0/css/all.css
200 OK 13 kB URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP
File type ASCII text, with very long lines (55782)
Hash bfea0de1a5f94c776bc70e470ed64f43
86e56234ee28af09b2751ede4b186a7fe93f9b92
6f3850ae02a95fd29bfd00d472d5d0f331757e5166eee64fa123e1040caef569
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
x-amz-id-2: 5R63sGXcq2LptVgWp1Hbu23fLcn6t7yox4MdVDD4fYkPpwwpE0tP8nap3nE7BUsLxb2kn6BawAQ=
x-amz-request-id: FW5J89H89QA35JM6
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 31331
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qGFvy5dQo6jQOD9lu2Kt4ThXq%2BoT8GLAR0Ca0UDs6TuKodYLmfwlH%2FpUi1KLhbvf6WqnEUKSa%2FOQnzU0kFJ%2FzBAJx%2Bia4LHBwGtD%2F%2B63x9FTd8XzCzKNdCtnt4TL0ZkZyrT12vr8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746ed18eee53b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-126759577-4
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-126759577-4
IP
File type ASCII text, with very long lines (1615)
Hash 62f75ea5db72f082b6ff635086eaad71
ba6a67c9056b0a2b16e120713a17113eae42e881
e797ab07623890431156e669d2555db734cd1d14b7c2142bae786a89b228f77e
GET /gtag/js?id=UA-126759577-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 10:39:06 GMT
expires: Wed, 07 Sep 2022 10:39:06 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41916
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-Y04TL8NEE0
200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Y04TL8NEE0
IP
File type ASCII text, with very long lines (15517)
Hash aac5ad99635e9b7913bd997277216930
7b1a4e880f4e0219ba893a1362935b0e1016e860
7830a7e77229677d59a16d743ea7dedc2e818445430bb52fc2c62a9c4f2aa841
GET /gtag/js?id=G-Y04TL8NEE0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 10:39:06 GMT
expires: Wed, 07 Sep 2022 10:39:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74965
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
200 OK 2.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP
Hash e36ef1de2ba5b221eac718ac7cea4457
1ca07b9fd327befe7045b6479362f08418ac8430
0f34e23e11daa282759ee057e613414e0ef496bcaac516a072f2e89c41e7c5d2
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 10:39:06 GMT
date: Wed, 07 Sep 2022 10:39:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clickintowealth.com/lp/fff/vid_files/closemodal.webp
200 OK 672 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/closemodal.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/closemodal.webp HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: image/webp
content-length: 672
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-2a0"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/v4-shims.css
200 OK 20 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/v4-shims.css
IP
Hash a3b35a60f3b1635fdb986b87b32c733c
411cbe6c1fbf719faaddd48cb51024f42f581af3
4fcee0551d21b423c29f20d0eb9e6cd5c1945b652ff4c5d0d20655daab2a67bd
GET /lp/fff/vid_files/v4-shims.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-6801"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 572698
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 01:19:32 GMT
expires: Sun, 03 Sep 2023 01:19:32 GMT
cache-control: public, max-age=31536000
age: 379174
last-modified: Wed, 24 Jul 2019 01:18:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clickintowealth.com/lp/fff/vid_files/10dollarsqueeze-k.png
200 OK 408 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/10dollarsqueeze-k.png
IP
File type PNG image data, 998 x 404, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (408139 bytes)
Hash 2467afb1409fdf64c24837aa998199ad
910cef40e90d232ed5dd9c6e7fab3ae333987acc
a79c994ae8bff22635755684421b7bf7375deb8ef80d89d78373995381dfc3a1
GET /lp/fff/vid_files/10dollarsqueeze-k.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: image/png
content-length: 408139
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-63a4b"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/email.png
200 OK 1.9 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/email.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 695fd6ba1d1560afd7f7ca44f64f2c43
