clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202&
149.28.224.6301 Moved Permanently 162 B URL HTTP/1.1 clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202&
IP 149.28.224.6:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202& HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 02 Dec 2022 05:50:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202&
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Fri, 02 Dec 2022 08:26:10 GMT
Date: Fri, 02 Dec 2022 05:50:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6506
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:23 GMT
Last-Modified: Fri, 02 Dec 2022 04:01:57 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 05:19:51 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1832
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Fri, 02 Dec 2022 07:52:37 GMT
Date: Fri, 02 Dec 2022 05:50:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2ueBz1+LerjhxvggbYrke4VYQdgJ5CH8dzI7pUp6fSbR5O9DGuAsySLYpajDwG3qoKPy9yXNDHY=
x-amz-request-id: K2Q1KA16ZMNEZW0K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:46:35 GMT
age: 229
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 05:08:57 GMT
cache-control: public,max-age=3600
age: 2487
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202&
149.28.224.6301 Moved Permanently 0 B URL HTTP/2 clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202&
IP 149.28.224.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202& HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 02 Dec 2022 05:50:24 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-redirect-by: WordPress
set-cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; path=/
permissions-policy: vr=(); xr-spatial-tracking=('none');
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6499
Cache-Control: max-age=104684
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:24 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:55:08 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
149.28.224.6200 OK 17 kB URL HTTP/2 clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
IP 149.28.224.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3a9281922576e1a2375118c680cb39ef
c73cbd1f86089be8ea5a027d0fa918218acb509e
ee1197a0338d43161574970a27e9fdbc32562f5d05124e9ae4f787f3204970f8
GET /vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202 HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:24 GMT
content-type: text/html; charset=UTF-8
content-length: 16990
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://clickintowealth.com/?p=10651>; rel=shortlink
permissions-policy: vr=(); xr-spatial-tracking=('none');
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.117.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.117.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dy8DImfFJ9YPKBzYMo7vLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zo6u1wnEOHyeFKU6smAQZpK5ovQ=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.com/assets/external/E-v1.js
151.101.194.110200 OK 117 kB URL HTTP/2 fast.wistia.com/assets/external/E-v1.js
IP 151.101.194.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 117 kB (116574 bytes)
Hash 4c37b9bb76701684d4ae4f4da69fa406
da0edf6c365033b9ea90103a6e942722f83abdeb
f961fad8441ec0dafacb85e13aefa441faf03357519cc29a5629916ecb6f52ea
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "63867024-1c75e"
last-modified: Tue, 29 Nov 2022 20:48:36 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:25 GMT
age: 1498
x-served-by: cache-iad-kiad7000159-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 34, 41
x-timer: S1669960225.137402,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 116574
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-126759577-4
216.58.207.232200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-126759577-4
IP 216.58.207.232:0
File type ASCII text, with very long lines (1921)
Hash e29c5222bf89ef579e6da9418c8d68fc
6f00acdfdf7dcb32e8268d601c3651618f4e825a
2e732125794d318e13a1fa8cba22434057d87048c0aec6d809609ef0736d6df0
GET /gtag/js?id=UA-126759577-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 05:50:25 GMT
expires: Fri, 02 Dec 2022 05:50:25 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-Y04TL8NEE0
216.58.207.232200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Y04TL8NEE0
IP 216.58.207.232:0
File type ASCII text, with very long lines (20080)
Hash a159f4bb1d2c32d0bd2169278c9d41cf
6ff8373215518e9d8356fceee2264cb99ac30a71
d914f87e5ce8fecbdc82f507ca69e5ce9ed5e2af349f51e66596d899d6088367
GET /gtag/js?id=G-Y04TL8NEE0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 05:50:25 GMT
expires: Fri, 02 Dec 2022 05:50:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77277
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.com/embed/medias/ka4i176oso/swatch
151.101.194.110200 OK 1.7 kB URL HTTP/2 fast.wistia.com/embed/medias/ka4i176oso/swatch
IP 151.101.194.110:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x56, components 1\012- data
Hash ca1c791f9bf50a1ebd1f52918097e646
d22a47a4126b42559b8b14df7b66684d48eaeebb
23945edf196968764daede8e50a8ff7ad472777a4df7887f18ba5c638eacbda2
GET /embed/medias/ka4i176oso/swatch HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *, *
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
access-control-request-method: *
cache-control: public, no-cache, max-age=31362278
content-disposition: inline
content-type: image/jpeg
last-modified: Tue, 29 Nov 2022 20:28:10 UTC
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:25 GMT
age: 32735
x-served-by: cache-iad-kcgs7200107-IAD, cache-bma1665-BMA
x-cache: HIT, MISS
x-cache-hits: 429, 0
x-timer: S1669960225.138044,VS0,VE91
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1654
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/ka4i176oso.jsonp
151.101.194.110200 OK 1.7 kB URL HTTP/2 fast.wistia.com/embed/medias/ka4i176oso.jsonp
IP 151.101.194.110:0
File type ASCII text, with very long lines (5634)
Hash 48c09ecd9f011b9000704f1d78036f09
9ec389c5b371f474aae9b0fc8d7c7616b08fc831
961b6e23741e79d7a9323de9dd4802e3a4c532f94dfd92e44987f03802319a8a
GET /embed/medias/ka4i176oso.jsonp HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
content-type: application/javascript; charset=utf-8
etag: W/"c6d2cc274f7180f6c43a4b28a775f546"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: a2ccce9c0b07f9a6a963741c9afbed1b
x-runtime: 0.053857
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:25 GMT
