Report - terminal.cheap-flight-search.com/ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49

Report Overview

Submitted URL
terminal.cheap-flight-search.com/ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49
IP
86.48.26.120
ASN
#16095 Sentia Denmark A/S
Submitted
2023-05-29 13:21:23
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
terminal.cheap-flight-search.com	unknown	2007-10-17	2023-03-04	2023-05-28	553 B	731 B	86.48.26.120
fast.wistia.com	5153	2007-03-18	2012-07-04	2023-05-28	3.2 kB	275 kB	151.101.66.110
bat.bing.com	387	1996-01-29	2014-04-08	2023-05-28	1.6 kB	14 kB	13.107.21.200
embed-cloudfront.wistia.com	unknown	2007-03-18	2022-11-08	2023-05-28	5.2 kB	7.5 MB	54.230.111.63
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-05-28	1.3 kB	388 kB	142.250.74.40
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-28	526 B	18 kB	142.250.74.106
distillery.wistia.com	6708	2007-03-18	2012-09-30	2023-05-28	481 B	164 B	3.220.126.149
buygoods.com	125874	2003-06-23	2015-10-28	2023-05-28	608 B	463 B	172.66.43.115
www.googleoptimize.com	1604	2019-04-06	2019-07-16	2023-05-28	429 B	121 kB	142.250.74.78
optassets.ontraport.com	92263	2010-06-07	2017-01-29	2023-05-28	415 B	8.5 kB	104.16.20.19
tracking.buygoods.com	303552	2003-06-23	2017-10-16	2023-05-28	648 B	8.6 kB	172.66.40.234
getfitspresso.org	unknown	2022-06-10	2022-06-10	2023-05-28	8.5 kB	499 kB	104.21.47.136
cdn-4.convertexperiments.com	unknown	2012-06-05	2022-10-27	2023-05-28	430 B	147 kB	23.61.236.204
getfitspresso.com	unknown	2022-06-10	2022-06-10	2023-05-28	1.1 kB	2.0 kB	104.21.19.199
mwebfocus.com	unknown	2023-05-19	2023-05-19	2023-05-28	500 B	48 kB	188.114.96.1
embed-ssl.wistia.com	22795	2007-03-18	2017-01-29	2023-05-28	496 B	2.4 kB	54.230.111.70
pipedream.wistia.com	6958	2007-03-18	2017-01-30	2023-05-28	1.6 kB	633 B	52.72.175.55
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-28	1.7 kB	3.5 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-28	1.6 kB	50 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-29	medium	terminal.cheap-flight-search.com/ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	www.googleoptimize.com/optimize.js?id=OPT-KHZGMDF	120 kB	2023-05-26	2023-05-29
Pretty URL www.googleoptimize.com/optimize.js?id=OPT-KHZGMDF IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 20:52:47 Last Seen2023-05-29 16:11:39 Times Seen8 Hash b4626fe5bcb357fd04f5b54c04fe73df aeb08b1dcee84d7309dec60498eac524e8d8cd3a 1515108814de9faa63666f0f9169ce66dcc73158a71a08928ab48ef0a598630b Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-11 02:20:21 Times Seen346455 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	fast.wistia.com/assets/external/engines/hls_video.js	484 kB	2023-05-24	2023-05-30
Pretty URL fast.wistia.com/assets/external/engines/hls_video.js IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-24 16:23:48 Last Seen2023-05-30 20:36:51 Times Seen190 Hash 4239ac0a642b4053b4eb8330d87d7176 7f85ab6f2ce3126699ddbac2e134a210082da62f af85d430c85e8cc4c24a48368acef6ea20dfd094409fbe7405a84ab93d00c5a3 Loading...

	unknown	27 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:23 Last Seen2024-05-10 15:55:07 Times Seen287 Hash 949b32fc2a2018aa2f365f665cb9a88c 5b2df2099b3041046dd676a69cb51af6624a1529 d8bfed163d72168bdf9c3e137abb401aec30e7aceb1ac182d490d66aa0bbe6cd Loading...

	unknown	425 B	2023-05-06	2024-02-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:16:11 Last Seen2024-02-24 14:19:32 Times Seen19 Hash 93d7e6bc3a3c252fe974d663bef714fa 3238f53cad50ee243906ca8054e1439e5fde85ee 9f970eadb7f8c2f6ad4575cb9248d2b4cbe903ad1291a4d2cd64b72c25c390d7 Loading...

	www.googletagmanager.com/gtag/js?id=G-407EGDZWDH&l=dataLayer&cx=c	244 kB	2023-05-29	2023-05-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-407EGDZWDH&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:21:24 Last Seen2023-05-29 15:21:25 Times Seen2 Hash 5089a0e149faa3439b3d7aead5ba524e f8cf17c343fe323a0a82420b5a42de37015ba2d0 712aa6f7fd8037f2e1876fa0528f40dcd13cdae4765832dfa2422f2c28ea16de Loading...

	tracking.buygoods.com/track/?a=8117&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=1_BF1_69,1_BF3_177,1_BF6_294&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154	7.4 kB	2023-05-29	2023-05-29
Pretty URL tracking.buygoods.com/track/?a=8117&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=1_BF1_69,1_BF3_177,1_BF6_294&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154 IP 172.66.40.234 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:21:24 Last Seen2023-05-29 15:21:24 Times Seen1 Hash c77f5e65a77a938b524f864ad747d558 5ebaf6074e24a5c5e8372cd4ec2291478c692cd0 8e123cb70f02c69b4b6eedbf278c89b556cb7da10079348a3447d0e713f63bdf Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	766 B	2023-05-26	2023-06-20
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-06-20 21:10:14 Times Seen6 Hash 9e04c8434dec8027dc17a3850f735797 dcaa0a21f568e372ee3ab81585e615bbc3adbdf7 181342972cdb4919ba78fa2c9631b5bb9d2665c16b098ed7e053c3e15937013b Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	1.8 kB	2023-05-06	2024-03-26
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 01:16:11 Last Seen2024-03-26 23:55:06 Times Seen19 Hash a69607a01f9a6df644af9fad23e9d841 ba724c543f4df3bb75f4a8e651d400b965b651b3 c2b957c6726f41842c9408ae5f5ff7fa53e680eed489aef2ee4985c3ddf462d2 Loading...

	www.googletagmanager.com/gtag/js?id=AW-11100153262	190 kB	2023-05-29	2023-05-29
Pretty URL www.googletagmanager.com/gtag/js?id=AW-11100153262 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:21:24 Last Seen2023-05-29 15:21:25 Times Seen2 Hash 689d415c57cff4faefb7d43a647af188 3b414060e2c843b2c03cedccce7afded0bbae579 e922dc42446fd3bb2f325b51965b890127c661fe1e3c20af77b0768d53d971d6 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	295 B	2023-05-26	2023-06-20
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-06-20 21:10:14 Times Seen6 Hash 48dcb4663ce1ad62923d7539d5aecbf7 16c1281c329a0f1419d837793ed304363c7aeb00 2a6ea1c0c3e47403c856436990712b80d313f9deaa23fdc9881f2d35f560d877 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	131 B	2023-05-26	2023-06-20
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-06-20 21:10:14 Times Seen6 Hash 808eb4a2ded5ecec8b3396fd0725cad2 c98719045bbb3effc62a45792b331e3c9a064833 724ca9d9b7bf78ff4c6842cfe63bdc9795c5a071f0122d820b0d5137c0ccaf07 Loading...