9e2a6448963d4b3a82e232d7601cce94f403dfbd
a6322e438f340951e51d083d0ceffa99864e4c3823c079d70229a6d6ede82b99
GET /lp/fff/vid_files/email.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid_files/lander.css
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss; _ga_Y04TL8NEE0=GS1.1.1662547139.1.0.1662547139.0.0.0; _ga=GA1.1.1563345600.1662547140
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: image/png
content-length: 1871
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-74f"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/lander.css
200 OK 77 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/lander.css
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (53276)
Hash 78b81bc5f065d94a3e6bae93aaa01628
3eb1dc295dd96f61f7a0e1648897fff7c731d0fc
87aa9fa432c9ce93883e60b0e99e4d5ea447d8f302a0f6909e9fe81c63622338
GET /lp/fff/vid_files/lander.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-6a4a2"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.9.7/css/player.css
200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.9.7/css/player.css
IP
File type ASCII text, with very long lines (65496)
Hash 71d3efd5e60d34d7ab350e8f7d81c1cc
10deb0ff317c64fa736290e244e5df40dad43dba
a6c468e00c1247f0352c7120cba6afb71047e0a2078ce89edd4cfc15b9647fc4
GET /p/4.9.7/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Sep 2022 10:39:06 GMT
age: 583076
x-served-by: cache-iad-kcgs7200176-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 104272
x-timer: S1662547147.652664,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20154
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP
File type ASCII text, with very long lines (1839)
Hash 0ad074ceab68348048a8100a67d36d2c
2a35d9429a411fd87aafd7e6c7fafe51cca82345
0445c9738353c896284236d8c98b5c8b5d7954621d4c4d2bd5cf138660d247aa
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Sep 2022 10:39:06 GMT
age: 1531308
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 103182
x-timer: S1662547147.675759,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.9.7/js/player.js
200 OK 212 kB URL HTTP/2 f.vimeocdn.com/p/4.9.7/js/player.js
IP
File type ASCII text, with very long lines (64650)
Size 212 kB (211887 bytes)
Hash 3b3bbde441818bd38701e0f6224726cb
019b38057e6685d8e370399ddc2bba7bf05f9b7b
ffce5dd99056f8bb0dfb0442ef11797a732a31f8d17724c3ee51f430a78af6f7
GET /p/4.9.7/js/player.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Sep 2022 10:39:06 GMT
age: 583076
x-served-by: cache-iad-kiad7000046-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 82453
x-timer: S1662547147.675776,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 211887
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 07 Sep 2022 08:41:12 GMT
expires: Wed, 07 Sep 2022 10:41:12 GMT
cache-control: public, max-age=7200
age: 7074
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-Y04TL8NEE0>m=2oe8v0&_p=2129164612&cid=1563345600.1662547140&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662547139&sct=1&seg=0&dl=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&dt=Click%20Into%20Wealth%20(FFF%20TS%20Vid)&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Y04TL8NEE0>m=2oe8v0&_p=2129164612&cid=1563345600.1662547140&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662547139&sct=1&seg=0&dl=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&dt=Click%20Into%20Wealth%20(FFF%20TS%20Vid)&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Y04TL8NEE0>m=2oe8v0&_p=2129164612&cid=1563345600.1662547140&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662547139&sct=1&seg=0&dl=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&dt=Click%20Into%20Wealth%20(FFF%20TS%20Vid)&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://clickintowealth.com
date: Wed, 07 Sep 2022 10:39:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash 9e9fd8678abfb095989a6fc50e7140b7
f044fdda4622b2f70c8dda67fd80e3641c8945b8
de46616e1d51de8ee05a9c6e6de4b86d4e9a8cc8412f3deb0d53586377159ad3