age: 32735
x-served-by: cache-iad-kjyo7100169-IAD, cache-bma1665-BMA
x-cache: HIT, MISS
x-cache-hits: 425, 0
x-timer: S1669960225.140631,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1651
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 501bde146bfbba9c2fd0a04e3508f2e7
2494d81ca61944e6c244cf4c8ccf2593b4eece07
23cc59e9c304b35526b318df968171b7e47c6eca6eecab0eba34c9ff81617f45
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154024
Date: Fri, 02 Dec 2022 05:50:25 GMT
Etag: "63892f64-1d7"
Expires: Sun, 04 Dec 2022 00:37:29 GMT
Last-Modified: Thu, 01 Dec 2022 22:49:08 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TIxa9AGnoUGt5iMPCJuvYYSjooqHiFZX0_L1hMuakp6IxBydw5SG7g==
Age: 6502
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 501bde146bfbba9c2fd0a04e3508f2e7
2494d81ca61944e6c244cf4c8ccf2593b4eece07
23cc59e9c304b35526b318df968171b7e47c6eca6eecab0eba34c9ff81617f45
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149361
Date: Fri, 02 Dec 2022 05:50:25 GMT
Etag: "63892f64-1d7"
Expires: Sat, 03 Dec 2022 23:19:46 GMT
Last-Modified: Thu, 01 Dec 2022 22:49:08 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Dgmk-qUnDGYCOnZrPXJcM2ahN2P-bvGasgwFuk1veHUxn5kceXzJpA==
Age: 1838
clickintowealth.com/lp/tis/mail.png
149.28.224.6200 OK 367 B URL HTTP/2 clickintowealth.com/lp/tis/mail.png
IP 149.28.224.6:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c0c8f4e500584f58c9450d1024befb3
5a2bd7d7e5d38c1208faf815838775433bcad28c
deaa75adb2b7f3dfa59ef77649fd62372bbdfa7daa61b4c1db9d51c761df47cb
GET /lp/tis/mail.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: image/png
content-length: 367
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-16f"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4f8402ae66089d6785bd40f26457c4e5
9f7cfe1ae292585f1ff626bfc4c25b3c85a5c272
c264ca3d55fe3da8f53c3aecd65b7c9836f7c568b895fe45392980e686dcb981
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4694
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Last-Modified: Fri, 02 Dec 2022 04:32:11 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
clickintowealth.com/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
149.28.224.6200 OK 19 B URL HTTP/2 clickintowealth.com/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
IP 149.28.224.6:0
File type ASCII text, with no line terminators
Hash 8102dc9eee0565de28649497220d8d17
a32963be36656f3dd149892540138913bc88de6c
51ff2b4b46acab057eba32dc5fbd0bcf410f0ad2bb75d7a92b230bc627d930d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
content-length: 19
last-modified: Sun, 30 Oct 2022 21:43:00 GMT
etag: "635eefe4-13"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/closemodal.webp
149.28.224.6200 OK 672 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/closemodal.webp
IP 149.28.224.6:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/closemodal.webp HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: image/webp
content-length: 672
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-2a0"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/10dollarsqueeze-k.png
149.28.224.6200 OK 408 kB URL HTTP/2 clickintowealth.com/lp/fff/vid_files/10dollarsqueeze-k.png
IP 149.28.224.6:0
File type PNG image data, 998 x 404, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (408139 bytes)
Hash 2467afb1409fdf64c24837aa998199ad
910cef40e90d232ed5dd9c6e7fab3ae333987acc
a79c994ae8bff22635755684421b7bf7375deb8ef80d89d78373995381dfc3a1
GET /lp/fff/vid_files/10dollarsqueeze-k.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: image/png
content-length: 408139
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
etag: "60730591-63a4b"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4aac4497e4f34f3f3f681cae25d981c0
614b47be6e7f26f901fd09f337dc8e6536a2b7a7
92fb7ea7cb5404dad6f49e42788b2b01ecfc541aa8ff1bde526d6f7f794fb29f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1711
Cache-Control: max-age=119717
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Etag: "6388bc17-117"
Expires: Sat, 03 Dec 2022 15:05:42 GMT
Last-Modified: Thu, 01 Dec 2022 14:37:11 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css
149.28.224.6200 OK 20 kB URL HTTP/2 clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css
IP 149.28.224.6:0
Hash aeb1c83b15a799429d0e5ee4df8bc8d8
097178bf5c10c7bd487936f41ecc84451cac7abf
d759b8bfed79d0b31f2b310e5abe6482b27ba5f3e168e66ad8e856df333c0594
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; zabUserId=1669960223755zabu0.48022510753132863; _ga_Y04TL8NEE0=GS1.1.1669960223.1.0.1669960223.0.0.0; _ga=GA1.1.1103780602.1669960224
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Mon, 23 Aug 2021 13:01:30 GMT
vary: Accept-Encoding
etag: W/"61239c2a-18d3"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 18000, version 1.0\012- data
Hash 560995d7cd4dc2b997fe8a9ef9601982
d688e6d4db3d5ded8039208ec478049e971f4075
fcecb97c12786d7a9387a81e74e4179790fd84425c9c75be1aec3aed645bf6e2
GET /s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:54:44 GMT
expires: Wed, 29 Nov 2023 17:54:44 GMT
cache-control: public, max-age=31536000
age: 215741
last-modified: Tue, 26 Apr 2022 15:46:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
prism.app-us1.com/?a=801164511&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202
104.17.145.91200 OK 20 kB URL HTTP/2 prism.app-us1.com/?a=801164511&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202
IP 104.17.145.91:0
Hash 80ba570f1c2074459dab7d946324bec2
333bfedc26065d4c68e080627efd1df41e4369fa
8b5ad50059edcacbb24c21d3bb7f95f73cdad33e54e4586168a711d09e316dd5
GET /?a=801164511&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202 HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
cache-control: no-cache, private
set-cookie: prism_801164511=ed8bce22-0f85-49ab-866f-3aa519619be7; expires=Sun, 01-Jan-2023 05:50:25 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 44
x-powered-by: PHP/7.4.32
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7731c8f20c42b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
trackcmp.net/t_prism_sitemessages.php?trackid=801164511&prismid=ed8bce22-0f85-49ab-866f-3aa519619be7&url=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202
172.64.145.151200 OK 0 B URL HTTP/2 trackcmp.net/t_prism_sitemessages.php?trackid=801164511&prismid=ed8bce22-0f85-49ab-866f-3aa519619be7&url=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202
