OPTIONS stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw
200 OK 0 B URL OPTIONS stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.behindthemarkets.com/
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://go.behindthemarkets.com
access-control-allow-methods: POST,GET,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Disposition,Content-Type,Origin,pragma,Range,X-Requested-With,X-File-Name,X-Filename
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
date: Fri, 20 Jun 2025 23:34:14 GMT
server: istio-envoy
X-Firefox-Spdy: h2
GET btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
200 OK 95 kB URL GET btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.lpages.co
FingerprintF4:79:B3:24:D8:2D:EB:34:21:DD:D8:E9:4D:AE:95:9F:8B:25:25:CF
ValidityThu, 12 Jun 2025 13:59:06 GMT - Wed, 10 Sep 2025 13:59:05 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (48645)
Hash 22b7014b28e2ecb940b758a89149b2fb
6621f61c21ec4aa3cf62cf281faa2c55d3d045d9
be1345dc7646f02bc3dbfd89c3d4a554856910b9c5c37d14474116f9ec7463fb
GET /serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5 HTTP/1.1
Host: btm-btm-btm.lpages.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 20 Jun 2025 23:34:09 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: no-cache
x-cache: MISS, HIT
etag: W/"9749b28a752224b4d10272ebefe4e72b"
last-modified: Tue, 18 Feb 2025 20:24:34 GMT
server: Leadpages
strict-transport-security: max-age=15768000
content-encoding: br
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-8R6YNFMJ23&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
200 OK 470 kB URL GET www.googletagmanager.com/gtag/js?id=G-8R6YNFMJ23&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (15266)
Size 470 kB (469822 bytes)
Hash b964c8e7f599c1843856906666aba46d
37ecaaca623dd1872e1e725df93974a84768d252
440071d1b86181370e4bfcf0f012e041c2cdbb4ebfe9a0c9866bae77acb9031a
GET /gtag/js?id=G-8R6YNFMJ23&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jun 2025 23:34:10 GMT
expires: Fri, 20 Jun 2025 23:34:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 149277
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET api.leadpages.io/analytics/v1/events/capture?k=view&a=leadpage&l=6e4YBRWKwhwuJ8eNZ6sb7G&v=&e=&st=&lc=en-US&pid=bb4wMKcXKB896PwqF4vMVT-default-prop&uid=iW9uYvJXAs7gPezvM7Nw6o&sid=g7kRTe5Q5qZefcUHBXpcJX&cid=lp-6e4YBRWKwhwuJ8eNZ6sb7G&uri=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&rf=&rx=1280&ry=1024&tz=%2B00%3A00
200 OK 35 B URL GET api.leadpages.io/analytics/v1/events/capture?k=view&a=leadpage&l=6e4YBRWKwhwuJ8eNZ6sb7G&v=&e=&st=&lc=en-US&pid=bb4wMKcXKB896PwqF4vMVT-default-prop&uid=iW9uYvJXAs7gPezvM7Nw6o&sid=g7kRTe5Q5qZefcUHBXpcJX&cid=lp-6e4YBRWKwhwuJ8eNZ6sb7G&uri=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&rf=&rx=1280&ry=1024&tz=%2B00%3A00
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/events/capture?k=view&a=leadpage&l=6e4YBRWKwhwuJ8eNZ6sb7G&v=&e=&st=&lc=en-US&pid=bb4wMKcXKB896PwqF4vMVT-default-prop&uid=iW9uYvJXAs7gPezvM7Nw6o&sid=g7kRTe5Q5qZefcUHBXpcJX&cid=lp-6e4YBRWKwhwuJ8eNZ6sb7G&uri=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&rf=&rx=1280&ry=1024&tz=%2B00%3A00 HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
access-control-max-age: 600
x-request-id: 04hn07u2n3lru58bvmig
Date: Fri, 20 Jun 2025 23:34:10 GMT
access-control-allow-origin: https://go.behindthemarkets.com
set-cookie: view.bb4wMKcXKB896PwqF4vMVT-default-prop.6e4YBRWKwhwuJ8eNZ6sb7G=1750462451000; Domain=api.leadpages.io; expires=Sat, 21 Jun 2025 23:34:10 GMT; HttpOnly; Max-Age=86400; Path=/analytics/v1/events/capture; SameSite=None; Secure
access-control-expose-headers: LP-Security-Token
access-control-allow-credentials: true
X-Forwarded-For: 91.90.42.154
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1280x720_h264_2400000/1.ts
200 OK 341 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1280x720_h264_2400000/1.ts
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Size 341 kB (340656 bytes)
Hash 462cff96938088593ed6333eb1168457
337d65e8457fea7032fb1b0eb11f0b1dea3b07b3
14848bab10f17d1069b3db2d667128779673c38d626e7f40b0cf731f6a2cd984
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1280x720_h264_2400000/1.ts HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 340656
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 11:22:47 GMT
last-modified: Fri, 14 Feb 2025 04:42:44 GMT
etag: "462cff96938088593ed6333eb1168457"
x-goog-stored-content-length: 340656
content-type: video/mp2t
access-control-allow-origin: *
accept-ranges: bytes
age: 2126547
date: Fri, 20 Jun 2025 23:34:11 GMT
x-served-by: cache-dfw-kdfw8210127-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 21286, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET static.leadpages.net/fonts/font-awesome/6.4.2/css/all.min.css
200 OK 102 kB URL GET static.leadpages.net/fonts/font-awesome/6.4.2/css/all.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subjectstatic.leadpages.net
FingerprintDF:20:06:A0:2E:61:24:F4:BB:B9:69:8C:CA:B9:10:6D:8E:70:CE:F3
ValidityWed, 21 May 2025 00:06:53 GMT - Tue, 19 Aug 2025 01:00:47 GMT
File type ASCII text, with very long lines (52276)
Size 102 kB (102217 bytes)
Hash 5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /fonts/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: static.leadpages.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: *
x-cloud-trace-context: 6dc0bf8b9effb8dec27affbbf0b3f3de
content-encoding: gzip
server: Google Frontend
via: 1.1 google
content-length: 26836
date: Fri, 20 Jun 2025 05:32:50 GMT
expires: Sat, 20 Jun 2026 05:32:50 GMT
cache-control: public, max-age=31536000
age: 64880
etag: "5rMyPw"
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Hash 5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a
GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btm-btm-btm.lpages.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:45:25 GMT
expires: Fri, 19 Jun 2026 10:45:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 132525
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Hash 5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a
GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btm-btm-btm.lpages.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:45:25 GMT
expires: Fri, 19 Jun 2026 10:45:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 132525
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=s16
200 OK 1.5 kB URL GET lh3.googleusercontent.com/bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=s16
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Futuristic digital wave with dots. Dark cyberspace. Abstract music background. Big data visualisation with particle flow. 3d re, software=Picasa], baseline, precision 8, 16x9, components 3
Hash 9e3f0c9976eac994f43e0a1444b422d1
346863cf4ab941cc8db2c466d976cb1b7724ed59
819f4e970c0a490f29de5cc70ed451ce6d3d8053204f806e282a7471050778ca
GET /bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=s16 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1539
x-xss-protection: 0
date: Fri, 20 Jun 2025 21:23:22 GMT
expires: Sat, 21 Jun 2025 21:23:22 GMT
cache-control: public, max-age=86400, no-transform