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Sep 2022 10:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Sep 2022 21:36:31 GMT
Expires: Wed, 07 Sep 2022 21:36:31 GMT
ETag: "f044fdda4622b2f70c8dda67fd80e3641c8945b8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
clickintowealth.com/lp/fff/vid_files/mailcheck.js
200 OK 1.2 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/mailcheck.js
IP
Hash 08dbff4628cd6a8775ea8480015613d5
fe6b5e6685f0dd9a8f49e1a78544282a6a416bac
42a87e0647dc6c24438847e10e288949488125b4b438db6a5da33b47d7266827
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/mailcheck.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-a8d"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/favicon.ico
302 Found 0 B URL HTTP/2 clickintowealth.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss; _ga_Y04TL8NEE0=GS1.1.1662547139.1.0.1662547139.0.0.0; _ga=GA1.1.1563345600.1662547140
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 07 Sep 2022 10:39:07 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://clickintowealth.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
permissions-policy: vr=(); xr-spatial-tracking=('none');
X-Firefox-Spdy: h2
dev.visualwebsiteoptimizer.com/7.0/va-3a8c03cc83fd9c554b5af6e1cc1ffa80.js
200 OK 65 kB URL HTTP/2 dev.visualwebsiteoptimizer.com/7.0/va-3a8c03cc83fd9c554b5af6e1cc1ffa80.js
IP
File type ASCII text, with very long lines (62897)
Hash 13e48202991116bc266151f6211e1cba
284c6aa048d43eb2c529ef89f89dc32f9560abe3
19168df4017b54de939dd6d7d74b44c34b20cb1048af6858248128c3690ca380
GET /7.0/va-3a8c03cc83fd9c554b5af6e1cc1ffa80.js HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 10:39:07 GMT
content-type: text/javascript; charset=UTF-8
content-length: 65253
last-modified: Tue, 06 Sep 2022 13:28:10 GMT
content-encoding: br
etag: "63174aea-fee5"
server: gams1
vary: Accept-Encoding, User-Agent
cache-control: public, max-age=604800
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dev.visualwebsiteoptimizer.com/j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&f=1&r=0.5072748748806205
200 OK 9.5 kB URL HTTP/2 dev.visualwebsiteoptimizer.com/j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&f=1&r=0.5072748748806205
IP
Hash dbd7ab6de9360ff3239616396e803631
48a43dbedd8ca2538ce8b5a8f598f40dd1127afe
3335ef8a4c52adc9ce106d70511a4b60a87d82d21025eda957c835cc3734ff38
GET /j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Flp%2Ffff%2Fvid-ts-k.php%3FAFFID%3D1006%26C1%3D4037%26CID%3D12%26tr%3D102107178231249220907%26&f=1&r=0.5072748748806205 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 10:39:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache,max-age=0
etag: W/"1662521173"
server: gams1
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/pushcrew.js
200 OK 398 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/pushcrew.js
IP
Hash dc2d5d322c2db53eaea59c1fbb70f55d
64cc977cf359b91edb9c02cef829d0e82b376e3e
4e6e678abc66551d6752e362679d399aaa271561735d002a1a7ffb1b72fe9aa3
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/pushcrew.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-27d"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png
200 OK 839 B URL HTTP/2 clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 32b3bb2ffff52dcd2c56632ca795011a
cb3b2b0590bf3699615d8e3596207c361932b6fc
27501a6dc93af8110a956a04d36f6e652fd7fa4c848715e3caa143ed5b891812
GET /wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Connection: keep-alive
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss; _ga_Y04TL8NEE0=GS1.1.1662547139.1.0.1662547139.0.0.0; _ga=GA1.2.1563345600.1662547140; _gid=GA1.2.293709522.1662547141; _gat_gtag_UA_126759577_4=1; _vwo_uuid_v2=D0352BAF28B5B84E84B4D7901EB4FD8F6|aeb44cfe5aa2d01893fa78dac2902cd2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:07 GMT
content-type: image/png
content-length: 839
last-modified: Wed, 20 Apr 2022 20:41:59 GMT
etag: "62607017-347"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13681