IP 172.64.145.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t_prism_sitemessages.php?trackid=801164511&prismid=ed8bce22-0f85-49ab-866f-3aa519619be7&url=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202 HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
x-powered-by: PHP/7.1.33
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7731c8f378b8b500-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v15/oMMgfZMQthOryQo9n22dcuvvDin1pK8aKteLpeZ5c0A.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v15/oMMgfZMQthOryQo9n22dcuvvDin1pK8aKteLpeZ5c0A.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10292, version 2.0\012- data
Hash f84cb1bf9be983133497000554605b4d
a86889a4bc039cca998fc0255a9bed58549f9c10
b6cb334272988052b287ab0af9b48c6cd1a53d2d685712a3941e90f4e8ba2e46
GET /s/roboto/v15/oMMgfZMQthOryQo9n22dcuvvDin1pK8aKteLpeZ5c0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:49:44 GMT
expires: Wed, 29 Nov 2023 15:49:44 GMT
cache-control: public, max-age=31536000
age: 223242
last-modified: Wed, 14 Jan 2015 22:48:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v8/zvCUQcxqeoKhyOlbifSAaevvDin1pK8aKteLpeZ5c0A.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v8/zvCUQcxqeoKhyOlbifSAaevvDin1pK8aKteLpeZ5c0A.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12528, version 0.-11141\012- data
Hash f819a5dc649d8c9e5b4a6df6e559e5dd
b88324a9300e0765db15476f8a5ea1b6b96f6bbb
065f670128971992053d4fa2620110d590f9d31af6a75bf4a100db809584db8d
GET /s/ubuntu/v8/zvCUQcxqeoKhyOlbifSAaevvDin1pK8aKteLpeZ5c0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 10:14:08 GMT
expires: Sun, 26 Nov 2023 10:14:08 GMT
cache-control: public, max-age=31536000
age: 502578
last-modified: Wed, 26 Aug 2015 00:53:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css
149.28.224.6200 OK 3.1 kB URL HTTP/2 clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css
IP 149.28.224.6:0
Hash 0be0917a6b0c9a91dcd279cb88bbdfcc
d6109484c48846917183e3a78e5a260a3490e13a
738e730328bc9ee274fa0a5044dd006b8938a77c17fb9b2bc0bd97c18950fd8d
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Mon, 23 Aug 2021 13:01:30 GMT
vary: Accept-Encoding
etag: W/"61239c2a-6869"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4128
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:50:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4128
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:50:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4128
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:50:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4128
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:50:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yQ2Oc2viJ7EoRW4QSMG30tsGK73zxYQsXKKcWP3vleI0CTBVRfB1Fg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:31:16 GMT
age: 26350
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02EF3QEVKmEB2ikbGk9gzQq7_VMi00ufHUNRFTL8MpwJKaXQwdT8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:42:27 GMT
age: 7679
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FhCtGsjgnq83-zRNBH-y9BHUh2IRaN0ahO-BCUw7bTWU8jAanBqdlA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:35 GMT
age: 28611
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58a28fc1cbcacdb07b3ca175281982b5
9bc47ee49fc070d0997e49a719bd9758685ad583
d3bfcf749c4652cb29f7c82a5d7ba940bd607f9060e49c1c40a112eb3e625bd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6564
x-amzn-requestid: e2875cf3-3915-43a5-a724-4de2ca03de56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepHOiIAMFTFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-5f7e2a3f609d54a609a12670;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mwGAEu-gPXY5Opwd972VbBA6l33dNk7bPFSyZmciaplQKj2ZuTkQSg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 29739
etag: "9bc47ee49fc070d0997e49a719bd9758685ad583"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/css/dist/block-library/style.min.css
149.28.224.6200 OK 15 kB URL HTTP/2 clickintowealth.com/wp-includes/css/dist/block-library/style.min.css
IP 149.28.224.6:0
Hash c54c4bb471bdab1b20b0615c61b8373b
9a915a5a639a719181f95d0e29f040052b793b9c
8a071b53e543333d8832cd00855316b9c7e00202cee493060b95b402ed36fbea
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-17265"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 28733
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/themes/astra/assets/css/minified/style.min.css
149.28.224.6200 OK 14 kB URL HTTP/2 clickintowealth.com/wp-content/themes/astra/assets/css/minified/style.min.css
IP 149.28.224.6:0
File type ASCII text, with very long lines (62977)
Hash e5ab53bdae15a55d6fed34b3bc2e0561
39b132581c0de9b1fdb50cba5a5e7bcafac37c00
c2fac2846132467e54deaa78aeebb5f878043d70da79f1ab62b25d00c2c1a9ee
GET /wp-content/themes/astra/assets/css/minified/style.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Mon, 23 Aug 2021 13:01:30 GMT
vary: Accept-Encoding
etag: W/"61239c2a-1656b"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165.js
151.139.128.10301 Moved Permanently 0 B URL HTTP/2 cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165.js
IP 151.139.128.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 02 Dec 2022 05:50:26 GMT
accept-ranges: bytes
content-length: 0
location: https://cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165_eu.js
cache-control: max-age=86400
x-hw: 1669960226.cds236.sk1.hn,1669960226.cds242.sk1.c
x-hw-loc: https://cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165.js
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 04:41:08 GMT
expires: Fri, 02 Dec 2022 06:41:08 GMT
cache-control: public, max-age=7200
age: 4158
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=18BFF93CDEEE6FC515FAEB52DF1B6E10; domain=.bing.com; expires=Wed, 27-Dec-2023 05:50:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F249A28C919B4D589695872A1AA2ACB0 Ref B: OSL30EDGE0111 Ref C: 2022-12-02T05:50:26Z
date: Fri, 02 Dec 2022 05:50:25 GMT
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-192x192.png
149.28.224.6200 OK 8.5 kB URL HTTP/2 clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-192x192.png
IP 149.28.224.6:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash d7f7677d661ac8b094c254067f63db07
3cb69c0942da1fb90bd0078203c04478519a333a
5da2a23485b9751e98f114f340b54243387900305f2eef0b051e91f22bd13cd1
GET /wp-content/uploads/2022/04/cropped-Logo-Gold-192x192.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; zabUserId=1669960223755zabu0.48022510753132863; _ga_Y04TL8NEE0=GS1.1.1669960223.1.0.1669960223.0.0.0; _ga=GA1.1.1103780602.1669960224; prism_801164511=ed8bce22-0f85-49ab-866f-3aa519619be7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:26 GMT