age: 7848
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 639
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:34 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/stream.m3u8
200 OK 604 B URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/stream.m3u8
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash 3c567a41a1594e67e234a90a2e6dbfc1
ceb7332e5ab6295949c04cb59eb186e718d6232e
bc0bc4d37e0ad2640c0022bc3e41c064e1b54961fe69799b99b22c4748a4deaa
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/stream.m3u8 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 604
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 11:22:46 GMT
last-modified: Fri, 14 Feb 2025 05:03:28 GMT
etag: "3c567a41a1594e67e234a90a2e6dbfc1"
x-goog-stored-content-length: 604
content-type: application/vnd.apple.mpegurl
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 20 Jun 2025 23:34:11 GMT
age: 918943
x-served-by: cache-dfw-ktki8620092-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 3612, 26
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET fast.vidalytics.com/license?hash=BMayLnm4SZJJC5be%7Cgo.behindthemarkets.com
200 OK 79 B URL GET fast.vidalytics.com/license?hash=BMayLnm4SZJJC5be%7Cgo.behindthemarkets.com
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash 1b52e185f0b4ea9e785bfc0534f9471a
c9d59a45b958cdc7966fcecc2faf4b13a17139b9
ba590479761420f7ce34964b488e47ac05f1d40808a2c5f4adbab75bab2255ed
GET /license?hash=BMayLnm4SZJJC5be%7Cgo.behindthemarkets.com HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 94
access-control-allow-origin: *
cache-control: public, max-age=300, s-maxage=300
content-encoding: gzip
content-type: application/json; charset=utf-8
x-envoy-upstream-service-time: 0
accept-ranges: bytes
date: Fri, 20 Jun 2025 23:34:11 GMT
age: 0
x-served-by: cache-dfw-kdal2120049-DFW, cache-hel1410020-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET fonts.googleapis.com/css?family=Roboto:300,400,500,700|Roboto+Condensed:300,400,500,700|Exo+2:300,400,500,700|Lexend:300,400,500,700|Open+Sans:300,400,500,700
200 OK 66 kB URL GET fonts.googleapis.com/css?family=Roboto:300,400,500,700|Roboto+Condensed:300,400,500,700|Exo+2:300,400,500,700|Lexend:300,400,500,700|Open+Sans:300,400,500,700
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type ASCII text, with very long lines (1572)
Hash b42aa0b5349fb6ef9f2afb16587d23c1
39aa96ff25bd153a412933e6b58cb9929af6cc88
4fef27609a974fd2605c3214d1f87eaa082e99e7f398205393652a5764cd6d4d
GET /css?family=Roboto:300,400,500,700|Roboto+Condensed:300,400,500,700|Exo+2:300,400,500,700|Lexend:300,400,500,700|Open+Sans:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jun 2025 23:34:09 GMT
date: Fri, 20 Jun 2025 23:34:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1920x1080_h264_3500000/2.ts
200 OK 725 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1920x1080_h264_3500000/2.ts
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Size 725 kB (724552 bytes)
Hash c1fd6d6359e8ac32ceb56696eabe0144
3e25dd0cf2d17763f59ee5ef85765524b2b3c6bd
704002cf51ee29d7b1ab115398e371d41deca4cb30384a4ae3c33b827f350d4c
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/1920x1080_h264_3500000/2.ts HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 724552
content-type: video/mp2t
cache-control: public, max-age=31104000
expires: Fri, 05 Jun 2026 07:14:35 GMT
last-modified: Fri, 14 Feb 2025 05:03:05 GMT
etag: "c1fd6d6359e8ac32ceb56696eabe0144"
x-goog-stored-content-length: 724552
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 20 Jun 2025 23:34:11 GMT
age: 922776
x-served-by: cache-dfw-kdal2120040-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 3333, 1
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Hash 5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a
GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:45:25 GMT
expires: Fri, 19 Jun 2026 10:45:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 132524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET go.behindthemarkets.com/19-vsl-btm-elon/undefined/
404 Not Found 96 kB URL GET go.behindthemarkets.com/19-vsl-btm-elon/undefined/
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subjectgo.behindthemarkets.com
Fingerprint4A:B3:40:22:C6:36:F9:44:73:A4:DB:60:9E:EF:86:09:48:EB:98:2B
ValidityTue, 20 May 2025 00:27:06 GMT - Mon, 18 Aug 2025 00:27:05 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (46675)
Hash 4ede80ef1287b539f7ef31b8081f734a
9b077fdebeeabde0423dc52e8d7853cd1b52efd4
9cfb7614c0123943267f5e7538ee0894e88a56792b9f092e77e707fd1ce08c7b
GET /19-vsl-btm-elon/undefined/ HTTP/1.1
Host: go.behindthemarkets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 20 Jun 2025 23:34:09 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: no-cache
server: Leadpages
content-encoding: br
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w800
200 OK 39 kB URL GET lh3.googleusercontent.com/L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w800
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type PNG image data, 800 x 125, 8-bit/color RGB, non-interlaced
Hash 95fe8dd44062b614dc664484c09dbcba
8b987a4e5955bc5b4a72fa6de4ab3ee43de49eac
88ae60460039b96b7c7ffe88a8e15efb601e48dbd043aa5d6bae663fe25ea1ba
GET /L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w800 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 39152
x-xss-protection: 0
date: Fri, 20 Jun 2025 21:23:23 GMT
expires: Sat, 21 Jun 2025 21:23:23 GMT
cache-control: public, max-age=86400, no-transform
age: 7847
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/thumbnail-5_0.jpg
200 OK 12 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/thumbnail-5_0.jpg
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 480x270, components 3
Hash 35b4d96a4883ff9f1086b189483f9085
7ca028e477be02944f34855519b720011ae2ef4e
7c2f84588bf7d651f2d00c8c1a048a706a6ca7a3232368d15039884fb89decf6
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/thumbnail-5_0.jpg HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 12176
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 04:18:51 GMT
last-modified: Fri, 14 Feb 2025 04:18:27 GMT
etag: "35b4d96a4883ff9f1086b189483f9085"
x-goog-stored-content-length: 12176
content-type: image/jpeg
access-control-allow-origin: *
accept-ranges: bytes
age: 805465
date: Fri, 20 Jun 2025 23:34:11 GMT
x-served-by: cache-dfw-kdfw8210041-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 6279, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
200 OK 131 kB URL User Request GET go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectgo.behindthemarkets.com
Fingerprint4A:B3:40:22:C6:36:F9:44:73:A4:DB:60:9E:EF:86:09:48:EB:98:2B
ValidityTue, 20 May 2025 00:27:06 GMT - Mon, 18 Aug 2025 00:27:05 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (63756)
Size 131 kB (130946 bytes)
Hash 1bd9b3bf73cda575c91c3c6703efa2a6
27f89fe2209894dd26d0037e24a06080875558ce
b6d576d8a982215f83d7da56c678f856d88c70f59013885d1691abc296cc07c7
GET /19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id= HTTP/1.1
Host: go.behindthemarkets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 20 Jun 2025 23:34:08 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: no-cache