	fast.wistia.com/assets/external/allIntegrations.js	22 kB	2023-05-19	2023-06-01
Pretty URL fast.wistia.com/assets/external/allIntegrations.js IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-19 16:25:11 Last Seen2023-06-01 06:07:23 Times Seen237 Hash f2f9d674dfc20d832eb21639f244447e 81c56984305959876d22a861837cb31ddc453d19 5e99995e3d5e0b6825b499f1f366a42fd723e2359e4251134d50e9c57325ee81 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	4.2 kB	2023-05-06	2024-03-26
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 01:16:11 Last Seen2024-03-26 23:55:06 Times Seen19 Hash 7f5d0510de159d67ad30a1f5fc6d9b57 4e640af8be091d70976b89d97322849ac7a77eba 3fd0b8be285e6123c3a4c781f157f7ce873b75976c28642bb1e0d3177ad574be Loading...

	bat.bing.com/p/action/187026002.js	0 B	2023-03-07	2024-05-11
Pretty URL bat.bing.com/p/action/187026002.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 02:27:10 Times Seen37533973 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	fast.wistia.com/assets/external/playPauseLoadingControl.js	80 kB	2023-05-26	2023-05-30
Pretty URL fast.wistia.com/assets/external/playPauseLoadingControl.js IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 19:25:55 Last Seen2023-05-30 20:36:51 Times Seen121 Hash 4ca83d5c117623b32f912a78ac329184 54cf8991aef7b550f95d4668a1cd78ded5c56394 aefa3524e5a5db693cdb06ee56a315371e844d9ea905315bfde64165ba8651b0 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	377 B	2023-03-14	2023-12-19
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 04:13:58 Last Seen2023-12-19 15:04:43 Times Seen13 Hash 894cdccf84ebafce91ab44d14c6ff1e2 90d78d64d8c6a00d0a4003d58600e10828dde315 513ae40004e1a0db43b27dd1f7f8d3d017f531783eda808cc11afd87a34e9b80 Loading...

	fast.wistia.com/embed/medias/30wc0f3gb1.json?callback=wistiajson1	6.6 kB	2023-05-29	2023-05-29
Pretty URL fast.wistia.com/embed/medias/30wc0f3gb1.json?callback=wistiajson1 IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:07:03 Last Seen2023-05-29 16:11:39 Times Seen5 Hash 24f45d11dd4a86c72117cb203ae65ccf b089bd2ebc11d1b53fc7f001ba66036054f5cb98 7785515838989ab5ddc567ec5fe045d5b128818c59a02a1512d9ea59ae6c56c2 Loading...

	bat.bing.com/bat.js	41 kB	2023-05-12	2024-04-23
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 01:27:03 Last Seen2024-04-23 13:38:34 Times Seen17553 Hash 12b0721aebdc9816a2a99bcce751c1b3 6f01d33b811a39a95dbf0ada288306e1376099e1 679804e244b4127b7ecd99a513b57d6a4f91866410e16da69ce02f98f534051d Loading...

	unknown	1.1 kB	2023-05-26	2023-06-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 20:52:47 Last Seen2023-06-20 21:10:14 Times Seen6 Hash e1220d654f489489c5e4db02d1049935 f9d8bacfba740db7c54ea0394cd31ecdfcbfdc32 2f8ddd5fb36a9ebf40a7c6450ad39759ff27082ad50c3e56bff0d555f09869f2 Loading...

	optassets.ontraport.com/tracking.js	7.8 kB	2023-03-14	2023-06-12
Pretty URL optassets.ontraport.com/tracking.js IP 104.16.20.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 05:54:05 Last Seen2023-06-12 10:25:25 Times Seen63 Hash 358b0ecd9893c147bc724f233b904693 67312da48c8e0c20c022b926265addfc33180dd2 631b53cee14f8501d01fe646031ad98faaf9e5e0b3581109ab05bfe74864acc0 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	1.3 kB	2023-05-26	2023-06-20
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-06-20 21:10:14 Times Seen6 Hash 23e7d69fdb64befbdf56527fae1a881b 940166f02e1d276e2fda0c96f327baba68d98b46 c16b8c3337712f406e4ea4e8aeea8fcda12e521ae00586acd067a439a2c6619d Loading...

	fast.wistia.com/assets/external/E-v1.js	667 kB	2023-05-26	2023-05-30
Pretty URL fast.wistia.com/assets/external/E-v1.js IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 19:25:55 Last Seen2023-05-30 19:49:14 Times Seen143 Hash 3988fdaa6d6ddaa1135006feafe14111 7bf09b8135fb27829e7d5a18848df100acf26849 fe010c08663ab5b071f261a3db498f27bd17b2ce52cf305a1665f9696cf1c006 Loading...

	unknown	284 B	2023-05-26	2023-07-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 20:52:47 Last Seen2023-07-15 16:56:07 Times Seen17 Hash d1528238faf2b1f07ac04a0617e2994a f82bc09c33262fa3e12292c1734063afef5b5b1a f348503bb4428f9c60021e72af05b61c973d2b3c7ad9f673be009a5d27c82e49 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	11 kB	2023-05-06	2023-06-20
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 01:16:11 Last Seen2023-06-20 21:10:14 Times Seen7 Hash 6dad0b4a509e3df361354da0a51628b8 809a51bc80dc2d398220bc1ea01c2a33eb57dda1 939d4a89fc57f456e45520c52b565d5be252559c0c826ddfd0a2b345fe85111a Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NG63RK3	211 kB	2023-05-29	2023-05-29
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NG63RK3 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:07:03 Last Seen2023-05-29 15:21:25 Times Seen4 Hash 5bb20132e57253652ebcdb9526fd74b7 15b2e858b50faec80869f1d99c989ab175d40e88 c9c43f252a5e765d78468e45e22f3ddd7415572c904698fad15ef0733e972b81 Loading...

	getfitspresso.org/video/sandbox%20eval%20code	147 B	2023-04-11	2024-05-11
Pretty URL getfitspresso.org/video/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-11 02:20:21 Times Seen346962 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	getfitspresso.com/info/set_cookie?aff=3378&fb=	120 B	2023-05-06	2024-02-24
Pretty URL getfitspresso.com/info/set_cookie?aff=3378&fb= IP 104.21.19.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 01:16:11 Last Seen2024-02-24 14:19:31 Times Seen20 Hash c8511f0cdcc20c9245630167e8e9e5ba 876a8914678ea4ecd433714ed3eeceaaa7a24c26 e2a15543b50ff69b4896d786f6706b57e55057ef1366e8ae608ca2cf9899fda1 Loading...

	getfitspresso.com/info/set_cookie?aff=3378&fb=	144 B	2023-05-06	2024-02-24
Pretty URL getfitspresso.com/info/set_cookie?aff=3378&fb= IP 104.21.19.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 01:16:11 Last Seen2024-02-24 14:19:32 Times Seen20 Hash f53ce673f8e1f36e987e2fd6b8b13766 6afd0b45bae095999eb1f05664cbd268d9390599 1ddb50e40b2b04df86c18f954627065f3a39541047cc525d225cdaa8c91c253b Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	630 B	2023-05-26	2023-07-15
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-07-15 16:56:07 Times Seen17 Hash d241242d512fbd45dd929ac0cffa6299 9e5379bbda31f81b572339ab9c7ca1ee76578b16 6daa6ba1b43b37f534c2c429aff1511c9facfedbae96d29318fc02c5bf9140a1 Loading...

	getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154	330 B	2023-05-26	2023-07-15
Pretty URL getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 IP 104.21.47.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:52:47 Last Seen2023-07-15 16:56:07 Times Seen17 Hash e90db3f7c332e7b75cee0545059bbf3a a299c1747985830a0ea8c1af40689879c74b31ac 3a26d97a99b9c956200f7478e61ce5494e356ea274ece90d4119cae50f3ad84f Loading...

	cdn-4.convertexperiments.com/js/10007727-10007014.js	204 kB	2023-05-29	2023-05-29
Pretty URL cdn-4.convertexperiments.com/js/10007727-10007014.js IP 23.61.236.204 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-29 15:07:03 Last Seen2023-05-29 16:11:39 Times Seen3 Hash 347ec3ad4c9102ed612bca2313987f84 1264efc2d8fa094e69dfd838e74b3e0e088829d4 e1cfb95a145e97b44d74414fcc7e5b1aab4bc9c8b7a99ed2391960563a584efa Loading...