content-type: image/png
content-length: 8529
last-modified: Wed, 20 Apr 2022 20:41:58 GMT
etag: "62607016-2151"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png
149.28.224.6200 OK 839 B URL HTTP/2 clickintowealth.com/wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png
IP 149.28.224.6:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 32b3bb2ffff52dcd2c56632ca795011a
cb3b2b0590bf3699615d8e3596207c361932b6fc
27501a6dc93af8110a956a04d36f6e652fd7fa4c848715e3caa143ed5b891812
GET /wp-content/uploads/2022/04/cropped-Logo-Gold-32x32.png HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; zabUserId=1669960223755zabu0.48022510753132863; _ga_Y04TL8NEE0=GS1.1.1669960223.1.0.1669960223.0.0.0; _ga=GA1.1.1103780602.1669960224; prism_801164511=ed8bce22-0f85-49ab-866f-3aa519619be7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:26 GMT
content-type: image/png
content-length: 839
last-modified: Wed, 20 Apr 2022 20:41:59 GMT
etag: "62607017-347"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash e3882509dcf28cd7b99c4fee6d4b1089
5661302ab1d5ef3d38f3dba1c370a99be3824e8a
55b7c973127ea0b68fbda8871696dc0dc756ba25f10fbac6351f97c89d75201c
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Dec 2022 05:50:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Dec 2022 20:30:52 GMT
Expires: Fri, 02 Dec 2022 20:30:52 GMT
ETag: "5661302ab1d5ef3d38f3dba1c370a99be3824e8a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.starfieldtech.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash e3882509dcf28cd7b99c4fee6d4b1089
5661302ab1d5ef3d38f3dba1c370a99be3824e8a
55b7c973127ea0b68fbda8871696dc0dc756ba25f10fbac6351f97c89d75201c
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Dec 2022 05:50:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Dec 2022 20:30:52 GMT
Expires: Fri, 02 Dec 2022 20:30:52 GMT
ETag: "5661302ab1d5ef3d38f3dba1c370a99be3824e8a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
clickintowealth.com/?wc-ajax=get_refreshed_fragments&elementor_page_id=10651
149.28.224.6200 OK 506 B URL HTTP/2 clickintowealth.com/?wc-ajax=get_refreshed_fragments&elementor_page_id=10651
IP 149.28.224.6:0
File type JSON data\012- , ASCII text, with very long lines (1282), with no line terminators
Hash a43e73f89dc40ae80cb42ef20bb02f19
7a62730dc8eb101446951b4a1ecf8d8e16560511
8e17ccc2962715aa592cbe779c047ac6cd322ecc76cb49915e6a71849d95abd9
POST /?wc-ajax=get_refreshed_fragments&elementor_page_id=10651 HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; zabUserId=1669960223755zabu0.48022510753132863; _ga_Y04TL8NEE0=GS1.1.1669960223.1.0.1669960223.0.0.0; _ga=GA1.1.1103780602.1669960224; prism_801164511=ed8bce22-0f85-49ab-866f-3aa519619be7; zscd2435290e41a4addb5098539d1a3da64=1669960224497zsc0.48015794159783476; zps-tgr-dts=sc%3D1-expAppOnNewSession%3D%5B%5D-pc%3D1-sesst%3D1669960224498; zft-sdc=isef%3Dtrue-isfr%3Dtrue-src%3Ddirect
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:26 GMT
content-type: application/json; charset=UTF-8
content-length: 506
pragma: no-cache
access-control-allow-origin: https://clickintowealth.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
permissions-policy: vr=(); xr-spatial-tracking=('none');
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/2022/03/BGBlue.jpg
149.28.224.6200 OK 31 kB URL HTTP/2 clickintowealth.com/wp-content/uploads/2022/03/BGBlue.jpg
IP 149.28.224.6:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash dea9b26e4a82309db23b39d1b4c17f20
ec92184179e7bb2ccfd20f7a872d22f233a00e61
ee411a63aa37c6e258aa6d9a890a8493b39e22ba40308df19a3b0884c1c677fe
GET /wp-content/uploads/2022/03/BGBlue.jpg HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/wp-content/uploads/elementor/css/post-10651.css
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2; zabUserId=1669960223755zabu0.48022510753132863; _ga_Y04TL8NEE0=GS1.1.1669960223.1.0.1669960223.0.0.0; _ga=GA1.1.1103780602.1669960224; prism_801164511=ed8bce22-0f85-49ab-866f-3aa519619be7; zscd2435290e41a4addb5098539d1a3da64=1669960224497zsc0.48015794159783476; zps-tgr-dts=sc%3D1-expAppOnNewSession%3D%5B%5D-pc%3D1-sesst%3D1669960224498; zft-sdc=isef%3Dtrue-isfr%3Dtrue-src%3Ddirect; _vwo_uuid_v2=DA210D41F49833CCF2A8DA7019A6C1E0C|5872803e1f669dd4ae0a24816f565cfb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:26 GMT
content-type: image/jpeg
content-length: 31125
last-modified: Tue, 01 Mar 2022 14:18:28 GMT
etag: "621e2b34-7995"
cache-control: public, max-age=648000
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165_eu.js
151.139.128.10200 OK 56 kB URL HTTP/2 cdn.mouseflow.com/projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165_eu.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (59318), with CRLF line terminators
Hash 32f5da1000d547e6f8bc5c9bd6ff0c45
b8522ef12cc707f16dd55d950b5fe760a30adb6f
3f904649194e89aacc1a1bf05dda749a0c6b8fb7743d59f5c29241ded2a8bda4
GET /projects/602d8d89-2bf7-48c1-ac80-d67ac0ed4165_eu.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickintowealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:26 GMT
cache-control: max-age=86400
content-encoding: gzip
content-length: 55780
content-type: application/javascript; charset=utf-8
last-modified: Sat, 19 Nov 2022 06:50:02 GMT
accept-ranges: bytes
etag: "e93e1826e3fbd81:0"
server:
x-hw: 1669960226.cds236.sk1.hn,1669960226.cds208.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=17555999&Ver=2&mid=708ed70b-6936-4ae5-b9dd-c1c7cbcd3bd0&sid=375d4d10720511edbdf3055317db700a&vid=375d3cc0720511ed94443fc45af2d710&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vid%20FS%20V3%20(wis)%20%E2%80%93%20Click%20Into%20Wealth&p=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&r=<=2665&evt=pageLoad&sv=1&rn=59683
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=17555999&Ver=2&mid=708ed70b-6936-4ae5-b9dd-c1c7cbcd3bd0&sid=375d4d10720511edbdf3055317db700a&vid=375d3cc0720511ed94443fc45af2d710&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vid%20FS%20V3%20(wis)%20%E2%80%93%20Click%20Into%20Wealth&p=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&r=<=2665&evt=pageLoad&sv=1&rn=59683