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 10:39:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13681
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 10:39:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13681
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 10:39:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 44ee4c9bd1e550045d69f24ad511070c
3bf0d51801523d7014ac76b5ab90c989fc7a770f
ee48c13050faa498f79222216f9c71b20b3a4e5e8e5c59c7156c276ab942703c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8756
x-amzn-requestid: d48113bc-fe40-4d59-b700-194b1092ab67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqmxQEbVoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db807-14ff6f5b0ffb9a7f08e57906;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:11:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YKs0giofWi83MnLBqx6zAu1NGd_A9-l6y2pULUBn2RK0-H3KNRzrUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 15:59:32 GMT
age: 67175
etag: "3bf0d51801523d7014ac76b5ab90c989fc7a770f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/lander.js
200 OK 298 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/lander.js
IP
Size 298 kB (298090 bytes)
Hash a61c296f9a4ba8cadf6a5d564184c0d2
01bee3e521e6e0e1c9f8ce86fa9658c1852581e9
6232fca45b94ad565795ac033825d1b1fcc52d97238ec08b1587be83a07a4c9b
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/lander.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-f58e1"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa395dcd-c2bf-4b9e-a70f-5dc4000d8b8f.jpeg
200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa395dcd-c2bf-4b9e-a70f-5dc4000d8b8f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed39b35d8a767c2aad6a77fadc60f233
f9767c74a6f717635f67ac541f0126f5a63bd7d3
343efa10126cf70588f1968dea7c77ec3ff8a121e1152f1f9b9b4960fc42bddb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa395dcd-c2bf-4b9e-a70f-5dc4000d8b8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3187
x-amzn-requestid: 8a44698f-2fd0-4980-9882-971810debb88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X6Wf9GyaoAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63140465-3a46f65e5f8c4522065c5ad5;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 01:50:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: skw7KXeCdFODdGvzIqmWcyKbf3jbapZMoMXLqbu6WPaAmStKp2TKlg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 23:55:36 GMT
age: 38611
etag: "f9767c74a6f717635f67ac541f0126f5a63bd7d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f29d8aaae2d67c27c58001e7553dea7
5200b601017ce86614783b76fd2a775c1c48d4e9
6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 46063
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
player.vimeo.com/video/663719624?h=e9734ca969&autoplay=1&muted=1
200 OK 5.1 kB URL HTTP/1.1 player.vimeo.com/video/663719624?h=e9734ca969&autoplay=1&muted=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15719)
Hash cb2d8f39850d1a91fc7a3fa547171af0
104ecb275608c54b53888900c62771fc15c9e004
0c23ed8891712d6f7cbf5b11402196bf86f56f69a6bc3e2999b04425797c6d6b
GET /video/663719624?h=e9734ca969&autoplay=1&muted=1 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 10:39:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-74fb497cbd-25xf6
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-74fb497cbd-25xf6
Age: 0
X-Served-By: cache-bma1682-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662547147.999802,VS0,VE229
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=f0CB3araZZtnAzBLH79fhu4vdMfvLeEZKg8OhRuaktE-1662547147-0-AW1wJLg2DRVYmhArSF4JfluPoSR1Ff3cHBfi0lv6ycMzkSaMf0gLA6Oumm7tgxxEOK8Kov4ONgE3uQpWSiI7pUs=; path=/; expires=Wed, 07-Sep-22 11:09:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746ed1948bf90b3d-OSL
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 43211