HTTP Transactions (62)

URL IP Response Size

terminal.cheap-flight-search.com/ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49

86.48.26.120

302 Found

118 B

URL User Request GET HTTP/1.1
terminal.cheap-flight-search.com/ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49
IP
86.48.26.120:443
ASN
#16095 Sentia Denmark A/S

Certificate
IssuerLet's Encrypt
Subjectterminal.cheap-flight-search.com
Fingerprint86:D6:80:39:8F:6A:17:16:FA:53:9D:75:93:EE:3B:26:E4:78:5E:63
ValidityWed, 03 May 2023 07:05:53 GMT - Tue, 01 Aug 2023 07:05:52 GMT

File type
HTML document text\012- HTML document, ASCII text, with no line terminators
Size
118 B (118 bytes)
Hash
899a3711f5b7d022d3c1d5f08e4ff6cd
ad018450967dd2d5d7759d66c4e6629d8c3b0c5b
2cd9528ef010eab3c785b6e95c1ac158f4852ba5d94506206be48d9f0ef30962

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ga/click/2-166568310-449-30723-60292-36856-baf23ae228-p06ecdaa49 HTTP/1.1
Host: terminal.cheap-flight-search.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Mon, 29 May 2023 13:21:02 GMT
Server: Apache/2.4.52 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.33
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: 235216b19e36d3bb0692beb9a0b8ace0
Location: https://mwebfocus.com/8218/154/2/?subid=finitpsiires
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.022998
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.12
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

getfitspresso.org/video/lib/img/right.png

104.21.47.136

200 OK

109 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/right.png
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
PNG image data, 229 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
109 kB (109136 bytes)
Hash
ea58b34f8ace9ce98aa7f9f6057f17e2
0a2bca0a54dd75ac8c74a8a4d432555b60f9c05c
826a2ef2c547e854809da7f62c7eb374dcffd22625297f8bc85ae0cfeb081d9c

HTTP Headers

GET /video/lib/img/right.png HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/png
content-length: 109136
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "b2bc497826ce30294a8b0f223b99c8d5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BnY6E9VT%2B9yuoI%2F48syhesaMEyMJfSIjH6saogzmA3Hky049XWG2e%2B1dkf6sj6%2BGV3Te7YEkEZFA0yaQZpTkC2fI1vQ6ZuDDRdTv3ppEygRRjDpIdbot16cSDg64DfR%2FKl6TBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
accept-ranges: bytes
server: cloudflare
cf-ray: 7cef09cc784fb4eb-OSL
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/left.png

104.21.47.136

200 OK

115 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/left.png
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
PNG image data, 214 x 464, 8-bit/color RGBA, non-interlaced\012- data
Size
115 kB (114871 bytes)
Hash
6ad36725c8bad28ba2879119bb8cb453
095173f5221ee91da63f11621f486fb895e13299
3f03306c6732bd2710167f5e50c6a825e2b0d157adbeb29e2438d895d4d33893

HTTP Headers

GET /video/lib/img/left.png HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/png
content-length: 114871
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "a5b680695d8d8b2b5af6bddfd56a53ef"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djKv0RpiFClGgp%2FYlFVbWX7dhNb71w96CQ3inZumVo9eMjLdwQqUWkqVdcxpga5ocq3RasTFR2PnrdLE7pfcXMS9hLIXD4VxQxsXZEvzbW7QqqedOYROiAdi7%2FOJSX2fbhZtNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
accept-ranges: bytes
server: cloudflare
cf-ray: 7cef09cc7851b4eb-OSL
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/references.png

104.21.47.136

200 OK

49 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/references.png
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
PNG image data, 804 x 637, 4-bit colormap, non-interlaced\012- data
Size
49 kB (48663 bytes)
Hash
9fff4457bf2430f564ab84fdc81c398e
db8bc39d53d1f4937b765760984d4bb30347f2ad
8ae6b1cf5f934f6919ae54f862274b268f6b8eb966f122ac0b59cdd0b7a48c8a

HTTP Headers

GET /video/lib/img/references.png HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/png
content-length: 48663
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "7f60a815a352291e963a91063108c49a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wgZ1fLePBqKkG5eJFQlkmQfuTzhwmNObXKuxtoHuGWrwgHu7ojoFfROXT9TD1ikQmvr1ukg3YCEosiubOxVqzFLuZBtURgeCzC7%2Fbr4P7v0zWXUn%2FncFs%2Bw4T3kp8zAq04NJsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
accept-ranges: bytes
server: cloudflare
cf-ray: 7cef09cc885ab4eb-OSL
alt-svc: h3=":443"; ma=86400

fast.wistia.com/assets/external/E-v1.js

151.101.66.110

200 OK

121 kB

URL GET HTTP/2
fast.wistia.com/assets/external/E-v1.js
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
ASCII text, with very long lines (65474)
Size
121 kB (120663 bytes)
Hash
3988fdaa6d6ddaa1135006feafe14111
7bf09b8135fb27829e7d5a18848df100acf26849
fe010c08663ab5b071f261a3db498f27bd17b2ce52cf305a1665f9696cf1c006

HTTP Headers

GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 26 May 2023 16:22:46 GMT
etag: "f7d2dab77218b24ed9acc10c1a0551c3"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:03 GMT
age: 3467
x-served-by: cache-iad-kiad7000050-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 46, 221
x-timer: S1685366464.556289,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
asset-version: 71cba0e5f7713bfede8483b71c490bee18d4f4c0
content-length: 120663
X-Firefox-Spdy: h2

getfitspresso.org/video/lib/img/bg.jpg

104.21.47.136

200 OK

42 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/bg.jpg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1996x1073, components 3\012- data
Size
42 kB (42048 bytes)
Hash
33c07b9e605ad98caf3bc8b4bb8a85a8
a702d0a370062d98d9f6e138ffc7cc9f410d1413
4c5d29083a82f3e7b728ee90476652f4ddc0929658aa4e511b17e4f90cac587c

HTTP Headers

GET /video/lib/img/bg.jpg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/jpeg
content-length: 42048
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "9a1719f2163fd4a81ea6bd9eaf34593a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gwos1w9EB1pe4h0keN2pwPnjJwcALol6uMWLL670ImT7qcqoGG0LnhE5ZMfPkVbgxOAd3AajiRqc%2BKqlJDSOBWuKBv%2FWE5soG5L90rN%2Fg%2Fyal0z%2FLS3narJ9lm4ccFfr0mmKFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
accept-ranges: bytes
server: cloudflare
cf-ray: 7cef09cd9a26b4eb-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf41763493034cf0721a38e55b1b3ddc
286ada2e9811dec033e7c630fa0c33a036771ae1
8bb566767ad110bd2452aca59b4190694cce97ab9601de46067d8643efaad86d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-11100153262

142.250.74.40

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-11100153262
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

File type
ASCII text, with very long lines (4372)
Size
69 kB (68852 bytes)
Hash
689d415c57cff4faefb7d43a647af188
3b414060e2c843b2c03cedccce7afded0bbae579
e922dc42446fd3bb2f325b51965b890127c661fe1e3c20af77b0768d53d971d6