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=17555999&Ver=2&mid=708ed70b-6936-4ae5-b9dd-c1c7cbcd3bd0&sid=375d4d10720511edbdf3055317db700a&vid=375d3cc0720511ed94443fc45af2d710&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vid%20FS%20V3%20(wis)%20%E2%80%93%20Click%20Into%20Wealth&p=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&r=<=2665&evt=pageLoad&sv=1&rn=59683 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=38DF57ADD45C6A46266445C3D5A96B0D; domain=.bing.com; expires=Wed, 27-Dec-2023 05:50:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 35BF83D711AB41C2A9BBB10DD505D309 Ref B: OSL30EDGE0111 Ref C: 2022-12-02T05:50:26Z
date: Fri, 02 Dec 2022 05:50:26 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/17555999.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/17555999.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/17555999.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=259FEC449A3C61FB0DACFE2A9BC96003; domain=.bing.com; expires=Wed, 27-Dec-2023 05:50:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 01DE7B1CEF164B8AB0118A78AD0618D1 Ref B: OSL30EDGE0111 Ref C: 2022-12-02T05:50:26Z
date: Fri, 02 Dec 2022 05:50:26 GMT
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/playPauseLoadingControl.js
151.101.194.110200 OK 16 kB URL HTTP/2 fast.wistia.com/assets/external/playPauseLoadingControl.js
IP 151.101.194.110:0
File type ASCII text, with very long lines (60125), with no line terminators
Hash 7264d7b49eb6dc6eef062a9511cfd32e
d6724f77d675d740c895a283e4b8e3dbdd1719d5
6cca15bd7bbece1644b8b31db564da9659fa85f73ea22b814cb831cf0113a4e3
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "63867024-3e59"
last-modified: Tue, 29 Nov 2022 20:48:36 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:26 GMT
age: 1499
x-served-by: cache-iad-kcgs7200113-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 62, 21
x-timer: S1669960227.759079,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 15961
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 08a1a290608282a869757a88184cabee
c1d1f8b4fa0b97ce1a7688bd60caf75e618e9094
6b92880972ae8e28d68969aa8a246c5a4999b26543dccb8d1c059e791b9fc02b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 05:50:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 02:49:13 GMT
Expires: Tue, 06 Dec 2022 02:49:12 GMT
Etag: "c1d1f8b4fa0b97ce1a7688bd60caf75e618e9094"
Cache-Control: max-age=334125,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7731c8f849efb511-OSL
fast.wistia.com/assets/external/engines/hls_video.js
151.101.194.110200 OK 114 kB URL HTTP/2 fast.wistia.com/assets/external/engines/hls_video.js
IP 151.101.194.110:0
File type ASCII text, with very long lines (65469)
Size 114 kB (114373 bytes)
Hash ddbf94a47f16fcd8a99d8c45572ac852
fabe447aee7408e90c4fcfc1de127d98987b8ca0
cb2cba64e3b0a0797031ca64b918bed7c1c58b6f3b40d92b4f45f93b3ea55109
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "63867024-1bec5"
last-modified: Tue, 29 Nov 2022 20:48:36 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:26 GMT
age: 1756
x-served-by: cache-iad-kiad7000086-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 32, 14
x-timer: S1669960227.808115,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 114373
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-126759577-4&cid=1103780602.1669960224&jid=1365028119&gjid=36705248&_gid=337496111.1669960225&_u=YADAAUAAAAAAACAAI~&z=930890562
108.177.14.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-126759577-4&cid=1103780602.1669960224&jid=1365028119&gjid=36705248&_gid=337496111.1669960225&_u=YADAAUAAAAAAACAAI~&z=930890562
IP 108.177.14.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-126759577-4&cid=1103780602.1669960224&jid=1365028119&gjid=36705248&_gid=337496111.1669960225&_u=YADAAUAAAAAAACAAI~&z=930890562 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://clickintowealth.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 05:50:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.com/assets/images/blank.gif
151.101.194.110200 OK 1.2 kB URL HTTP/2 fast.wistia.com/assets/images/blank.gif
IP 151.101.194.110:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=315360000, public
content-type: image/gif
etag: "6389296a-4be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Dec 2022 22:23:38 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:26 GMT
age: 26700
x-served-by: cache-iad-kiad7000052-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 48, 182
x-timer: S1669960227.987867,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1214
X-Firefox-Spdy: h2
pagesense-collect.zoho.com/psimg.gif?raw=%7B%22vrd%22%3A%5B%7B%22a%22%3A%22whateversfinellc%22%2C%22p%22%3A%22d2435290e41a4addb5098539d1a3da64%22%7D%5D%2C%22urd%22%3A%7B%22bv%22%3A%22Firefox%22%2C%22lv%22%3A%22en-US%22%2C%22ov%22%3A%22Windows%22%2C%22dv%22%3A%22desktop%22%2C%22mdv%22%3A%22UNKNOWN%22%2C%22rv%22%3A%22%22%2C%22frv%22%3A%22%22%2C%22fcv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202%22%2C%22cv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22up%22%3A%5B%7B%22pn%22%3A%22AFFID%22%2C%22pv%22%3A%221006%22%7D%2C%7B%22pn%22%3A%22C1%22%2C%22pv%22%3A%223913%22%7D%2C%7B%22pn%22%3A%22CID%22%2C%22pv%22%3A%2215%22%7D%2C%7B%22pn%22%3A%22tr%22%2C%22pv%22%3A%2210235203252120221202%22%7D%5D%2C%22tv%22%3A%22DIRECT%22%2C%22srv%22%3A%221280x1024%22%2C%22f%22%3A%221669960223755zabu0.48022510753132863%22%2C%22d%22%3A%221669960224495zabv0.6282700250262848%22%2C%22sid%22%3A%221669960224497zsc0.48015794159783476%22%2C%22ts%22%3A0%2C%22n%22%3Atrue%2C%22lp%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22lpr%22%3A%22%22%2C%22fsrc%22%3A%22direct%22%2C%22fmdm%22%3A%22(none)%22%2C%22fchn%22%3A%22direct%22%2C%22ifr%22%3Atrue%2C%22isef%22%3Atrue%2C%22ht%22%3A%22pageview%22%2C%22iht%22%3Atrue%2C%22src%22%3A%22direct%22%2C%22mdm%22%3A%22(none)%22%2C%22chn%22%3A%22direct%22%7D%7D&type=21&domainname=whateversfinellc
136.143.191.190200 OK 42 B URL HTTP/2 pagesense-collect.zoho.com/psimg.gif?raw=%7B%22vrd%22%3A%5B%7B%22a%22%3A%22whateversfinellc%22%2C%22p%22%3A%22d2435290e41a4addb5098539d1a3da64%22%7D%5D%2C%22urd%22%3A%7B%22bv%22%3A%22Firefox%22%2C%22lv%22%3A%22en-US%22%2C%22ov%22%3A%22Windows%22%2C%22dv%22%3A%22desktop%22%2C%22mdv%22%3A%22UNKNOWN%22%2C%22rv%22%3A%22%22%2C%22frv%22%3A%22%22%2C%22fcv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202%22%2C%22cv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22up%22%3A%5B%7B%22pn%22%3A%22AFFID%22%2C%22pv%22%3A%221006%22%7D%2C%7B%22pn%22%3A%22C1%22%2C%22pv%22%3A%223913%22%7D%2C%7B%22pn%22%3A%22CID%22%2C%22pv%22%3A%2215%22%7D%2C%7B%22pn%22%3A%22tr%22%2C%22pv%22%3A%2210235203252120221202%22%7D%5D%2C%22tv%22%3A%22DIRECT%22%2C%22srv%22%3A%221280x1024%22%2C%22f%22%3A%221669960223755zabu0.48022510753132863%22%2C%22d%22%3A%221669960224495zabv0.6282700250262848%22%2C%22sid%22%3A%221669960224497zsc0.48015794159783476%22%2C%22ts%22%3A0%2C%22n%22%3Atrue%2C%22lp%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22lpr%22%3A%22%22%2C%22fsrc%22%3A%22direct%22%2C%22fmdm%22%3A%22(none)%22%2C%22fchn%22%3A%22direct%22%2C%22ifr%22%3Atrue%2C%22isef%22%3Atrue%2C%22ht%22%3A%22pageview%22%2C%22iht%22%3Atrue%2C%22src%22%3A%22direct%22%2C%22mdm%22%3A%22(none)%22%2C%22chn%22%3A%22direct%22%7D%7D&type=21&domainname=whateversfinellc