x-cache: MISS, HIT
last-modified: Fri, 30 May 2025 15:14:14 GMT
etag: W/"7c04191eed0ddfab28c646eadf036829"
server: Leadpages
strict-transport-security: max-age=15768000
content-encoding: br
X-Firefox-Spdy: h2
GET go.behindthemarkets.com/19-vsl-btm-elon/undefined
302 Found 96 kB URL GET go.behindthemarkets.com/19-vsl-btm-elon/undefined
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subjectgo.behindthemarkets.com
Fingerprint4A:B3:40:22:C6:36:F9:44:73:A4:DB:60:9E:EF:86:09:48:EB:98:2B
ValidityTue, 20 May 2025 00:27:06 GMT - Mon, 18 Aug 2025 00:27:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /19-vsl-btm-elon/undefined HTTP/1.1
Host: go.behindthemarkets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 20 Jun 2025 23:34:09 GMT
content-type: text/html
content-length: 142
location: https://go.behindthemarkets.com/19-vsl-btm-elon/undefined/
server: Leadpages
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=w1280
200 OK 227 kB URL GET lh3.googleusercontent.com/bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=w1280
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 1000x563, components 3
Size 227 kB (227098 bytes)
Hash 770c5afdc01f7938390c153ba176b4b2
df32b8c0b43cefd479c5d364de9eb1f32f5b6c31
c29d9e7fc5eb5272c045b2dc173d78352002cbecaec0a6170386ef5b0015a5db
GET /bAw4ay9HNw27NdNwCuZfzTbYoLCj_6cledktQujhelAzwGnyjqiXsmn7no4D3HSQ5j9EI7k9D5trsnulEDkvV_sH1y7A98qK3Q=w1280 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 227098
x-xss-protection: 0
date: Fri, 20 Jun 2025 23:34:10 GMT
expires: Sat, 21 Jun 2025 23:34:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET js.center.io/identify.html
200 OK 4.4 kB URL GET js.center.io/identify.html
IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subjectjs.center.io
FingerprintDE:BB:FA:70:64:37:82:AE:FC:C8:2E:DE:D3:1F:F7:4F:F7:A9:39:B0
ValidityMon, 02 Jun 2025 07:33:39 GMT - Sun, 31 Aug 2025 08:21:49 GMT
File type HTML document, ASCII text, with very long lines (612)
Hash 0ba3629e9c8b8af4c7a13d344978898a
c05b5c80e1eec6e630547ecfacf11eb86391e4b6
0efa1e4687032588dae8d6d3a00a92e504a3a14b9d1bb23c19670a47c9792110
GET /identify.html HTTP/1.1
Host: js.center.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btm-btm-btm.lpages.co/
Cookie: centerVisitorId=iW9uYvJXAs7gPezvM7Nw6o
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-cloud-trace-context: 966c67be646f1e0c764c53adc6f44651
content-encoding: gzip
server: Google Frontend
content-length: 2016
date: Fri, 20 Jun 2025 23:29:29 GMT
expires: Fri, 20 Jun 2025 23:34:29 GMT
cache-control: public, max-age=300
age: 281
etag: "OMWYXg"
content-type: text/html
X-Firefox-Spdy: h2
GET www.behindthemarkets-btm.com/7BZ2W/H7JJ78/?sub1=3415984047573406301
302 Found 131 kB URL User Request GET www.behindthemarkets-btm.com/7BZ2W/H7JJ78/?sub1=3415984047573406301
IP
Certificate IssuerGoogle Trust Services
Subjectbehindthemarkets-btm.com
Fingerprint75:70:91:91:32:8A:61:4E:D9:EA:1A:F5:A9:A6:97:86:17:05:DC:17
ValidityFri, 13 Jun 2025 05:17:56 GMT - Thu, 11 Sep 2025 06:16:30 GMT
Size 131 kB (130946 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7BZ2W/H7JJ78/?sub1=3415984047573406301 HTTP/1.1
Host: www.behindthemarkets-btm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 20 Jun 2025 23:34:07 GMT
content-type: text/html; charset=utf-8
location: https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
server: cloudflare
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Origin
x-eflow-request-id: f9d66bc1-66e1-4fa1-a5c9-1123dee9f07b
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tT4JbEyJI1WH2%2BbyprKI75ilr16vdR%2FAVaes7MBHDB7%2BnMp6nh%2FXUHJ3JoSj%2F1TxwmPWXlE3G6FvMUlz9wjAskqeUFysssQAPYV6vqaBCE3b0M0iLKdq6163"}]}
set-cookie: uniqueClick_H7JJ78=74b9e4bd-4efa-4cec-9783-a5cb49972bcf:1750462447; SameSite=None; Secure; Path=/; Expires=Sat, 21 Jun 2025 23:34:07 GMT
transaction_id=2447f3aa11a14ff7afa71940007b188e; SameSite=None; Secure; Path=/; Expires=Thu, 18 Sep 2025 23:34:07 GMT
cf-ray: 952f1339dd4856c7-OSL
X-Firefox-Spdy: h2
POST stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw
200 OK 29 B URL POST stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash db792ad80cde44388500d979ec163364
e558318594d37af068fe422e6c4d2dead7ac67c6
6010ee9a95ffc127a9167b48a742d5c45fa6b4ea4ad9882b274f7b8a1c8ae619
POST /awesome-log?cid=PzpZ_7KZ&uid=e1L92xzSjB64B4Kw HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 317
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET,OPTIONS,POST
content-type: application/json
date: Fri, 20 Jun 2025 23:34:14 GMT
content-length: 29
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w16
200 OK 288 B URL GET lh3.googleusercontent.com/L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w16
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type PNG image data, 16 x 2, 8-bit/color RGB, non-interlaced
Hash f33c2520fd56b6d7bc98a0150660c3c6
53550251050bfd405e2c3c8a9d9afb147956f450
2439a939c9fcbb1b0c9d36e5d01cd8779d1a2c6716ab3a3ec0ccdd26b8627e58
GET /L7UeVJs7VLIPC_9H06-cNgmM-SdpEYiTnGXXEQX_JyBSsSwu6PWLtalqHmLO6ZmIcpwKYri9t1WEDclvK2DUJvGs27SxtpA96Q=w16 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 288
x-xss-protection: 0
date: Fri, 20 Jun 2025 21:23:22 GMT
expires: Sat, 21 Jun 2025 21:23:22 GMT
cache-control: public, max-age=86400, no-transform
age: 7848
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fast.vidalytics.com/players/v.5.5.5.000-vid-prod/player.min.js
200 OK 959 kB URL GET fast.vidalytics.com/players/v.5.5.5.000-vid-prod/player.min.js
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 959 kB (959225 bytes)
Hash 6d947d932463fa404533174947193192
0cb717ecd3ee8ca63cc83db51895e889395d1d0b
0f00828480cdd479ecab1b4fe29756a6c50ad91c05506ffb8f5dcadeca5b24bf
GET /players/v.5.5.5.000-vid-prod/player.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 268154
content-type: application/javascript
cache-control: public, max-age=86400, s-maxage=2592000
expires: Fri, 27 Jun 2025 09:45:50 GMT
last-modified: Wed, 28 May 2025 09:35:03 GMT
etag: "4a50de80c31bfbabaf620375c97b62bc"
x-goog-stored-content-length: 268154
x-goog-meta-release-tag: v.5.5.5.000-vid-prod
content-encoding: gzip
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 20 Jun 2025 23:34:10 GMT
age: 2036899
x-served-by: cache-dfw-kdfw8210138-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 13, 2557
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/640x360_h264_900000/1.ts
200 OK 162 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/640x360_h264_900000/1.ts
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Size 162 kB (161492 bytes)
Hash f8061a757836e45e228d2a45fa7dd17e
e3f9abf93413cdcaa87386606b429fb73f81a1c1
07c4727aae83d3476e810a4bf221f8207fe4ee3a44377f0dad7bc347224484cd
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/ts/video/640x360_h264_900000/1.ts HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 161492
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 04:31:42 GMT
last-modified: Fri, 14 Feb 2025 04:30:44 GMT
etag: "f8061a757836e45e228d2a45fa7dd17e"
x-goog-stored-content-length: 161492