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 31a6c427-a073-4c25-88b1-6ba40a48c359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvyGg6oAMFhDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-36dd49416c62f3811167173d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hNtG651fpAOKjZluawZlbXYFfBUojeSyqB9UMRsAg1Ooxc95mudq7A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:27 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 46060
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-126759577-4&cid=1563345600.1662547140&jid=1455381848&gjid=883338587&_gid=293709522.1662547141&_u=YADAAUAAAAAAAC~&z=134946648
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-126759577-4&cid=1563345600.1662547140&jid=1455381848&gjid=883338587&_gid=293709522.1662547141&_u=YADAAUAAAAAAAC~&z=134946648
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-126759577-4&cid=1563345600.1662547140&jid=1455381848&gjid=883338587&_gid=293709522.1662547141&_u=YADAAUAAAAAAAC~&z=134946648 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://clickintowealth.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Sep 2022 10:39:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid-ts-t96v2.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
200 OK 13 kB URL HTTP/2 clickintowealth.com/lp/fff/vid-ts-t96v2.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3197), with CRLF line terminators
Hash eeffe40753180fc30cff0b659683261a
5b3b47bab51c378e51f62b214a24961d0fe70cfc
bd833f3b395de4df5ac75620128b107fb8137cfd3386b9b27f177e85141251cc
GET /lp/fff/vid-ts-t96v2.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907& HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: AFFID=1006; C1=4037; CID=12; tr=102107178231249220907; cf-eg-tmp_countdown_evergreen-88278=x; addevent_track_cookie=ac0bd6da-3d04-45e5-5a88-907774151368; PHPSESSID=gqe9tic6t5jj0h144h3um83iss; _ga_Y04TL8NEE0=GS1.1.1662547139.1.0.1662547139.0.0.0; _ga=GA1.2.1563345600.1662547140; _gid=GA1.2.293709522.1662547141; _gat_gtag_UA_126759577_4=1; _vwo_uuid_v2=D0352BAF28B5B84E84B4D7901EB4FD8F6|aeb44cfe5aa2d01893fa78dac2902cd2; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D0352BAF28B5B84E84B4D7901EB4FD8F6; _vwo_ds=3%241662547147%3A85.00953316%3A%3A; _vwo_sn=0%3A1_15; _vis_opt_exp_96_split=2; _vwo_referrer=; _vwo_uuid_96=D0352BAF28B5B84E84B4D7901EB4FD8F6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:07 GMT
content-type: text/html; charset=UTF-8
content-length: 12780
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
permissions-policy: vr=(); xr-spatial-tracking=('none');
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
player.vimeo.com/video/745470901?h=e83b2ace19&autoplay=1&muted=0
200 OK 4.8 kB URL HTTP/1.1 player.vimeo.com/video/745470901?h=e83b2ace19&autoplay=1&muted=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14419)
Hash c1217968857f06d70074674d26fdfdc8
cff926c26d03d26b1e34ed196453cb8391760bb3
6865c0bced31ad2fbd47bb85f3057ec38eb34a770dd510223f0fa9efe094342c
GET /video/745470901?h=e83b2ace19&autoplay=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 10:39:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-74fb497cbd-x7s6p
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-8
x-backend-proxy: playproxy9
x-bapp-server: player-74fb497cbd-x7s6p
Age: 0
X-Served-By: cache-bma1647-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662547148.601968,VS0,VE230
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=9Xs9_fmwtkxDD3ckbQ4I0AtEiN5PjqZvDM.jQwZXee0-1662547147-0-Ac+fGN8Tj8pggZe9jn8EMKXu8iYT5iI6ftaLQcBPywyeNteiPWb1SFoqCBbDlKcFP7ihtth5pGvZ17IC7H1ustY=; path=/; expires=Wed, 07-Sep-22 11:09:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746ed19869d50b3d-OSL
Content-Encoding: gzip
player.vimeo.com/video/745470901?h=e83b2ace19&autoplay=1&muted=0
200 OK 5.1 kB URL HTTP/1.1 player.vimeo.com/video/745470901?h=e83b2ace19&autoplay=1&muted=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16537)
Hash 884bc1d48d27866be580a1670badc110
edcfeec6ed5a60187da8b3a82ac770858b6a0f59
60734097dacd9c6729518ddf4b580305503eea0a206e439bf31b4fc86349d564
GET /video/745470901?h=e83b2ace19&autoplay=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 10:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-74fb497cbd-ww4ph