HTTP Headers

GET /gtag/js?id=AW-11100153262 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 13:21:03 GMT
expires: Mon, 29 May 2023 13:21:03 GMT
cache-control: private, max-age=900
last-modified: Mon, 29 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68852
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-NG63RK3

142.250.74.40

200 OK

74 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-NG63RK3
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

File type
ASCII text, with very long lines (16892)
Size
74 kB (73683 bytes)
Hash
5bb20132e57253652ebcdb9526fd74b7
15b2e858b50faec80869f1d99c989ab175d40e88
c9c43f252a5e765d78468e45e22f3ddd7415572c904698fad15ef0733e972b81

HTTP Headers

GET /gtm.js?id=GTM-NG63RK3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 13:21:03 GMT
expires: Mon, 29 May 2023 13:21:03 GMT
cache-control: private, max-age=900
last-modified: Mon, 29 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

getfitspresso.org/video/lib/css/bottom.css

104.21.47.136

200 OK

7.8 kB

URL GET HTTP/3
getfitspresso.org/video/lib/css/bottom.css
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
ASCII text, with very long lines (38051), with no line terminators
Size
7.8 kB (7784 bytes)
Hash
1bbb165ceb30e350ddffc17bef0d5da0
e52b32ed1382fe9bac7711bf1f7e40b8f988255a
821ef8bf936da381afb2edb50c1bade1d26c85219e1df9c030970c5ea75a7529

HTTP Headers

GET /video/lib/css/bottom.css HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"ce8a55153909b39523c3d907706593cf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7WvtIgA7G%2BXPe%2F%2F4ZXNBA5X4BVfyMMADfhs6L2Bv8YxFlEh638%2BnTt9LevzUZnos4pTJ9WRz92xLLfNtRAdRcebcEZfC0J5xWtTTI9%2B%2FJih%2B936qAvYvCzUsztbMtteH3d9WoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cca894b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/check-large-icon.svg

104.21.47.136

200 OK

25 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/check-large-icon.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (824), with no line terminators
Size
25 kB (25438 bytes)
Hash
da95f4f242d3d0a371ac2b364eb0627d
dafcfbc6eeea83f8dacceeaf9b77352ca1df6b3b
4ab6dd01b9bd5337e015ad159d1f5db71ceb811d62d438bfb259642fb22bd87a

HTTP Headers

GET /video/lib/img/check-large-icon.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/lib/css/bottom.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"45e4a893fd6daa25a3faae9a7d94f6ac"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NvmnkvYaz%2F%2BwDJT0lFkL4R%2Fy3wqYsi36Scuo%2FxX0plP8cBuoQZ2%2BuUDUD0JRuljPs968wdkJ8HWpk15WewXM%2BD8w4Mmw%2BU22YJJLSQZz2knWr6C5G3PxEYFGH5HgQwtD2HcbMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4632
server: cloudflare
cf-ray: 7cef09ce3b25b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

getfitspresso.org/video/lib/img/logo-gmp.svg

104.21.47.136

200 OK

1.8 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/logo-gmp.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3518), with no line terminators
Size
1.8 kB (1782 bytes)
Hash
cbdb264c73cc8a0c449981c68936e7af
ed3a6f4ddf02a1899d1b525c2c5f16fd302a6581
ba1e99aca176acea94d14435036e13cc33cefd1384ed5318acc865e3f3f1d00b

HTTP Headers

GET /video/lib/img/logo-gmp.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"08762c8c2722143eac9f0ff9c7f984a2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QmkJGfcjExFfftXmv9nFsY2O22wNBJP8yB%2B0vYx%2FX8IgjnbAXVnyNSKJmIBZzPxkiCSzZZ%2BZOoIjDa90uTFNp%2BQfajaZ6SB%2F04YcOI%2FHNeYVkWoWWLEpyp7YJ8Cag1kFS24hfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc8861b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/icon-right-chevron.svg

104.21.47.136

200 OK

612 B

URL GET HTTP/3
getfitspresso.org/video/lib/img/icon-right-chevron.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
612 B (612 bytes)
Hash
7aea327d0ffc2d4596cdd2595a7908e2
fa6072ef29b7c117ca20b3e323e0e532e0f845eb
580fbf64871490d1b4cd9fae3e63db3ed94d177dfd0073ff61ffc86faf26cb7e

HTTP Headers

GET /video/lib/img/icon-right-chevron.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"ee24d6df3d5bc70bd37c7f5e054c3eaf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ikAeFeukqNOQGfWVcn%2FFTBbJA2tZdhZPu3lBJVBCZCn0rr2HD5WEhuntV808f4FReUA9qwgy%2Fs60MnSiwl0F7elMnsH3UGhTh9hlLdiLi026if1VcCzVPlA4O3isZm6lvKnwEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc8855b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 488484
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap

142.250.74.106

200 OK

17 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
gzip compressed data, max compression\012- data
Size
17 kB (17062 bytes)
Hash
648736bfc5a98694eeb83919ad897325
6812b09cec0e3288b5f22acdf2b060a04cc1ca31
c173a6e80bcb8e6526ff8bfa7e453ea4dc78d9e3b9098270cf5cd8292cfff517

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 13:21:03 GMT
date: Mon, 29 May 2023 13:21:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 07:44:41 GMT
expires: Sun, 26 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 192983
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fast.wistia.com/embed/medias/30wc0f3gb1.json?callback=wistiajson1

151.101.66.110

200 OK

1.7 kB

URL GET HTTP/2
fast.wistia.com/embed/medias/30wc0f3gb1.json?callback=wistiajson1
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
ASCII text, with very long lines (6553), with no line terminators
Size
1.7 kB (1745 bytes)
Hash
24f45d11dd4a86c72117cb203ae65ccf
b089bd2ebc11d1b53fc7f001ba66036054f5cb98
7785515838989ab5ddc567ec5fe045d5b128818c59a02a1512d9ea59ae6c56c2

HTTP Headers

GET /embed/medias/30wc0f3gb1.json?callback=wistiajson1 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: envoy
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"7785515838989ab5ddc567ec5fe045d5"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
x-request-id: 30c677b7-4fb9-488c-a7d3-d4dda890fe23
x-runtime: 0.042632
content-encoding: br
x-envoy-upstream-service-time: 44
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:04 GMT
age: 79046
x-served-by: cache-iad-kiad7000063-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1685366464.200630,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
content-length: 1745
X-Firefox-Spdy: h2

cdn-4.convertexperiments.com/js/10007727-10007014.js

23.61.236.204

200 OK

147 kB

URL GET HTTP/2
cdn-4.convertexperiments.com/js/10007727-10007014.js
IP
23.61.236.204:443
ASN
#16625 AKAMAI-AS

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerDigiCert Inc
Subject*.convertexperiments.com
Fingerprint8F:0D:97:F0:61:52:07:B2:1B:91:56:24:5A:55:25:8C:B3:F9:BA:5C
ValidityFri, 06 Jan 2023 00:00:00 GMT - Sun, 07 Jan 2024 23:59:59 GMT

File type
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Size
147 kB (147103 bytes)
Hash
05ae700aab70bf0cf739788a056643dd
95355e5ca10fa5d9af8dd7ba9dc2c33e933876f9
5556ca7e6a096c2839fec93ad8d304da585a163f87330e7ef132cd6ae1f94a47