content-type: video/mp2t
access-control-allow-origin: *
accept-ranges: bytes
age: 906637
date: Fri, 20 Jun 2025 23:34:12 GMT
x-served-by: cache-dfw-kdfw8210124-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 209, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
POST region1.analytics.google.com/g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAQ&_s=2&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=fetch_user_data&epn.variant_id=0&up.custom_client_id=605166821.1750462451.&upn.variant_id=0&upn.experiment_id=0&tfd=10524
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAQ&_s=2&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=fetch_user_data&epn.variant_id=0&up.custom_client_id=605166821.1750462451.&upn.variant_id=0&upn.experiment_id=0&tfd=10524
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAQ&_s=2&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=fetch_user_data&epn.variant_id=0&up.custom_client_id=605166821.1750462451.&upn.variant_id=0&upn.experiment_id=0&tfd=10524 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.behindthemarkets.com/
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://go.behindthemarkets.com
date: Fri, 20 Jun 2025 23:34:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:158:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:158:0
report-to: {"group":"ascnsrsggc:158:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:158:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 794
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:12 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 639
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:24 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET verifiedlinks.org/go?ehash=1e746cd63afc84096f747db0ef6502d0&product=66763&ar=70&cid=[CAMPAIGN_ID]&lid=153830&slhash=359bc6fcd0e6bbd719f39178cb7465d7&mtaid=sb&cid2=[s8]
302 Found 131 kB URL User Request GET verifiedlinks.org/go?ehash=1e746cd63afc84096f747db0ef6502d0&product=66763&ar=70&cid=[CAMPAIGN_ID]&lid=153830&slhash=359bc6fcd0e6bbd719f39178cb7465d7&mtaid=sb&cid2=[s8]
IP
Certificate IssuerGoogle Trust Services
Subjectverifiedlinks.org
FingerprintC0:68:C9:82:44:B3:9C:5B:87:D2:68:14:C1:12:8D:B6:2A:AF:38:18
ValidityWed, 18 Jun 2025 23:45:45 GMT - Wed, 17 Sep 2025 00:45:34 GMT
Size 131 kB (130946 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go?ehash=1e746cd63afc84096f747db0ef6502d0&product=66763&ar=70&cid=[CAMPAIGN_ID]&lid=153830&slhash=359bc6fcd0e6bbd719f39178cb7465d7&mtaid=sb&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 20 Jun 2025 23:34:07 GMT
content-type: text/html; charset=UTF-8
location: https://www.behindthemarkets-btm.com/7BZ2W/H7JJ78/?sub1=3415984047573406301
server: cloudflare
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=3a3ea3f067c453b677102a35ed7ee1d2; Path=/
pixel_session_hash_66763=3415984047573406301; HttpOnly; SameSite=None; Secure; Path=/; Max-Age=2592000; Expires=Sun, 20 Jul 2025 23:34:07 GMT
bt_tracking_product_66763=d92b80fec2cff9a422c17f5a0359bf48d8edc53053db6ca7ece245eb1c9d6e9a; Max-Age=172800; Expires=Sun, 22 Jun 2025 23:34:07 GMT
cf-ray: 952f1330a8d4b4eb-OSL
X-Firefox-Spdy: h2
GET static.leadpages.net/fonts/font-awesome/6.4.2/css/all.min.css
200 OK 102 kB URL GET static.leadpages.net/fonts/font-awesome/6.4.2/css/all.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectstatic.leadpages.net
FingerprintDF:20:06:A0:2E:61:24:F4:BB:B9:69:8C:CA:B9:10:6D:8E:70:CE:F3
ValidityWed, 21 May 2025 00:06:53 GMT - Tue, 19 Aug 2025 01:00:47 GMT
File type ASCII text, with very long lines (52276)
Size 102 kB (102217 bytes)
Hash 5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /fonts/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: static.leadpages.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
x-cloud-trace-context: 6dc0bf8b9effb8dec27affbbf0b3f3de
content-encoding: gzip
server: Google Frontend
via: 1.1 google
content-length: 26836
date: Fri, 20 Jun 2025 05:32:50 GMT
expires: Sat, 20 Jun 2026 05:32:50 GMT
cache-control: public, max-age=31536000
age: 64879
etag: "5rMyPw"
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w16
200 OK 226 B URL GET lh3.googleusercontent.com/W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w16
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type PNG image data, 16 x 3, 8-bit/color RGB, non-interlaced
Hash ece4cae91b1f404227957d7277e45330
674ac000b9bb6b4a7c7a702fc4f6694db7d8ddef
247ec6a64d5a6e8c0ffd4d8b731beb4d749298d530401f53bf33b7e59baabad7
GET /W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w16 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 226
x-xss-protection: 0
date: Fri, 20 Jun 2025 20:12:31 GMT
expires: Sat, 21 Jun 2025 20:12:31 GMT
cache-control: public, max-age=86400, no-transform
age: 12099
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=AW-16454845358&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
200 OK 356 kB URL GET www.googletagmanager.com/gtag/js?id=AW-16454845358&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (5913)
Size 356 kB (355938 bytes)
Hash b4ceda923cd5ee9bcd0307fae5c28e99
3dbf867516f9929cf1bf0485be9ed7e7084612d5
b1434c27054899eb8034403ed1803eb7da75b0fa8d0e10b5cb4f97d9088f9772
GET /gtag/js?id=AW-16454845358&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jun 2025 23:34:10 GMT
expires: Fri, 20 Jun 2025 23:34:10 GMT
cache-control: private, max-age=900
last-modified: Fri, 20 Jun 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 120867
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET api.leadpages.io/analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer,counter,text&label=lb_embed_embed_script_load,lb_embed_exit-intent_tigger_queue,lb_embed_leadbox_embedded&value=289,1,RoWdU7YKgcirERamzW228F
200 OK 35 B URL GET api.leadpages.io/analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer,counter,text&label=lb_embed_embed_script_load,lb_embed_exit-intent_tigger_queue,lb_embed_leadbox_embedded&value=289,1,RoWdU7YKgcirERamzW228F
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer,counter,text&label=lb_embed_embed_script_load,lb_embed_exit-intent_tigger_queue,lb_embed_leadbox_embedded&value=289,1,RoWdU7YKgcirERamzW228F HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
access-control-max-age: 600
Date: Fri, 20 Jun 2025 23:34:10 GMT
access-control-allow-origin: https://go.behindthemarkets.com
x-request-id: 04hn07plsbssme6m9m60
access-control-expose-headers: LP-Security-Token
access-control-allow-credentials: true
X-Forwarded-For: 91.90.42.154
POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=555653807.1750462450&dt=%2419%20VSL%20BTM%20Elon&auid=813185124.1750462450&navt=n&npa=1>m=45He56g0v812088355za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500&tft=1750462449812&tfd=4387&apve=1&apvf=sb
200 OK 0 B URL POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=555653807.1750462450&dt=%2419%20VSL%20BTM%20Elon&auid=813185124.1750462450&navt=n&npa=1>m=45He56g0v812088355za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500&tft=1750462449812&tfd=4387&apve=1&apvf=sb
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint4F:74:10:0A:01:21:55:4F:03:B9:F9:8B:6A:DE:A2:47:7C:44:89:73