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-8
x-backend-proxy: playproxy9
x-bapp-server: player-74fb497cbd-ww4ph
Age: 0
X-Served-By: cache-bma1680-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662547148.069276,VS0,VE242
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=1PoLSaqL.Zg7yixdtjq65FYcezsjDiraCc8TB4ESJ2I-1662547148-0-AVN0grH8Q4meWEWdw3+gcIHbqQtiSXMtydKbmzH5RCPHcCmx4rRBQCgMTd3CpCXpi4WPv+siY8VmE64S6MkgX5I=; path=/; expires=Wed, 07-Sep-22 11:09:08 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746ed19b5e080b3d-OSL
Content-Encoding: gzip
i.vimeocdn.com/video/1499391740-d2f0512ec87a80865356e0495ea978b3181dff56f32adf8ed0420b2c3b59a620-d?mw=800&mh=450
200 OK 3.5 kB URL HTTP/2 i.vimeocdn.com/video/1499391740-d2f0512ec87a80865356e0495ea978b3181dff56f32adf8ed0420b2c3b59a620-d?mw=800&mh=450
IP
File type ISO Media, AVIF Image\012- data
Hash 849bcf39474aa10feecae5d993cb1460
8b22b579ae133d11435ba35a43163360301fd255
7d3b618c7c98541beea75342b762c1468fc76da935b2152b7f00eb846220e241
GET /video/1499391740-d2f0512ec87a80865356e0495ea978b3181dff56f32adf8ed0420b2c3b59a620-d?mw=800&mh=450 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 849bcf39474aa10feecae5d993cb1460
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-9s5g
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 10:39:08 GMT
age: 495681
x-served-by: cache-dfw-kdfw8210091-DFW, cache-bma1650-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1662547149.617719,VS0,VE121
vary: Accept
content-length: 3498
X-Firefox-Spdy: h2
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/video/6904c43f,f43f55eb,b9bcb4b2,a0071a34/audio/ae4f9a6f,d669c6b1,0bf08c73/master.json?query_string_ranges=1&base64_init=1
200 OK 32 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/video/6904c43f,f43f55eb,b9bcb4b2,a0071a34/audio/ae4f9a6f,d669c6b1,0bf08c73/master.json?query_string_ranges=1&base64_init=1
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 301f0392bfafb1c850af714efbe3cde1
2605611006edcaed2e63d86b239da7fd285dbec6
aa66f64096826623aa1ee0f0d2ee82ffc0fcfb8e130080abfef7b1ba862a1b2c
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/video/6904c43f,f43f55eb,b9bcb4b2,a0071a34/audio/ae4f9a6f,d669c6b1,0bf08c73/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1662048000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 32181
Aka-c-hit: cache-hit
Cache-Control: max-age=31037973
Date: Wed, 07 Sep 2022 10:39:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.ad4c2417.1662547148.2d3363e
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/audio/b9bcb4b2/chop/segment-1.m4s?r=dXM%3D
200 OK 97 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/audio/b9bcb4b2/chop/segment-1.m4s?r=dXM%3D
IP
ASN #20940 Akamai International B.V.
Hash 0d763189cc3c4901cc280b03bae88233
dfc3a1577c9718c09878cd4bbe94f86674a9bcf2
fcee1059ec183518ce795bba1670a33cc87c8e2a7645e8ce4ff70d3c62444626
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/sep/audio/b9bcb4b2/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 96930
ETag: 04046ffd7138c89629f8cdb1543ef6c4
using-starlord: true
origin-retrieved-hour: 1662051600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31040689
Date: Wed, 07 Sep 2022 10:39:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547149.2d33650
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP
Hash af1cd735e1caf1a137d91599470d747f
8209f422d7d5973db8b5b7399029ff01dd03ce42
c6cbfd8b68953cc166f45e1095f48f5221ada9e38b38ba026651e5d297528b1c
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP
Hash af1cd735e1caf1a137d91599470d747f
8209f422d7d5973db8b5b7399029ff01dd03ce42
c6cbfd8b68953cc166f45e1095f48f5221ada9e38b38ba026651e5d297528b1c
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/f43f55eb.mp4?r=dXMtZWFzdDE%3D&range=2882-52263
200 OK 49 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/f43f55eb.mp4?r=dXMtZWFzdDE%3D&range=2882-52263
IP
ASN #20940 Akamai International B.V.