HTTP Headers

GET /js/10007727-10007014.js HTTP/1.1
Host: cdn-4.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=300
expires: Mon, 29 May 2023 13:26:03 GMT
date: Mon, 29 May 2023 13:21:03 GMT
X-Firefox-Spdy: h2

getfitspresso.com/info/set_cookie.html?aff=3378&fb=

104.21.19.199

308 Permanent Redirect

0 B

URL GET HTTP/2
getfitspresso.com/info/set_cookie.html?aff=3378&fb=
IP
104.21.19.199:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.com
Fingerprint5B:06:47:F7:76:DC:AE:ED:36:A8:71:23:E0:B7:BC:9A:72:E0:0E:CC
ValiditySat, 01 Apr 2023 16:55:30 GMT - Fri, 30 Jun 2023 16:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /info/set_cookie.html?aff=3378&fb= HTTP/1.1
Host: getfitspresso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 308 Permanent Redirect
date: Mon, 29 May 2023 13:21:04 GMT
content-length: 0
location: /info/set_cookie?aff=3378&fb=
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TDqlVHcCcSHEykjUl33dXEWhUGd2Ii7joxCz4mOqE37wU6st8WnEtQdjYtW8yaFXULN0ILiJM352Q3Vq%2Bg9Z9YaOtDknh7oNl1ZJ%2Bnb8%2BN3GNd8dp18LvmtGE0%2F2zCiu%2BKttvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cef09d13e631c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

mwebfocus.com/8218/154/2/?subid=finitpsiires

188.114.96.1

302 Found

47 kB

URL User Request GET HTTP/2
mwebfocus.com/8218/154/2/?subid=finitpsiires
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmwebfocus.com
FingerprintC1:71:2F:FB:4E:94:67:6F:D9:DE:81:87:66:8B:23:70:92:32:3B:A9
ValidityFri, 19 May 2023 09:38:26 GMT - Thu, 17 Aug 2023 09:38:25 GMT

File type
data
Size
47 kB (47014 bytes)
Hash
d303e8a32b953ac2dfe72ff9d67672cc
2844ef097ffb7ef9ad899a3b6b20082716f10505
19500ea0eb784e4666c85a1723ef3b6ac9d281c5a6b90cf135aedcaf8aff69d1

HTTP Headers

GET /8218/154/2/?subid=finitpsiires HTTP/1.1
Host: mwebfocus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 29 May 2023 13:21:03 GMT
content-type: text/html; charset=UTF-8
location: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
cache-control: max-age=3600, private
pragma: no-cache
expires: Mon, 29 May 2023 14:21:02 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cef09c7cafeb4f4-OSL
X-Firefox-Spdy: h2

embed-ssl.wistia.com/deliveries/ec712b337400587550a6305892c777a8.webp?image_crop_resized=1280x720

54.230.111.70

200 OK

1.7 kB

URL GET HTTP/2
embed-ssl.wistia.com/deliveries/ec712b337400587550a6305892c777a8.webp?image_crop_resized=1280x720
IP
54.230.111.70:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.7 kB (1700 bytes)
Hash
59c1b1c7000e344dc5a651014790ff49
53779bc3d5333f997ace0821bd44e95795e2b357
e42a3e8889072b30aa879d48b2ada64e3b50794d165160b6ccfc282ab85b5517

HTTP Headers

GET /deliveries/ec712b337400587550a6305892c777a8.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 1700
accept-ranges: none
access-control-request-method: *
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: ec712b337400587550a6305892c777a8
etag: Z5TYtquiHdmRUjXjHuXVaZofNqI=
last-modified: Mon, 08 May 2023 20:17:57 UTC
surrogate-key: ec712b337400587550a6305892c777a8 thumbnail-delivery
date: Sun, 21 May 2023 11:55:33 GMT
x-envoy-upstream-service-time: 119
server: envoy
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3iSWZqfF4WUCo5JKBeDuMTep2pRLtYY_n-oMqzQHoy9LdvAj-g1R0A==
age: 696331
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2

bat.bing.com/bat.js

13.107.21.200

200 OK

12 kB

URL GET HTTP/2
bat.bing.com/bat.js
IP
13.107.21.200:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7
ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (41435), with no line terminators
Size
12 kB (12183 bytes)
Hash
12b0721aebdc9816a2a99bcce751c1b3
6f01d33b811a39a95dbf0ada288306e1376099e1
679804e244b4127b7ecd99a513b57d6a4f91866410e16da69ce02f98f534051d

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 12183
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 11 May 2023 18:08:27 GMT
accept-ranges: bytes
etag: "80df77953384d91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 14EC612A8D214E4696F53FE480D761AC Ref B: OSL30EDGE0514 Ref C: 2023-05-29T13:21:04Z
date: Mon, 29 May 2023 13:21:04 GMT
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=187026002&Ver=2&mid=bed1b2b1-958b-481a-abf6-e04ccf394eec&sid=a9c5b980fe2311edb25ef71956dd8a14&vid=a9c5c420fe2311edaeb65bda8b4fde84&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=FitSpresso&p=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154&r=&lt=1693&evt=pageLoad&sv=1&rn=789303

13.107.21.200

204 No Content

0 B

URL GET HTTP/2
bat.bing.com/action/0?ti=187026002&Ver=2&mid=bed1b2b1-958b-481a-abf6-e04ccf394eec&sid=a9c5b980fe2311edb25ef71956dd8a14&vid=a9c5c420fe2311edaeb65bda8b4fde84&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=FitSpresso&p=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154&r=&lt=1693&evt=pageLoad&sv=1&rn=789303
IP
13.107.21.200:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7
ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=187026002&Ver=2&mid=bed1b2b1-958b-481a-abf6-e04ccf394eec&sid=a9c5b980fe2311edb25ef71956dd8a14&vid=a9c5c420fe2311edaeb65bda8b4fde84&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=FitSpresso&p=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154&r=&lt=1693&evt=pageLoad&sv=1&rn=789303 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=055F976AEE1A615B17AD844AEFEF600C; domain=.bing.com; expires=Sat, 22-Jun-2024 13:21:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1FC9F5B8B54D420AA034C312237E9D0C Ref B: OSL30EDGE0514 Ref C: 2023-05-29T13:21:04Z
date: Mon, 29 May 2023 13:21:04 GMT
X-Firefox-Spdy: h2

getfitspresso.org/video/lib/img/logo-nsf.svg

104.21.47.136

200 OK

2.0 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/logo-nsf.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1121), with no line terminators
Size
2.0 kB (1958 bytes)
Hash
75da036d2d8595c61d60e559110dbbe9
1af13fbd3a6072bcc0cb2a7edcc44e6fce670dd5
7d826183b6b985db9c74cce4672c8d0e3fe2a7f5625b4d499ca15393ab961609

HTTP Headers

GET /video/lib/img/logo-nsf.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"10d6f4a55eb134a09554535113244d2c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DMOvlgLLKqQ6HWSewGdfScbfBSWfPwtxD8WGdIZ9UZiDX7JB0emKVgcoOlLFGkWi5SCE%2BJxvLQ8KuAA1KKTre%2BxVag94TJSeEAbFKbhefVQ0NZsIj9uH4vjb%2Bb5omRw%2FyPD5TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc8863b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fast.wistia.com/assets/external/playPauseLoadingControl.js

151.101.66.110

200 OK

21 kB

URL GET HTTP/2
fast.wistia.com/assets/external/playPauseLoadingControl.js
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
ASCII text, with very long lines (65455)
Size
21 kB (21125 bytes)
Hash
4ca83d5c117623b32f912a78ac329184
54cf8991aef7b550f95d4668a1cd78ded5c56394
aefa3524e5a5db693cdb06ee56a315371e844d9ea905315bfde64165ba8651b0