ValidityMon, 02 Jun 2025 08:37:21 GMT - Mon, 25 Aug 2025 08:37:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=555653807.1750462450&dt=%2419%20VSL%20BTM%20Elon&auid=813185124.1750462450&navt=n&npa=1>m=45He56g0v812088355za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500&tft=1750462449812&tfd=4387&apve=1&apvf=sb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
date: Fri, 20 Jun 2025 23:34:10 GMT
content-type: text/plain
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET go.redreefresearch.com/btmelonaivsl0325/1e746cd63afc84096f747db0ef6502d0/70/TA_IMD/[CAMPAIGN_ID]/153830/359bc6fcd0e6bbd719f39178cb7465d7/sb
302 Found 131 kB URL User Request GET go.redreefresearch.com/btmelonaivsl0325/1e746cd63afc84096f747db0ef6502d0/70/TA_IMD/[CAMPAIGN_ID]/153830/359bc6fcd0e6bbd719f39178cb7465d7/sb
IP
Certificate IssuerGoogle Trust Services
Subjectredreefresearch.com
Fingerprint5E:A4:15:11:05:E9:61:40:3C:F6:80:38:2A:38:FB:30:2C:E9:EB:88
ValiditySun, 01 Jun 2025 17:10:33 GMT - Sat, 30 Aug 2025 18:09:20 GMT
Size 131 kB (130946 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /btmelonaivsl0325/1e746cd63afc84096f747db0ef6502d0/70/TA_IMD/[CAMPAIGN_ID]/153830/359bc6fcd0e6bbd719f39178cb7465d7/sb HTTP/1.1
Host: go.redreefresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 20 Jun 2025 23:34:06 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedlinks.org/go?ehash=1e746cd63afc84096f747db0ef6502d0&product=66763&ar=70&cid=[CAMPAIGN_ID]&lid=153830&slhash=359bc6fcd0e6bbd719f39178cb7465d7&mtaid=sb&cid2=[s8]
server: cloudflare
cache-control: max-age=600
expires: Fri, 20 Jun 2025 23:44:04 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fR9w8nxrBPA20vvT0Z8%2BmaH%2FDwhusc8n05YBb0ZjF0NXE91WiydhhC2REP9%2FiClL%2B07MJdpY9BoSu3oNKDbKyehPkLme52lkEC5r1vNXRdwjSpXP"}]}
cf-ray: 952f132c5a981bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/uWbfM9kdLOUOO7e7Oo3SHGl-evxMsXn3Lr-DhULu9YBHexURg7_-EzYc_1re7bKq122lJyi-MikC47mcHwkz5ki_2IB43rFblMw=w16
200 OK 405 B URL GET lh3.googleusercontent.com/uWbfM9kdLOUOO7e7Oo3SHGl-evxMsXn3Lr-DhULu9YBHexURg7_-EzYc_1re7bKq122lJyi-MikC47mcHwkz5ki_2IB43rFblMw=w16
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type PNG image data, 16 x 6, 8-bit/color RGBA, non-interlaced
Hash 27879dba27309770d3f23825a76985e4
623e7c03a6c6e579a7e039446f9831351944ab4c
3b6d534b315b9f52a295a10e0aac18512854c3909892d368010649ac683ed02a
GET /uWbfM9kdLOUOO7e7Oo3SHGl-evxMsXn3Lr-DhULu9YBHexURg7_-EzYc_1re7bKq122lJyi-MikC47mcHwkz5ki_2IB43rFblMw=w16 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 405
x-xss-protection: 0
date: Fri, 20 Jun 2025 21:10:29 GMT
expires: Sat, 21 Jun 2025 21:10:29 GMT
cache-control: public, max-age=86400, no-transform
age: 8621
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET js.center.io/center.js
200 OK 13 kB IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subjectjs.center.io
FingerprintDE:BB:FA:70:64:37:82:AE:FC:C8:2E:DE:D3:1F:F7:4F:F7:A9:39:B0
ValidityMon, 02 Jun 2025 07:33:39 GMT - Sun, 31 Aug 2025 08:21:49 GMT
File type JavaScript source, ASCII text, with very long lines (566)
Hash 60f05ff45d707fe36d87b75bf181800d
e34d94b519ed465481596bcff099467feb0aafdd
cc08eb3316359de0d8f025efee489da73ca552209a0c9cab6b00894d7fa21d42
GET /center.js HTTP/1.1
Host: js.center.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btm-btm-btm.lpages.co/
Cookie: centerVisitorId=iW9uYvJXAs7gPezvM7Nw6o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-cloud-trace-context: e5918b3c3e453980f03adc993d0167e0
content-encoding: gzip
server: Google Frontend
content-length: 5417
date: Fri, 20 Jun 2025 23:30:53 GMT
expires: Fri, 20 Jun 2025 23:35:53 GMT
cache-control: public, max-age=300
age: 197
etag: "OMWYXg"
content-type: application/javascript
X-Firefox-Spdy: h2
GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8R6YNFMJ23&cid=605166821.1750462451>m=45je56g0v874108444z8812088355za200zb812088355&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&z=1650699886
200 OK 42 B URL GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8R6YNFMJ23&cid=605166821.1750462451>m=45je56g0v874108444z8812088355za200zb812088355&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&z=1650699886
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google.no
Fingerprint06:9A:0B:8C:DF:AC:70:7A:12:56:3A:16:E7:C4:85:BA:3E:C8:E2:63
ValidityMon, 02 Jun 2025 08:38:19 GMT - Mon, 25 Aug 2025 08:38:18 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8R6YNFMJ23&cid=605166821.1750462451>m=45je56g0v874108444z8812088355za200zb812088355&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&z=1650699886 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 20 Jun 2025 23:34:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ
200 OK 43 B URL GET stats.vidalytics.com/awesome-log?cid=PzpZ_7KZ
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=PzpZ_7KZ HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "PzpZ_7KZ/e1L92xzSjB64B4Kw"
date: Fri, 20 Jun 2025 23:34:12 GMT
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
X-Firefox-Spdy: h2
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 516
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:12 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET fast.vidalytics.com/embeds/PzpZ_7KZ/BMayLnm4SZJJC5be/loader.min.js
200 OK 27 kB URL GET fast.vidalytics.com/embeds/PzpZ_7KZ/BMayLnm4SZJJC5be/loader.min.js
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (27247), with no line terminators
Hash c409310df0563fb6e4ba556bb7056c7b
211c4e5beff08dc106203589d7657c21fb63a127
bfc964f3fc3bb9cc3c36d595f5dcbe091a6d3f56a8e9a492979efc59b0785821
GET /embeds/PzpZ_7KZ/BMayLnm4SZJJC5be/loader.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=600, s-maxage=86400, stale-while-revalidate=3600
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 35
access-control-allow-origin: *
accept-ranges: bytes
age: 39950
date: Fri, 20 Jun 2025 23:34:09 GMT
x-served-by: cache-dfw-ktki8620087-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 0
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9710
X-Firefox-Spdy: h2
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_640x360_900000_variant.m3u8
200 OK 50 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_640x360_900000_variant.m3u8
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash c52e6783436fcb47657c0487da22d222
abacbf7478db56ffdf299c2e71148f9af247d1ba
c1cef85c742540b7b60671ba52d94213190065a7e4cf961fc8490e7e40e912ab
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_640x360_900000_variant.m3u8 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 50228
content-type: application/vnd.apple.mpegurl
cache-control: public, max-age=31104000
expires: Thu, 11 Jun 2026 17:34:29 GMT
last-modified: Fri, 14 Feb 2025 04:31:00 GMT
etag: "c52e6783436fcb47657c0487da22d222"
x-goog-stored-content-length: 50228
access-control-allow-origin: *
accept-ranges: bytes
age: 367183
date: Fri, 20 Jun 2025 23:34:12 GMT
x-served-by: cache-dfw-kdal2120062-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 337, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 8204