Hash df0dd1f976f644ea1291b28d9f771d04
dd279a6d0a4f081e52ba0c19d70acbb81d0224ec
32fc7c59345624c9f19b7d97e56a718acc7dc3f0662584aae815def0c8176e49
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/f43f55eb.mp4?r=dXMtZWFzdDE%3D&range=2882-52263 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 49382
Last-Modified: Thu, 01 Sep 2022 16:16:04 GMT
Server: parcel
origin-retrieved-hour: 1662048000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040150
Expires: Fri, 01 Sep 2023 16:54:59 GMT
Date: Wed, 07 Sep 2022 10:39:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547149.2d33669
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d33669~time:1662547149~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:0~region:NO-; path=/; domain=.akamaized.net;
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 07 Sep 2022 10:39:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1478
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 07 Sep 2022 10:39:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=6dc949ee77e479d3cca8e2185a272a477f3af5371662547148 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1769
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 07 Sep 2022 10:39:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 667
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Wed, 07 Sep 2022 10:39:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP
Hash af1cd735e1caf1a137d91599470d747f
8209f422d7d5973db8b5b7399029ff01dd03ce42
c6cbfd8b68953cc166f45e1095f48f5221ada9e38b38ba026651e5d297528b1c
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 10:39:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=2758-145980
200 OK 143 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=2758-145980
IP
ASN #20940 Akamai International B.V.
Size 143 kB (143223 bytes)
Hash 65303bd5c774033f0a66c53a9bb1a1f1
bf6b25c2f8c9bdd41d7544736cf410a4bbc5b165
525c13436d05a22df3a8b10b15fbfdd8fd784d4df1568bbb70c74d27a3c8584b
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=2758-145980 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 143223
Last-Modified: Thu, 01 Sep 2022 16:15:03 GMT
Server: parcel
origin-retrieved-hour: 1662051600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040829
Expires: Fri, 01 Sep 2023 17:06:18 GMT
Date: Wed, 07 Sep 2022 10:39:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547149.2d33671
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d33671~time:1662547149~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:2~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=2882-137908
200 OK 135 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=2882-137908
IP
ASN #20940 Akamai International B.V.
Size 135 kB (135027 bytes)
Hash a99cc00e652246e8ef5913dad0e604b6
7facba7ac775c2c0da44b9a6204602dda4463757
ffc17d96cd57d87e5cb6173f6e4be28dd745243c75f9a885f0e94f40478cbd95
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=2882-137908 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 135027
Last-Modified: Thu, 01 Sep 2022 16:16:26 GMT
Server: parcel
origin-retrieved-hour: 1662048000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040278
Expires: Fri, 01 Sep 2023 16:57:07 GMT
Date: Wed, 07 Sep 2022 10:39:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547149.2d33683
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d33683~time:1662547149~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:0~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=145981-289313
200 OK 143 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=145981-289313
IP
ASN #20940 Akamai International B.V.
Size 143 kB (143333 bytes)
Hash d87d377736e5b5caf8aca7cccb91b06c
aabde1c604c160b84dba6aeb946f2da26594b540
fe528bd349fb2ea43f9878cff8c598b30e74536d83f0a38b4fb17ed9224a7124
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=145981-289313 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 143333
Last-Modified: Thu, 01 Sep 2022 16:15:03 GMT
Server: parcel
origin-retrieved-hour: 1662051600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040868
Expires: Fri, 01 Sep 2023 17:06:58 GMT
Date: Wed, 07 Sep 2022 10:39:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547150.2d3368f
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d3368f~time:1662547150~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:1~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=137909-443176
200 OK 305 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=137909-443176
IP
ASN #20940 Akamai International B.V.
Size 305 kB (305268 bytes)
Hash 6a93fc18c9391167722f5de8c87aa536
a045a513b280d55bf279d0b10f64a296562b3487
c2974d97481477d0890c19a6e4c9d7280936b70b3b0e0e69397a91dd9db2fbc9
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=137909-443176 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 305268
Last-Modified: Thu, 01 Sep 2022 16:16:26 GMT
Server: parcel
origin-retrieved-hour: 1662048000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040129
Expires: Fri, 01 Sep 2023 16:54:39 GMT
Date: Wed, 07 Sep 2022 10:39:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547150.2d336ac
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d336ac~time:1662547150~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:3~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=289314-432244
200 OK 143 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=289314-432244
IP
ASN #20940 Akamai International B.V.