HTTP Headers

GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.com/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Fri, 26 May 2023 16:22:46 GMT
etag: "f1f29f05653b1da8cb3159904343aaf4"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:05 GMT
age: 3547
x-served-by: cache-iad-kcgs7200048-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 127
x-timer: S1685366465.337468,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
asset-version: 71cba0e5f7713bfede8483b71c490bee18d4f4c0
content-length: 21125
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/engines/hls_video.js

151.101.66.110

200 OK

118 kB

URL GET HTTP/2
fast.wistia.com/assets/external/engines/hls_video.js
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (118061 bytes)
Hash
4239ac0a642b4053b4eb8330d87d7176
7f85ab6f2ce3126699ddbac2e134a210082da62f
af85d430c85e8cc4c24a48368acef6ea20dfd094409fbe7405a84ab93d00c5a3

HTTP Headers

GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.com/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Fri, 26 May 2023 16:22:46 GMT
etag: "aacafd9b2b96bb68f5f72eb5dfb87022"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:05 GMT
age: 3561
x-served-by: cache-iad-kcgs7200113-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 81
x-timer: S1685366465.340280,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
asset-version: 71cba0e5f7713bfede8483b71c490bee18d4f4c0
content-length: 118061
X-Firefox-Spdy: h2

fast.wistia.com/assets/images/blank.gif

151.101.66.110

200 OK

1.2 kB

URL GET HTTP/2
fast.wistia.com/assets/images/blank.gif
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
GIF image data, version 89a, 100 x 100\012- data
Size
1.2 kB (1214 bytes)
Hash
fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2

HTTP Headers

GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:05 GMT
age: 2253
x-served-by: cache-iad-kjyo7100021-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 49, 66
x-timer: S1685366466.522507,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
content-length: 1214
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/30wc0f3gb1.m3u8

151.101.66.110

200 OK

944 B

URL GET HTTP/2
fast.wistia.com/embed/medias/30wc0f3gb1.m3u8
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
M3U playlist, ASCII text
Size
944 B (944 bytes)
Hash
4c18091ced466ba60196c9f12ea70ea6
34b4e676d3b225898a896b0fe3b12bf58babac6a
14e4d211885bdd06bd4ca124fae4adcaa7a649b82aeb157e0e92b7c64e3cf9d2

HTTP Headers

GET /embed/medias/30wc0f3gb1.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: envoy
content-type: application/x-mpegURL
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"14e4d211885bdd06bd4ca124fae4adca"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
x-request-id: 915336c5-ca13-46f5-bcd4-34af4b477fe9
x-runtime: 0.035627
x-envoy-upstream-service-time: 38
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:05 GMT
age: 0
x-served-by: cache-iad-kjyo7100027-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 431, 1
x-timer: S1685366466.511743,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
content-length: 944
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8

54.230.111.63

200 OK

92 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
92 kB (92304 bytes)
Hash
fda41aed4e70ead08e81aa233202e24b
f81c29fc6d664f318af0c37bd35758aa60f6a89d
9926fb440a5f224ad7d6858c38a34431fecf1cbf0141cd1c003ad274f1d0a810

HTTP Headers

GET /deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 92304
server: envoy
date: Wed, 24 May 2023 09:00:44 GMT
expires: Thu, 23 May 2024 09:00:44 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 92a9246dc463db73f4a2f28b46add8d92246c715-hls-segment
surrogate-key: 92a9246dc463db73f4a2f28b46add8d92246c715-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 348
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iGS5OudWmAYI93FFMR9MWzKA-BJMkaqmGN2g1DAu-MfdCkVmTw6Nkg==
age: 447621
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8/seg-1-v1-a1.ts

54.230.111.63

200 OK

2.2 MB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8/seg-1-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- data
Size
2.2 MB (2241336 bytes)
Hash
61a1c9b29ab3778cee837658b20f247c
7971d90e00a9e47c4ffa6495415a9f4a57858447
dc6a318fe9af1f283618e2fd0e5400c487433908e61e972a4f4ffb16c0199545

HTTP Headers

GET /deliveries/92a9246dc463db73f4a2f28b46add8d92246c715.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 2241336
server: envoy
date: Tue, 23 May 2023 11:31:10 GMT
expires: Wed, 22 May 2024 11:31:10 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 92a9246dc463db73f4a2f28b46add8d92246c715-hls-segment
surrogate-key: 92a9246dc463db73f4a2f28b46add8d92246c715-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 71
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NN6HFlHSLvjCOQ8HBpplY1ki856s2xQL28zQNTVpooIYe76Mw3Efig==
age: 524995
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

distillery.wistia.com/x

3.220.126.149

204 No Content

0 B

URL POST HTTP/2
distillery.wistia.com/x
IP
3.220.126.149:443
ASN
#14618 AMAZON-AES

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
content-type: text/plain
Content-Length: 1484
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Mon, 29 May 2023 13:21:05 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2

getfitspresso.org/favicon.ico

104.21.47.136

200 OK

519 B

URL GET HTTP/3
getfitspresso.org/favicon.ico
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
519 B (519 bytes)
Hash
54a9e54a850d578e2f18257dd2cae444
fa7805df737ea7420aa85681ca3c331d866a90fa
083064af599d47003a1aaade3abe6b588741905138b755c24bde008d586f02ad

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.446857800.1685366464; _ga_407EGDZWDH=GS1.1.1685366464.1.0.1685366464.0.0.0; _ga=GA1.1.1655691198.1685366464
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:04 GMT
content-type: image/vnd.microsoft.icon
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"518410e2d5923886978bbaed0356e7f3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I1yRvP6oQ9Qw3tHktKIQTB8SX2g7XfypO%2BlGSeihz4xC0icuEITCv%2BvKBWNpGyiJsTxKkaU87q9svx48V%2FU7VZYnZhDxXkHEswwaVo9bPeuUT0wMFntcinAydAjdaAZSwUdSOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4632
server: cloudflare
cf-ray: 7cef09d3aba3b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8

54.230.111.63

200 OK

92 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
92 kB (92304 bytes)
Hash
0ec4591a56f98cbef5ccc99c5851e0f8
8dcf8e4189773bb0b61f6238d407ad4a9822b24d
f6c7bad5aace906ea6fa94cd7572ddc45d4de9524f7d3761fb1e797c483fe318

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 92304
server: envoy
date: Sun, 21 May 2023 18:48:17 GMT
expires: Mon, 20 May 2024 18:48:17 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 155
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZIWRG5UpN8Eii5ENczqNIt7DsOAFSxHK7hs4LtQQI8MORwLw7Z0YCg==
age: 671569
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts

54.230.111.63

200 OK

605 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size
605 kB (604984 bytes)
Hash
c71f08ceb3f416fed1b1c600d275a45e
84c15e7f37ee4de0ef2d0115e39e43984ddae163
cd9e0e0fd18c74a827e08a225ba63d949c0279d5bfd6d91f8936953b3b729087

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 604984
server: envoy
date: Tue, 23 May 2023 11:31:12 GMT
expires: Wed, 22 May 2024 11:31:12 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 358
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 232pe34kCV0zImGr7LvdLyjuME-t7hzV7QBv3m2I06bvQdqN6KdyLA==
age: 524994
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts

54.230.111.63

200 OK

1.2 MB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- data
Size
1.2 MB (1215608 bytes)
Hash
263f7aeb6e210b543dcf52eff13a4ede
7b120d0b978e1e97f5a777154799a61ebc2fc8bc
8e29824882c9414c4e64b175e4a873884ee76432e5b855f2a740c012cf093642