IP 136.143.191.190:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /psimg.gif?raw=%7B%22vrd%22%3A%5B%7B%22a%22%3A%22whateversfinellc%22%2C%22p%22%3A%22d2435290e41a4addb5098539d1a3da64%22%7D%5D%2C%22urd%22%3A%7B%22bv%22%3A%22Firefox%22%2C%22lv%22%3A%22en-US%22%2C%22ov%22%3A%22Windows%22%2C%22dv%22%3A%22desktop%22%2C%22mdv%22%3A%22UNKNOWN%22%2C%22rv%22%3A%22%22%2C%22frv%22%3A%22%22%2C%22fcv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202%22%2C%22cv%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22up%22%3A%5B%7B%22pn%22%3A%22AFFID%22%2C%22pv%22%3A%221006%22%7D%2C%7B%22pn%22%3A%22C1%22%2C%22pv%22%3A%223913%22%7D%2C%7B%22pn%22%3A%22CID%22%2C%22pv%22%3A%2215%22%7D%2C%7B%22pn%22%3A%22tr%22%2C%22pv%22%3A%2210235203252120221202%22%7D%5D%2C%22tv%22%3A%22DIRECT%22%2C%22srv%22%3A%221280x1024%22%2C%22f%22%3A%221669960223755zabu0.48022510753132863%22%2C%22d%22%3A%221669960224495zabv0.6282700250262848%22%2C%22sid%22%3A%221669960224497zsc0.48015794159783476%22%2C%22ts%22%3A0%2C%22n%22%3Atrue%2C%22lp%22%3A%22https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%22%2C%22lpr%22%3A%22%22%2C%22fsrc%22%3A%22direct%22%2C%22fmdm%22%3A%22(none)%22%2C%22fchn%22%3A%22direct%22%2C%22ifr%22%3Atrue%2C%22isef%22%3Atrue%2C%22ht%22%3A%22pageview%22%2C%22iht%22%3Atrue%2C%22src%22%3A%22direct%22%2C%22mdm%22%3A%22(none)%22%2C%22chn%22%3A%22direct%22%7D%7D&type=21&domainname=whateversfinellc HTTP/1.1
Host: pagesense-collect.zoho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: ZGS
date: Fri, 02 Dec 2022 05:50:26 GMT
content-type: image/gif;charset=UTF-8
content-length: 42
x-content-type-options: nosniff
x-xss-protection: 1
set-cookie: 0d269e8747=110ebc59367ae5d20dda46fe8c47770d; Path=/
zfccn=d8d17cd7-cfbe-4063-8b9c-2a79d54b2a8e;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=d8d17cd7-cfbe-4063-8b9c-2a79d54b2a8e;path=/;SameSite=Strict;Secure;priority=high
x-frame-options: DENY
content-disposition: attachment; filename="psimg.gif"
access-control-allow-origin: *
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/ka4i176oso.m3u8
151.101.194.110200 OK 934 B URL HTTP/2 fast.wistia.com/embed/medias/ka4i176oso.m3u8
IP 151.101.194.110:0
Hash 76b719459fff841a068e07779ea72617
42c04e0cbd592a64e44eadcd35cf881d2b4df1a2
7e30ade169bda8fce4f930ff659b83a2d305e05726a2a4b35ed936c5ddea95c3
GET /embed/medias/ka4i176oso.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"7e30ade169bda8fce4f930ff659b83a2"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 0e11ee233c0079a103da0f0e1d6c9380
x-runtime: 0.033341
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:27 GMT
age: 32704
x-served-by: cache-iad-kcgs7200089-IAD, cache-bma1665-BMA
x-cache: HIT, MISS
x-cache-hits: 4757, 0
x-timer: S1669960227.983295,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 934
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3f76eb48c947a11a2bdebd1ae8b3d8ab
22e060d1dc1e192e3a85b6949c18c51d984cca2e
91675148556d19d51e585f960c3e6296b75a255696493383efff343d1034b9a0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 05:50:27 GMT
Last-Modified: Fri, 02 Dec 2022 04:10:56 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nEQoXnN4GlWbJkqQKrd0xwStl487USZRo2q1w6yn-feMVSaiRLVEkQ==
Age: 5972
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1516
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Dec 2022 05:50:27 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/allIntegrations.js
151.101.194.110200 OK 5.6 kB URL HTTP/2 fast.wistia.com/assets/external/allIntegrations.js
IP 151.101.194.110:0
File type ASCII text, with very long lines (21637), with no line terminators
Hash 98d8f1350f159ef9d630464f2677623c
ee33382759ec18abebe452fb065599627d729114
0bcc59bc6540d08234fceefb99483c915ced9406d7b30173817cb18553c462b3
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "63867024-15f7"
last-modified: Tue, 29 Nov 2022 20:48:36 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:27 GMT
age: 1501
x-served-by: cache-iad-kiad7000146-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 9
x-timer: S1669960228.774942,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 5623
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8
23.36.76.200200 OK 44 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash f10c1e077cf3b441a0f5a6a18775c3e4
39f3aef0a342a47f92d85922ee83310ef563aa82
5753ed68dc80d3e2fddbb237dcc83bc194e41308af2c75a2ff1a3cb48e0ef04d
GET /deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 43678
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5b5a2eca16c0f642321056b33b8de0d398ca3f0e-hls-segment a7c24e0afda8619d4e32d587369c2b9a2c30db09
Accept-Ranges: bytes
Cache-Control: max-age=31330306
Expires: Wed, 29 Nov 2023 20:42:13 GMT
Date: Fri, 02 Dec 2022 05:50:27 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embedwistia-a.akamaihd.net/deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8/seg-1-v1-a1.ts
23.36.76.200200 OK 232 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8/seg-1-v1-a1.ts
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 232 kB (231992 bytes)
Hash d62d6a7ac809e857ccaa3f8a1716b816
00156f5c40d00da43d5dd1f5012310dc2f436ae5
a612a2fa819e7db802809609790b1022499bcb24cfb2ada992ed51cb141a0de9
GET /deliveries/5b5a2eca16c0f642321056b33b8de0d398ca3f0e.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 231992
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5b5a2eca16c0f642321056b33b8de0d398ca3f0e-hls-segment a7c24e0afda8619d4e32d587369c2b9a2c30db09
Accept-Ranges: bytes
Cache-Control: max-age=31382398
Expires: Thu, 30 Nov 2023 11:10:25 GMT
Date: Fri, 02 Dec 2022 05:50:27 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
pipedream.wistia.com/mput?topic=metrics
34.231.199.151200 OK 2 B URL HTTP/2 pipedream.wistia.com/mput?topic=metrics
IP 34.231.199.151:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 1514
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:28 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8