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:12 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET api.leadpages.io/analytics/v1/observations/capture?version=1.8.6&correlateBy=VZEsZZVA8CYe6aYyMZYJLv&origin=center-js&kind=timer,timer,counter&label=load-center,load-identify,ident-exists&value=41,168,1
200 OK 35 B URL GET api.leadpages.io/analytics/v1/observations/capture?version=1.8.6&correlateBy=VZEsZZVA8CYe6aYyMZYJLv&origin=center-js&kind=timer,timer,counter&label=load-center,load-identify,ident-exists&value=41,168,1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/observations/capture?version=1.8.6&correlateBy=VZEsZZVA8CYe6aYyMZYJLv&origin=center-js&kind=timer,timer,counter&label=load-center,load-identify,ident-exists&value=41,168,1 HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btm-btm-btm.lpages.co
DNT: 1
Connection: keep-alive
Referer: https://btm-btm-btm.lpages.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
access-control-max-age: 600
Date: Fri, 20 Jun 2025 23:34:15 GMT
access-control-allow-origin: https://btm-btm-btm.lpages.co
x-request-id: 04hn08tgpmg91igvb5a0
access-control-expose-headers: LP-Security-Token
access-control-allow-credentials: true
X-Forwarded-For: 91.90.42.154
GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Hash 9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:47:59 GMT
expires: Fri, 19 Jun 2026 10:47:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
age: 132370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=AW-16585749727&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
200 OK 364 kB URL GET www.googletagmanager.com/gtag/js?id=AW-16585749727&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (5913)
Size 364 kB (364271 bytes)
Hash 5da8d584f6fb105c54dc4e80bd8735cf
45c280c4e4e446cb57ee6dcabd8ec43988d71629
11b8b912d46b148166949b373128a718632612d41ed49e6e8737d1ccc68c8d0a
GET /gtag/js?id=AW-16585749727&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jun 2025 23:34:10 GMT
expires: Fri, 20 Jun 2025 23:34:10 GMT
cache-control: private, max-age=900
last-modified: Fri, 20 Jun 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 122671
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/preview-5_0.jpg
200 OK 2.0 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/preview-5_0.jpg
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 107x60, components 3
Hash c222ba2c6e8072dc8a743a46865f07fb
b60246c7deea3ea8db8f7f7673367b6b0fb76305
65fe02bbeb17d28648bb91c92a4a57045722327ef52f9de0961807ea83615b23
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/thumb/preview-5_0.jpg HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 2008
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 04:26:02 GMT
last-modified: Fri, 14 Feb 2025 04:18:27 GMT
etag: "c222ba2c6e8072dc8a743a46865f07fb"
x-goog-stored-content-length: 2008
content-type: image/jpeg
access-control-allow-origin: *
accept-ranges: bytes
age: 1994872
date: Fri, 20 Jun 2025 23:34:09 GMT
x-served-by: cache-dfw-kdfw8210131-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 16229, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
POST stats.vidalytics.com/scribe
200 OK 16 B URL POST stats.vidalytics.com/scribe
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 474
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Fri, 20 Jun 2025 23:34:12 GMT
content-length: 16
x-envoy-upstream-service-time: 8
server: istio-envoy
access-control-allow-origin: https://go.behindthemarkets.com
access-control-expose-headers: Access-Control-Allow-Origin,Cache-Control,Content-Length,Content-Type,ETag,If-None-Match
X-Firefox-Spdy: h2
GET js.center.io/center.js
200 OK 13 kB IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectjs.center.io
FingerprintDE:BB:FA:70:64:37:82:AE:FC:C8:2E:DE:D3:1F:F7:4F:F7:A9:39:B0
ValidityMon, 02 Jun 2025 07:33:39 GMT - Sun, 31 Aug 2025 08:21:49 GMT
File type JavaScript source, ASCII text, with very long lines (566)
Hash 60f05ff45d707fe36d87b75bf181800d
e34d94b519ed465481596bcff099467feb0aafdd
cc08eb3316359de0d8f025efee489da73ca552209a0c9cab6b00894d7fa21d42
GET /center.js HTTP/1.1
Host: js.center.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-cloud-trace-context: c21b7323c88926929d85e707147be327
content-encoding: gzip
server: Google Frontend
content-length: 5417
date: Fri, 20 Jun 2025 23:33:34 GMT
expires: Fri, 20 Jun 2025 23:38:34 GMT
cache-control: public, max-age=300
age: 35
etag: "OMWYXg"
content-type: application/javascript
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
200 OK 45 kB URL GET fonts.gstatic.com/s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 44584, version 1.0
Hash e04669366cda1aca21161f9e22bac3ae
157532ec5cdb07c395eb96aa6e9d0de1eeb869a7
43a079fd739dffa727de659b5bbf44596031aa7542c8a8afbc54a243aab96b47
GET /s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btm-btm-btm.lpages.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44584
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:50:44 GMT
expires: Fri, 19 Jun 2026 10:50:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Apr 2023 20:46:24 GMT
content-type: font/woff2
age: 132206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1280x720_2400000_variant.m3u8
200 OK 52 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1280x720_2400000_variant.m3u8
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash a77c2d1b53f128a92e52511167260bc6
944db34d1955559dc49f9813feefee8319562119
74ba36c8b0fe7caadb9b927ce674b22bab1c56297e899b460967866ef9a81b8a
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1280x720_2400000_variant.m3u8 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 52088
content-type: application/vnd.apple.mpegurl
cache-control: public, max-age=31104000
expires: Fri, 22 May 2026 18:03:04 GMT
last-modified: Fri, 14 Feb 2025 04:43:03 GMT
etag: "a77c2d1b53f128a92e52511167260bc6"
x-goog-stored-content-length: 52088
access-control-allow-origin: *
accept-ranges: bytes
age: 2093466
date: Fri, 20 Jun 2025 23:34:11 GMT
x-served-by: cache-dfw-kdal2120059-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 16117, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET fonts.gstatic.com/s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 39728, version 1.0
Hash 8f616d9af38d2c942d88e15cdffad7f1
57c57d73ad341556f6638f04c99d133f8c06560d
5cdfe8f6d3a887cd4c61ffd1541d32cc0540cc3c3342416a617d5a228b95c6f3
GET /s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:46:56 GMT
expires: Fri, 19 Jun 2026 10:46:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jun 2025 16:13:10 GMT
content-type: font/woff2
age: 132433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=AW-16670774721&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
200 OK 444 kB URL GET www.googletagmanager.com/gtag/js?id=AW-16670774721&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (6004)
Size 444 kB (443739 bytes)
Hash 5d6f1fb5fd7eef928fbf1b69ec27f802
62620f551db2b4b8e585e79cc99449f13c31aa82
0f1e7ae1751caf49c0daf3e9ae3efcb35c8e5736df879892b4e39f74232eb362
GET /gtag/js?id=AW-16670774721&cx=c>m=45He56g0v812088355za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104784167~104791498~104791500 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jun 2025 23:34:10 GMT