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 1215608
server: envoy
date: Thu, 25 May 2023 08:43:49 GMT
expires: Fri, 24 May 2024 08:43:49 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 83
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GLmMZbh7qY7wmd5o6BJJqaQAbR9RB0Y1oD8Fzt_lcyAPa9tctTbnbw==
age: 362237
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts

54.230.111.63

200 OK

605 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size
605 kB (604984 bytes)
Hash
c71f08ceb3f416fed1b1c600d275a45e
84c15e7f37ee4de0ef2d0115e39e43984ddae163
cd9e0e0fd18c74a827e08a225ba63d949c0279d5bfd6d91f8936953b3b729087

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 604984
server: envoy
date: Tue, 23 May 2023 11:31:12 GMT
expires: Wed, 22 May 2024 11:31:12 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 358
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wslts6Tm09zqYEPr2Zt1LIhNkJpUJzVvsvbEId-r4uMo2w6xrNOvIA==
age: 524994
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts

54.230.111.63

200 OK

410 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size
410 kB (409464 bytes)
Hash
bd8e5bf26381ed083a95cc7a2a8f446d
cf042c094c7f92926d0580b5312e8f3414e777d8
68e26c938eba0d3edadb0cbcfd05beee3ad90e622de2bd2f46965103fddf2a1d

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 409464
server: envoy
date: Tue, 23 May 2023 11:31:13 GMT
expires: Wed, 22 May 2024 11:31:13 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 95
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i8o_GW0mpF0isrMrpcRtPm-Z1Hmmt4_Km9w5lfF4pBNOOAooWowslA==
age: 524993
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/allIntegrations.js

151.101.66.110

200 OK

5.7 kB

URL GET HTTP/2
fast.wistia.com/assets/external/allIntegrations.js
IP
151.101.66.110:443
ASN
#54113 FASTLY

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintFF:EF:A1:4C:FD:BD:6C:4F:72:C9:06:5D:37:1C:1D:88:39:C9:71:D1
ValidityWed, 28 Sep 2022 00:43:20 GMT - Mon, 30 Oct 2023 00:43:19 GMT

File type
ASCII text, with very long lines (22123)
Size
5.7 kB (5665 bytes)
Hash
f2f9d674dfc20d832eb21639f244447e
81c56984305959876d22a861837cb31ddc453d19
5e99995e3d5e0b6825b499f1f366a42fd723e2359e4251134d50e9c57325ee81

HTTP Headers

GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.com/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Fri, 26 May 2023 16:22:46 GMT
etag: "f29917aea092751d5c435ec801483e6d"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 29 May 2023 13:21:06 GMT
age: 3564
x-served-by: cache-iad-kjyo7100162-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 16, 71
x-timer: S1685366466.343566,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 111
asset-version: 71cba0e5f7713bfede8483b71c490bee18d4f4c0
content-length: 5665
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts

54.230.111.63

200 OK

1.2 MB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- data
Size
1.2 MB (1215608 bytes)
Hash
263f7aeb6e210b543dcf52eff13a4ede
7b120d0b978e1e97f5a777154799a61ebc2fc8bc
8e29824882c9414c4e64b175e4a873884ee76432e5b855f2a740c012cf093642

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 1215608
server: envoy
date: Thu, 25 May 2023 08:43:49 GMT
expires: Fri, 24 May 2024 08:43:49 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 83
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AUMeMlJayzgvNG-6_LiGbk7purG-fvUDsRBOOh-7Niq8tc4-yDhDKQ==
age: 362237
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts

54.230.111.63

200 OK

605 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size
605 kB (604984 bytes)
Hash
c71f08ceb3f416fed1b1c600d275a45e
84c15e7f37ee4de0ef2d0115e39e43984ddae163
cd9e0e0fd18c74a827e08a225ba63d949c0279d5bfd6d91f8936953b3b729087

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-2-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 604984
server: envoy
date: Tue, 23 May 2023 11:31:12 GMT
expires: Wed, 22 May 2024 11:31:12 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 358
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hsnAUORabxboEhHknvwbhHuxCjgtToOfuy_V8UhzNgoZCU5_Dix_BA==
age: 524994
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts

54.230.111.63

200 OK

410 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts
IP
54.230.111.63:443
ASN
#16509 AMAZON-02

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size
410 kB (409464 bytes)
Hash
bd8e5bf26381ed083a95cc7a2a8f446d
cf042c094c7f92926d0580b5312e8f3414e777d8
68e26c938eba0d3edadb0cbcfd05beee3ad90e622de2bd2f46965103fddf2a1d

HTTP Headers

GET /deliveries/41c11b671f80a322b2dc18a7ff1c838f12f77efa.m3u8/seg-3-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: video/MP2T
content-length: 409464
server: envoy
date: Tue, 23 May 2023 11:31:13 GMT
expires: Wed, 22 May 2024 11:31:13 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
surrogate-key: 41c11b671f80a322b2dc18a7ff1c838f12f77efa-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 95
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tnTfCs38OKxVQvXpI6V5cQp4aLxWwbUtukllAHw7XiAPVYruNmx9gQ==
age: 524993
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

52.72.175.55

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
52.72.175.55:443
ASN
#14618 AMAZON-AES

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
content-type: application/x-www-form-urlencoded
Content-Length: 10090
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:06 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

52.72.175.55

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
52.72.175.55:443
ASN
#14618 AMAZON-AES

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
content-type: application/x-www-form-urlencoded
Content-Length: 1493
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:09 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

52.72.175.55

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
52.72.175.55:443
ASN
#14618 AMAZON-AES

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
content-type: application/x-www-form-urlencoded
Content-Length: 1513
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:12 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

optassets.ontraport.com/tracking.js

104.16.20.19

200 OK

7.8 kB

URL GET HTTP/2
optassets.ontraport.com/tracking.js
IP
104.16.20.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoDaddy.com, Inc.
Subject*.ontraport.com
Fingerprint7E:33:2A:95:2E:75:7B:FE:C1:18:75:63:15:43:00:35:32:68:CB:09
ValidityMon, 31 Oct 2022 20:09:32 GMT - Tue, 21 Nov 2023 17:40:51 GMT

File type
ASCII text, with very long lines (7847), with no line terminators
Size
7.8 kB (7797 bytes)
Hash
6d97c9a7768315e4655ced2c28ee48ef
4810e5cdcbe74f1e8d242a1e1775d59da76410f7
e2d047ee9608ae10e6b8992ead1d7883d69b366ac88ad685c9f48f3bc099e8a4

HTTP Headers

GET /tracking.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:04 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=11877
etag: W/"646fce0a-2e65"
last-modified: Thu, 25 May 2023 21:07:22 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 2
cf-cache-status: HIT
age: 3680
expires: Mon, 29 May 2023 21:21:04 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7cef09d15fd21c06-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-407EGDZWDH&l=dataLayer&cx=c

142.250.74.40

200 OK

244 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-407EGDZWDH&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

File type
ASCII text, with very long lines (5048)
Size
244 kB (243960 bytes)
Hash
5089a0e149faa3439b3d7aead5ba524e
f8cf17c343fe323a0a82420b5a42de37015ba2d0
712aa6f7fd8037f2e1876fa0528f40dcd13cdae4765832dfa2422f2c28ea16de

HTTP Headers

GET /gtag/js?id=G-407EGDZWDH&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 13:21:04 GMT
expires: Mon, 29 May 2023 13:21:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83888
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

getfitspresso.org/video/lib/img/logo-usa.svg

104.21.47.136

200 OK

6.0 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/logo-usa.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6083), with no line terminators
Size
6.0 kB (6031 bytes)
Hash
a52a4fc90680b11a9cba1f2ee2c85a5d
82b4e180331f439309deb3b38196c8c10defe19f
41ee4047aa2bc3003db9de053059b88f52b17b9b835acc505e954864281533a2