23.36.76.200200 OK 44 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash 13f4896445158ebcc17911dc5468b742
269a110f4e0df8727e240c664b0c78a0d21df89b
936f57d05b36e204cc50069e187834eb253024cbdaea148e6a369d7466dfe958
GET /deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 43678
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 232b37a242135d97c6a942f3a662e9a696e813ca-hls-segment a7c24e0afda8619d4e32d587369c2b9a2c30db09
Accept-Ranges: bytes
Cache-Control: max-age=31329887
Expires: Wed, 29 Nov 2023 20:35:15 GMT
Date: Fri, 02 Dec 2022 05:50:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embed-ssl.wistia.com/deliveries/2e6fe1bc39d01112c0833292437e51280b8f8439.webp?image_crop_resized=1280x720
151.101.2.133200 OK 21 kB URL HTTP/2 embed-ssl.wistia.com/deliveries/2e6fe1bc39d01112c0833292437e51280b8f8439.webp?image_crop_resized=1280x720
IP 151.101.2.133:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 71dc9860bc64ffc4700da1eb271a7187
771f0913e2e543099a75a8c7b6c5aacd9c1b8ddd
8d185fbdbc5c7816bfbf815e1892e1930ed6148db3a2fd4d42050e274d0c9593
GET /deliveries/2e6fe1bc39d01112c0833292437e51280b8f8439.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 2e6fe1bc39d01112c0833292437e51280b8f8439
last-modified: Tue, 29 Nov 2022 20:28:10 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:50:28 GMT
age: 206379
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000032-IAD, cache-bma1644-BMA
x-cache: HIT, MISS
x-cache-hits: 17, 0
x-timer: S1669960228.199953,VS0,VE91
content-length: 21396
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8/seg-1-v1-a1.ts
23.36.76.200200 OK 166 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8/seg-1-v1-a1.ts
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 166 kB (165816 bytes)
Hash 79d777c1a59865f51e7326300d8ed90f
bd13a0abaafbf5a2bfd76483c36489d904c32948
3d45f35240d52f12710c83b949b242ec369a46d8d01bd061d3a6b6ab467624bf
GET /deliveries/232b37a242135d97c6a942f3a662e9a696e813ca.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 165816
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 232b37a242135d97c6a942f3a662e9a696e813ca-hls-segment 575be076c6a7044102ef1f308349eab3ff93cb5d
Accept-Ranges: bytes
Cache-Control: max-age=31424482
Expires: Thu, 30 Nov 2023 22:51:50 GMT
Date: Fri, 02 Dec 2022 05:50:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
pipedream.wistia.com/mput?topic=metrics
34.231.199.151200 OK 2 B URL HTTP/2 pipedream.wistia.com/mput?topic=metrics
IP 34.231.199.151:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 5269
Origin: https://clickintowealth.com
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:28 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css
IP 149.28.224.6:0
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-39996"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css
IP 149.28.224.6:0
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 16:42:25 GMT
vary: Accept-Encoding
etag: W/"633327f1-308"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css
IP 149.28.224.6:0
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-e7d0"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css
IP 149.28.224.6:0
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-684e"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/wp-flipclock/inc/js/flipclock.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/wp-flipclock/inc/js/flipclock.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-flipclock/inc/js/flipclock.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-5273"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/lander.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/lander.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /lp/fff/vid_files/lander.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-f58e1"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/js/frontend.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/js/frontend.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-9e41"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
dev.visualwebsiteoptimizer.com/j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&f=1&r=0.009983295080712162
34.96.102.137200 OK 0 B URL HTTP/2 dev.visualwebsiteoptimizer.com/j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&f=1&r=0.009983295080712162
IP 34.96.102.137:0
GET /j.php?a=301780&u=https%3A%2F%2Fclickintowealth.com%2Fvid-fs-v3%2F%3FAFFID%3D1006%26C1%3D3913%26CID%3D15%26tr%3D10235203252120221202&f=1&r=0.009983295080712162 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/css/classic-themes.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/css/classic-themes.min.css
IP 149.28.224.6:0
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-d9"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/wp-flipclock/inc/css/added.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/wp-flipclock/inc/css/added.css
IP 149.28.224.6:0
GET /wp-content/plugins/wp-flipclock/inc/css/added.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-412"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css
IP 149.28.224.6:0
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Wed, 01 Jun 2022 20:31:18 GMT
vary: Accept-Encoding
etag: W/"6297cc96-2c8d"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css
IP 149.28.224.6:0
GET /wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Wed, 10 Aug 2022 18:12:17 GMT
vary: Accept-Encoding
etag: W/"62f3f501-21ca"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/jquery/jquery.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/jquery/jquery.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-15e54"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Mon, 30 May 2022 16:18:12 GMT
vary: Accept-Encoding
etag: W/"6294ee44-194b"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-459f"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-85b"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-b7a"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2022 20:31:18 GMT
vary: Accept-Encoding
etag: W/"6297cc96-1429"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2022 20:31:18 GMT
vary: Accept-Encoding
etag: W/"6297cc96-522a"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Aug 2022 18:12:17 GMT
vary: Accept-Encoding
etag: W/"62f3f501-bada"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/themes/astra/assets/js/minified/style.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/themes/astra/assets/js/minified/style.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/style.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Mon, 23 Aug 2021 13:01:30 GMT