expires: Fri, 20 Jun 2025 23:34:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 146196
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET api.leadpages.io/analytics/v1/observations/capture?version=1.7.13&origin=page-speed&kind=timer,timer,timer,timer,timer,timer,timer,timer,timer,timer&label=domain-lookup,connect,request,ttfb,response,loading,interactive,content-loaded,complete,load&value=81,250,241,586,5,922,1482,1495,3930,3931
200 OK 35 B URL GET api.leadpages.io/analytics/v1/observations/capture?version=1.7.13&origin=page-speed&kind=timer,timer,timer,timer,timer,timer,timer,timer,timer,timer&label=domain-lookup,connect,request,ttfb,response,loading,interactive,content-loaded,complete,load&value=81,250,241,586,5,922,1482,1495,3930,3931
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/observations/capture?version=1.7.13&origin=page-speed&kind=timer,timer,timer,timer,timer,timer,timer,timer,timer,timer&label=domain-lookup,connect,request,ttfb,response,loading,interactive,content-loaded,complete,load&value=81,250,241,586,5,922,1482,1495,3930,3931 HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
x-request-id: 04hn085htcp95csle630
Date: Fri, 20 Jun 2025 23:34:11 GMT
access-control-allow-credentials: true
access-control-expose-headers: LP-Security-Token
X-Forwarded-For: 91.90.42.154
GET embed.lpcontent.net/leadboxes/current/embed.js
200 OK 43 kB URL GET embed.lpcontent.net/leadboxes/current/embed.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectembed.lpcontent.net
FingerprintAB:73:83:A8:DE:C0:0C:AD:21:A0:9B:7B:05:29:22:AF:B1:50:3A:22
ValiditySat, 10 May 2025 04:09:38 GMT - Fri, 08 Aug 2025 05:03:31 GMT
File type JavaScript source, ASCII text, with very long lines (30758)
Hash 7efcfabdb6209627ce8b016b1c4814eb
f3b8ebfc5fe452333c0fa14b15b28567f30921b9
5590f038f87169772f0bb512d942481838ac73230926fb92c4ff8db9a19b2296
GET /leadboxes/current/embed.js HTTP/1.1
Host: embed.lpcontent.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
x-cloud-trace-context: e36ebdb135457e655ff941eabfcc2a07
content-encoding: gzip
server: Google Frontend
via: 1.1 google
content-length: 14811
date: Fri, 20 Jun 2025 23:30:05 GMT
expires: Fri, 20 Jun 2025 23:35:05 GMT
cache-control: public, max-age=300
age: 244
etag: "5rMyPw"
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2
200 OK 41 kB URL GET fonts.gstatic.com/s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 40836, version 1.0
Hash 9b3b8ff7ce2027b021390b101482e960
94042c26bb2a2e3337c293ffa5cd88894764207e
6f7153d9320d0b79ff1fe4502f0b2f9d847dc765d66414a0efb91b31096e113e
GET /s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 11:08:57 GMT
expires: Fri, 19 Jun 2026 11:08:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 17:23:43 GMT
content-type: font/woff2
age: 131112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET js.center.io/identify.html
200 OK 4.4 kB URL GET js.center.io/identify.html
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subjectjs.center.io
FingerprintDE:BB:FA:70:64:37:82:AE:FC:C8:2E:DE:D3:1F:F7:4F:F7:A9:39:B0
ValidityMon, 02 Jun 2025 07:33:39 GMT - Sun, 31 Aug 2025 08:21:49 GMT
File type HTML document, ASCII text, with very long lines (612)
Hash 0ba3629e9c8b8af4c7a13d344978898a
c05b5c80e1eec6e630547ecfacf11eb86391e4b6
0efa1e4687032588dae8d6d3a00a92e504a3a14b9d1bb23c19670a47c9792110
GET /identify.html HTTP/1.1
Host: js.center.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-cloud-trace-context: 0791fab08c326324f64eefc76353c21f
content-encoding: gzip
server: Google Frontend
content-length: 2016
date: Fri, 20 Jun 2025 23:31:01 GMT
expires: Fri, 20 Jun 2025 23:36:01 GMT
cache-control: public, max-age=300
age: 188
etag: "OMWYXg"
content-type: text/html
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Open+Sans:300,400,500,700|Fjalla+One:300,400,500,700
200 OK 25 kB URL GET fonts.googleapis.com/css?family=Open+Sans:300,400,500,700|Fjalla+One:300,400,500,700
IP
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type ASCII text, with very long lines (1572)
Hash 173d9691a2820bd201f092c17670ca54
b45b257802e3581debe783da0a958ff30669bd3e
fa32c10749a4f4e907bf8e9887f0088a7ec99c840e6b098c3649be44096db59a
GET /css?family=Open+Sans:300,400,500,700|Fjalla+One:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btm-btm-btm.lpages.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jun 2025 23:34:10 GMT
date: Fri, 20 Jun 2025 23:34:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST region1.analytics.google.com/g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=page_view&_fv=1&_ss=1&epn.variant_id=0&tfd=5391
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=page_view&_fv=1&_ss=1&epn.variant_id=0&tfd=5391
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8R6YNFMJ23>m=45je56g0v874108444z8812088355za200zb812088355&_p=1750462449249&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=605166821.1750462451&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750462450&sct=1&seg=0&dl=https%3A%2F%2Fgo.behindthemarkets.com%2F19-vsl-btm-elon%2F%3F_ef_transaction_id%3D2447f3aa11a14ff7afa71940007b188e%26utm_source%3D5%26utm_campaign%3D%26utm_medium%3D%26id%3D3415984047573406301%26iocid%3D%26aff%3D5%26creative_id%3D%26oid%3D287%26message_id%3D%26link_id%3D&dt=%2419%20VSL%20BTM%20Elon&en=page_view&_fv=1&_ss=1&epn.variant_id=0&tfd=5391 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.behindthemarkets.com/
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://go.behindthemarkets.com
date: Fri, 20 Jun 2025 23:34:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:158:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:158:0
report-to: {"group":"ascnsrsggc:158:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:158:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET go.behindthemarkets.com/rt.js
200 OK 140 B URL GET go.behindthemarkets.com/rt.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subjectgo.behindthemarkets.com
Fingerprint4A:B3:40:22:C6:36:F9:44:73:A4:DB:60:9E:EF:86:09:48:EB:98:2B
ValidityTue, 20 May 2025 00:27:06 GMT - Mon, 18 Aug 2025 00:27:05 GMT
File type ASCII text, with no line terminators
Hash 763fb578994d449fc9794062787176be
4dcbe8ca157d7ea534ee58e6c0ebcee2800254da
8669065c2e80d680fa709cdef204a6f88b1c16b5ffda471111f1e3fb4e6976a9
GET /rt.js HTTP/1.1
Host: go.behindthemarkets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 20 Jun 2025 23:34:08 GMT
content-type: text/javascript
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server: Leadpages
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2
200 OK 41 kB URL GET fonts.gstatic.com/s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 40836, version 1.0
Hash 9b3b8ff7ce2027b021390b101482e960
94042c26bb2a2e3337c293ffa5cd88894764207e
6f7153d9320d0b79ff1fe4502f0b2f9d847dc765d66414a0efb91b31096e113e
GET /s/exo2/v25/7cHmv4okm5zmbtYoK-4W5HIotT4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 11:08:57 GMT
expires: Fri, 19 Jun 2026 11:08:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 17:23:43 GMT
content-type: font/woff2
age: 131112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2