Size 143 kB (142931 bytes)
Hash 9928a320bd8de0705841142f17efed3a
49508425c1a7d0f731a852dfe662b4ccbc8f087e
ae49e912b12af2cab1ad47483f0a6020a84c3562f4a0b687b8b2a7633eb296b9
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=289314-432244 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 142931
Last-Modified: Thu, 01 Sep 2022 16:15:03 GMT
Server: parcel
origin-retrieved-hour: 1662080400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31070414
Expires: Sat, 02 Sep 2023 01:19:24 GMT
Date: Wed, 07 Sep 2022 10:39:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547150.2d336c7
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d336c7~time:1662547150~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:0~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=443177-604967
200 OK 162 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=443177-604967
IP
ASN #20940 Akamai International B.V.
Size 162 kB (161791 bytes)
Hash 46d2c8e57a08bb2c31becd40d1ce6d0b
8bec6d8b5df33915f4962807b58affbba374dd46
3dfb15ea389f4d48ee56d620b97b5586c3a6f3fd217f47d419c5d0440dad7c12
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/video/6904c43f.mp4?r=dXMtY2VudHJhbDE%3D&range=443177-604967 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 161791
Last-Modified: Thu, 01 Sep 2022 16:16:26 GMT
Server: parcel
origin-retrieved-hour: 1662048000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040128
Expires: Fri, 01 Sep 2023 16:54:38 GMT
Date: Wed, 07 Sep 2022 10:39:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547150.2d336d8
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d336d8~time:1662547150~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:1~region:NO-; path=/; domain=.akamaized.net;
154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=432245-575517
200 OK 143 kB URL HTTP/1.1 154vod-adaptive.akamaized.net/exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=432245-575517
IP
ASN #20940 Akamai International B.V.
Size 143 kB (143273 bytes)
Hash d76eb15b9afc23599924db1ee540c109
17b5980939b49ed39d6b24c900f142f4c945bcb0
6ba446504a200081f9401a6ee47871522802cc65b821b1d2a0cf44c37f620ea9
GET /exp=1662551480~acl=%2F38660591-cda9-422f-a470-eb25c277a809%2F%2A~hmac=60eb57f2974bcc1ba05bcde1887dccfe3aa433de27c87aab4ae630a8d34ce808/38660591-cda9-422f-a470-eb25c277a809/parcel/audio/d669c6b1.mp4?r=dXM%3D&range=432245-575517 HTTP/1.1
Host: 154vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 143273
Last-Modified: Thu, 01 Sep 2022 16:15:03 GMT
Server: parcel
origin-retrieved-hour: 1662051600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31040770
Expires: Fri, 01 Sep 2023 17:05:20 GMT
Date: Wed, 07 Sep 2022 10:39:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.ad4c2417.1662547150.2d336e7
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.177
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.177~requestid:2d336e7~time:1662547150~ghostforwardip:23.60.69.97~edgecache:cache-miss~rtt:0~region:NO-; path=/; domain=.akamaized.net;
clickintowealth.com/lp/fff/vid_files/css_002.css
200 OK 0 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/css_002.css
IP
GET /lp/fff/vid_files/css_002.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-8e8"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/powerscripts.js
200 OK 0 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/powerscripts.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/powerscripts.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-e1f"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
x-amz-id-2: 29dQf2WVNOHot5Ay8pBeGC9Jp0pul03AFXB61uD4zFysCnT6qW6VHySxi6MC8oLZjApsDY/NPq0=
x-amz-request-id: B6FTANBTWNEFCW5M
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2631333
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LCykxeK59iXpBDlVuozpl7JWUZMNrqMW%2Fh3kTD1D1A5D2LmcNCF4oi5XimaRfObbbMeU%2FIclR7UHGIAzlMc0pcamysr5vTpjvBuCAfy8C7tnARhhzM45582otRSIUuaijM60ZyMW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746ed18eee4db4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/all.css
200 OK 0 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/all.css
IP
GET /lp/fff/vid_files/all.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/lp/fff/vid-ts-k.php?AFFID=1006&C1=4037&CID=12&tr=102107178231249220907&
Cookie: PHPSESSID=gqe9tic6t5jj0h144h3um83iss
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 10:39:06 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-da9f"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
149.28.224.6
104.21.63.54
151.101.86.109
23.36.76.177
93.184.220.29