vary: Accept-Encoding
etag: W/"61239c2a-23db"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 21:43:00 GMT
vary: Accept-Encoding
etag: W/"635eefe4-11c"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/elementor/css/post-10651.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/uploads/elementor/css/post-10651.css
IP 149.28.224.6:0
GET /wp-content/uploads/elementor/css/post-10651.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 29 Nov 2022 20:43:08 GMT
vary: Accept-Encoding
etag: W/"63866edc-29e6"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css
IP 149.28.224.6:0
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 16:42:25 GMT
vary: Accept-Encoding
etag: W/"633327f1-127a4"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/lp/fff/vid_files/lander.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/lp/fff/vid_files/lander.css
IP 149.28.224.6:0
GET /lp/fff/vid_files/lander.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-6a4a2"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.pagesense.io/js/hatterydesigns/9859180e3b804f8cbddef0f0f1f3b872.js
54.230.111.22403 Forbidden 0 B URL HTTP/2 cdn.pagesense.io/js/hatterydesigns/9859180e3b804f8cbddef0f0f1f3b872.js
IP 54.230.111.22:0
GET /js/hatterydesigns/9859180e3b804f8cbddef0f0f1f3b872.js HTTP/1.1
Host: cdn.pagesense.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Fri, 02 Dec 2022 05:50:25 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -vUpmJy-hJnoxSqKo_AZuLgs_WatCQ3ru__5gNN41NmL0dI0qURUqA==
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/dist/hooks.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/dist/hooks.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Mon, 30 May 2022 16:18:12 GMT
vary: Accept-Encoding
etag: W/"6294ee44-132e"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-bd5"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-2fa6"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2022 20:31:18 GMT
vary: Accept-Encoding
etag: W/"6297cc96-612f"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/elementor/css/post-753.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/uploads/elementor/css/post-753.css
IP 149.28.224.6:0
GET /wp-content/uploads/elementor/css/post-753.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 13:46:46 GMT
vary: Accept-Encoding
etag: W/"6332fec6-698"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-3acf"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
104.17.145.91200 OK 0 B URL HTTP/2 diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP 104.17.145.91:0
GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 228
server: cloudflare
cf-ray: 7731c8f11ae7b511-OSL
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-2521"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
IP 149.28.224.6:0
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-28c3"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-135d"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-80a1"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/dist/i18n.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/dist/i18n.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-27f6"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css
IP 149.28.224.6:0
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Mon, 23 Aug 2021 13:01:30 GMT
vary: Accept-Encoding
etag: W/"61239c2a-1a4d9"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-includes/js/jquery/ui/core.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-includes/js/jquery/ui/core.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:37:15 GMT
vary: Accept-Encoding
etag: W/"636cc64b-53c0"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Serif%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Serif%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto
IP 142.250.74.106:0
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Serif%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 05:50:25 GMT
date: Fri, 02 Dec 2022 05:50:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/wp-flipclock/inc/css/flipclock.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/wp-flipclock/inc/css/flipclock.css
IP 149.28.224.6:0
GET /wp-content/plugins/wp-flipclock/inc/css/flipclock.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Sun, 11 Apr 2021 14:20:01 GMT
vary: Accept-Encoding
etag: W/"60730591-25d5"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css
IP 149.28.224.6:0
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 13:46:30 GMT
vary: Accept-Encoding
etag: W/"6332feb6-1a788"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/uploads/elementor/css/global.css
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/uploads/elementor/css/global.css
IP 149.28.224.6:0
GET /wp-content/uploads/elementor/css/global.css HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 13:46:46 GMT
vary: Accept-Encoding
etag: W/"6332fec6-2503"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.pagesense.io/js/whateversfinellc/d2435290e41a4addb5098539d1a3da64.js
54.230.111.22200 OK 0 B URL HTTP/2 cdn.pagesense.io/js/whateversfinellc/d2435290e41a4addb5098539d1a3da64.js
IP 54.230.111.22:0
GET /js/whateversfinellc/d2435290e41a4addb5098539d1a3da64.js HTTP/1.1
Host: cdn.pagesense.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 04:40:22 GMT
x-amz-meta-cache-control: max-age=0
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Dec 2022 04:15:44 GMT
cache-control: max-age=0
etag: W/"d7e2599ce2a45790f1364c064b5b32c1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _kPHnKIkocBIAqNayN-ai8wJ3N1AihBWClUz2YMibKYUll8_rdAr8A==
age: 5682
X-Firefox-Spdy: h2
clickintowealth.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js
149.28.224.6200 OK 0 B URL HTTP/2 clickintowealth.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js
IP 149.28.224.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: clickintowealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clickintowealth.com/vid-fs-v3/?AFFID=1006&C1=3913&CID=15&tr=10235203252120221202
Cookie: PHPSESSID=ar413c58uiv9rjvf63pcnq1ft2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:50:25 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 09:29:42 GMT
vary: Accept-Encoding
etag: W/"636cc486-72a"
cache-control: public, max-age=648000
content-encoding: gzip
X-Firefox-Spdy: h2