200 OK 40 kB URL GET fonts.gstatic.com/s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 39728, version 1.0
Hash 8f616d9af38d2c942d88e15cdffad7f1
57c57d73ad341556f6638f04c99d133f8c06560d
5cdfe8f6d3a887cd4c61ffd1541d32cc0540cc3c3342416a617d5a228b95c6f3
GET /s/lexend/v25/wlpwgwvFAVdoq2_v-6QU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:46:56 GMT
expires: Fri, 19 Jun 2026 10:46:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jun 2025 16:13:10 GMT
content-type: font/woff2
age: 132433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET btm-btm-btm.lpages.co/rt.js
200 OK 140 B URL GET btm-btm-btm.lpages.co/rt.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Certificate IssuerLet's Encrypt
Subject*.lpages.co
FingerprintF4:79:B3:24:D8:2D:EB:34:21:DD:D8:E9:4D:AE:95:9F:8B:25:25:CF
ValidityThu, 12 Jun 2025 13:59:06 GMT - Wed, 10 Sep 2025 13:59:05 GMT
File type ASCII text, with no line terminators
Hash 29983583f745f2a9e5d85eb7283b8129
8c0340ebd40bcb4a3fe82a7391ead3af9cdce5ee
e1ed22c2a78b2d7388a9852928f79b4fabc3c3675300200d1dd9a29df65774f5
GET /rt.js HTTP/1.1
Host: btm-btm-btm.lpages.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btm-btm-btm.lpages.co/serve-leadbox/RoWdU7YKgcirERamzW228F/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&aff=5&creative_id=&id=3415984047573406301&iocid=&link_id=&message_id=&oid=287&utm_campaign=&utm_medium=&utm_source=5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 20 Jun 2025 23:34:10 GMT
content-type: text/javascript
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server: Leadpages
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET api.leadpages.io/analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer&label=lb_embed_leadbox_load&value=672
200 OK 35 B URL GET api.leadpages.io/analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer&label=lb_embed_leadbox_load&value=672
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/observations/capture?origin=&version=1.2.2&correlateBy=aDLHvZW4HbP5658wCrNJ44&kind=timer&label=lb_embed_leadbox_load&value=672 HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
access-control-max-age: 600
Date: Fri, 20 Jun 2025 23:34:11 GMT
access-control-allow-origin: https://go.behindthemarkets.com
x-request-id: 04hn083t6sd7oildhsm0
access-control-expose-headers: LP-Security-Token
access-control-allow-credentials: true
X-Forwarded-For: 91.90.42.154
GET www.googletagmanager.com/gtm.js?id=GTM-WNRH3TX
200 OK 408 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-WNRH3TX
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (14132)
Size 408 kB (408016 bytes)
Hash 5d98f4b525d2dbc0df9348a45db577c9
c4b6576a566f8d51f7fbf22bd20b64825154a08e
02f75dbc6428be279f2728cea210448103d4c8d0883ce85b0b46f263a14c575d
GET /gtm.js?id=GTM-WNRH3TX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jun 2025 23:34:09 GMT
expires: Fri, 20 Jun 2025 23:34:09 GMT
cache-control: private, max-age=900
last-modified: Fri, 20 Jun 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 135245
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lh3.googleusercontent.com/W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w800
200 OK 40 kB URL GET lh3.googleusercontent.com/W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w800
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint19:9E:5E:CB:76:5C:1F:65:A6:69:9A:CC:62:60:08:7B:28:80:1A:96
ValidityMon, 02 Jun 2025 08:36:32 GMT - Mon, 25 Aug 2025 08:36:31 GMT
File type PNG image data, 800 x 148, 8-bit/color RGBA, non-interlaced
Hash 5dfd90f769e0e4b291f06f21f68419d2
ee3bc25ceee43d3e2aeb4e66377ef869f954ecaa
02260d32a47b7cc2c9c3b11137303dd79a2923cda482e2449a4be778b325bdb1
GET /W_vRo2tNrVX1bAh6a2vHvwkN-SmBa9FS-pNZToMYTmh5ofJjywWyb6t2nJhjjaMcVosVP_9R5GwhffqAOJ6lTH33VJW6FzHT3m2i=w800 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 39765
x-xss-protection: 0
date: Fri, 20 Jun 2025 21:23:23 GMT
expires: Sat, 21 Jun 2025 21:23:23 GMT
cache-control: public, max-age=86400, no-transform
age: 7847
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1920x1080_3500000_variant.m3u8
200 OK 53 kB URL GET fast.vidalytics.com/video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1920x1080_3500000_variant.m3u8
IP
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerSectigo Limited
Subject*.vidalytics.com
Fingerprint3A:95:4C:0B:62:16:0C:59:B3:98:1E:33:58:C9:DE:90:23:BB:7E:FB
ValidityWed, 13 Nov 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
Hash 0f4b98f914725f6e0ecf58c9b9277173
bb346575d7419d74f174c1f7ecb56329112e67cc
748099583c3646895dfb4ebf51ec09f1adcd1ebb4bf4d7d39d0e83567d1694b7
GET /video/PzpZ_7KZ/3vUERqT7P9WtCEtN/175462/168636__FFMPEG/video_TS_h264_aac_96000_1920x1080_3500000_variant.m3u8 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 53018
cache-control: public, max-age=31104000
expires: Mon, 09 Feb 2026 11:22:47 GMT
last-modified: Fri, 14 Feb 2025 05:03:24 GMT
etag: "0f4b98f914725f6e0ecf58c9b9277173"
x-goog-stored-content-length: 53018
content-type: application/vnd.apple.mpegurl
access-control-allow-origin: *
accept-ranges: bytes
age: 300408
date: Fri, 20 Jun 2025 23:34:11 GMT
x-served-by: cache-dfw-kdfw8210130-DFW, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 481, 0
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by, x-goog-stored-content-length, content-length, x-lb-backend, x-lb-cache
x-cdn: 5
x-cdn-site: c5-prod
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET api.leadpages.io/analytics/v1/observations/capture?version=1.8.6&correlateBy=qeeEuf8wPv3jTcQqzndzZR&origin=center-js&kind=timer,timer,counter,timer&label=load-center,load-identify,ident-new,send-events&value=313,800,1,630
200 OK 35 B URL GET api.leadpages.io/analytics/v1/observations/capture?version=1.8.6&correlateBy=qeeEuf8wPv3jTcQqzndzZR&origin=center-js&kind=timer,timer,counter,timer&label=load-center,load-identify,ident-new,send-events&value=313,800,1,630
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://go.behindthemarkets.com/19-vsl-btm-elon/?_ef_transaction_id=2447f3aa11a14ff7afa71940007b188e&utm_source=5&utm_campaign=&utm_medium=&id=3415984047573406301&iocid=&aff=5&creative_id=&oid=287&message_id=&link_id=
Certificate IssuerLet's Encrypt
Subject*.leadpages.io
Fingerprint80:BB:F4:29:80:52:61:02:3B:0B:CC:A0:73:43:25:96:99:C5:83:F0
ValidityThu, 12 Jun 2025 14:11:52 GMT - Wed, 10 Sep 2025 14:11:51 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /analytics/v1/observations/capture?version=1.8.6&correlateBy=qeeEuf8wPv3jTcQqzndzZR&origin=center-js&kind=timer,timer,counter,timer&label=load-center,load-identify,ident-new,send-events&value=313,800,1,630 HTTP/1.1
Host: api.leadpages.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.behindthemarkets.com
DNT: 1
Connection: keep-alive
Referer: https://go.behindthemarkets.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Stargate
access-control-max-age: 600
Date: Fri, 20 Jun 2025 23:34:15 GMT
access-control-allow-origin: https://go.behindthemarkets.com
x-request-id: 04hn094avh4uo9tkvu00
access-control-expose-headers: LP-Security-Token
access-control-allow-credentials: true
X-Forwarded-For: 91.90.42.154
104.21.48.1
107.178.211.97
0.0.0.0