HTTP Headers

GET /video/lib/img/logo-usa.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"8af989a8862d46ee49b24e72b6f70d57"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcwY1dtcC%2BsnxkRFEdp6KpEJSkOLi2EJ%2FM5i5vTdN5vuKdKsdQeOgBF7ni1vL2RGvvLjFMJenX1EPsCrUVUSMMletN7yRaKl1LOpNMK0m1MkdAe3f%2FzyiSqk85fm6%2BVKzXnAFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc885fb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/fonts/OSWALD-REGULAR.woff2

104.21.47.136

200 OK

25 kB

URL GET HTTP/3
getfitspresso.org/video/lib/fonts/OSWALD-REGULAR.woff2
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24952, version 1.0\012- data
Size
25 kB (24952 bytes)
Hash
33f34114fde3e55cdbd0115c983acf72
cb8874bc6fafbe09fc91b20de09f96fb724ffdda
42fc36e26896448a55be3673c73d3e2dd4ef5afa7f50b54a4130dc4b4af943dc

HTTP Headers

GET /video/lib/fonts/OSWALD-REGULAR.woff2 HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: font/woff2
content-length: 24952
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "bf5d45417fc17d0ccd71749a3ece4c3f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rA5uoiN7Lrmr4fCgw0XDeZIQsA9Tb009ej47JmsFixISYGBXWTiEU1R1z0fc65Qr5Z2ITIeZn0fY9CMcdMlN6hPsBGocN7I%2BkxmlmSdkitZpNz2yGRBNBqjPdVtFqKpqym5J4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4632
accept-ranges: bytes
server: cloudflare
cf-ray: 7cef09cf2c6ab4eb-OSL
alt-svc: h3=":443"; ma=86400

buygoods.com/affiliates/go/conversion/iframe/bg?a=8117&t=18ecb169115fc33fdfcd4c7574ab6fc5&s=sessid20230529132134621

172.66.43.115

200 OK

0 B

URL GET HTTP/2
buygoods.com/affiliates/go/conversion/iframe/bg?a=8117&t=18ecb169115fc33fdfcd4c7574ab6fc5&s=sessid20230529132134621
IP
172.66.43.115:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint27:0D:BC:77:D8:03:AE:AA:EA:FD:64:0C:C8:6A:0E:10:4D:E6:56:46
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 08 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /affiliates/go/conversion/iframe/bg?a=8117&t=18ecb169115fc33fdfcd4c7574ab6fc5&s=sessid20230529132134621 HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-server: WEB_1
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuEzB32VBtgHEATNjAPKD6MVthdtw8XUQ3hBD5sS2x; SameSite=Lax; path=/; expires=Tue, 30-May-23 13:21:05 GMT; HttpOnly
server: cloudflare
cf-ray: 7cef09d58f94b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154

104.21.47.136

200 OK

79 kB

URL User Request GET HTTP/2
getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type

Size
79 kB (78650 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154 HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
link: <https://fonts.googleapis.com>; rel="preconnect"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gvte%2BZBSs2yQFodOsOrTzxdwtare030UHz1jpqH%2F8YgY9bQEBXBR5kM0yiFttaga5O8qJ7OXkzqvY7ZmtkEWgCjPJGzfup4ev51Y%2BCrm0KIljVQeqnyPui4FcHGhnLAIao9Zfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cef09ca3b93b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

getfitspresso.org/video/lib/img/logo-third.svg

104.21.47.136

200 OK

6.2 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/logo-third.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6190), with no line terminators
Size
6.2 kB (6170 bytes)
Hash
20ddede5c0d7d0f2d3ee7799fcdebcbe
cd33958c7c6c7c5bd639703a3b2e0c2e74535d8d
2630f40974f07af3ec6f99e8d5a1f6a67c556fa81d5f2513a647cae7dbcf6810

HTTP Headers

GET /video/lib/img/logo-third.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"d628172fff931b0917fddb66f30249bf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=96bCRnp4NdbRHpDg7YiQC3mzvX%2FbBrc3qL4HRCD9KzLPFUcHIi60rajpQishBEYVy4ROQaw1bjRiTdtT3USFXjvN6gAlJRfhd7yBAbjFiBvaqG4y5BxAPxp9d6N1zGl14QTctA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc8867b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getfitspresso.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 03:11:48 GMT
expires: Sun, 26 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 209356
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

getfitspresso.com/info/set_cookie?aff=3378&fb=

104.21.19.199

200 OK

526 B

URL GET HTTP/3
getfitspresso.com/info/set_cookie?aff=3378&fb=
IP
104.21.19.199:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.com
Fingerprint5B:06:47:F7:76:DC:AE:ED:36:A8:71:23:E0:B7:BC:9A:72:E0:0E:CC
ValiditySat, 01 Apr 2023 16:55:30 GMT - Fri, 30 Jun 2023 16:55:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (567), with no line terminators
Size
526 B (526 bytes)
Hash
6e7d3e2b329f686587e51090422ebff9
8eb5d90baa2c2c8d166ed6fbd30f916ffff77ba0
0264c3f4ef8361fd4126c52ae0f1fc44f7e45630a6e4399e669cc57a83d9c5c2

HTTP Headers

GET /info/set_cookie?aff=3378&fb= HTTP/1.1
Host: getfitspresso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O9TBB3bkARHguUkXHHm9pcfzrrq0Dnbh5D6ykhDIiAku2lek8yBzaZCXEc0Y2ZQF8KJSKsxMeeZn6pArSfNpT8WNMXPQrJYvvp5JE3Y9RNi31JRl%2BUGZVQFIdoyMh9aslHJZGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cef09d1e88c0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/bf-mute.svg

104.21.47.136

200 OK

12 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/bf-mute.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11620), with no line terminators
Size
12 kB (11620 bytes)
Hash
c3615fa9360ba0aa6e60e9bbf7e9ef54
2a4baea68469241b6f33d270c11be9f78baa5bbe
f7dc74dcf723c5fa1e9659edec7116cc1a70f9eebc73f0694ea562946a772808

HTTP Headers

GET /video/lib/img/bf-mute.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"258d6a3d9a04e56a1f549e7ca06529b7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YIK8TZA4LO47buwdTqQdFnANzQ0RdMxtIpRaDTC0HrB8j4MGFjKLNwa0ecdVe8Gz81Gq8db1iU%2Fr67nSW3rmPjb%2B2zOU1ZJ6E364RoSgJ6w4bwfpeQa5FnqMIY7TaK%2Bn7zhkgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cc784eb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

getfitspresso.org/video/lib/img/logo-buygoods.svg

104.21.47.136

200 OK

5.6 kB

URL GET HTTP/3
getfitspresso.org/video/lib/img/logo-buygoods.svg
IP
104.21.47.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerLet's Encrypt
Subjectgetfitspresso.org
Fingerprint93:D6:AB:8A:C0:1C:15:38:59:73:B1:D0:03:5A:41:83:D1:F5:20:58
ValiditySat, 01 Apr 2023 16:43:57 GMT - Fri, 30 Jun 2023 16:43:56 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5646), with no line terminators
Size
5.6 kB (5634 bytes)
Hash
9a0d3af04629b7373d8591221c4405fe
b1c028786e745757e66da7fdf97047cbe7711db2
e10f61a03a1899d0078bdf1b9280ceb95d178e17921f4b3b64e200c0adaa788b

HTTP Headers

GET /video/lib/img/logo-buygoods.svg HTTP/1.1
Host: getfitspresso.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 29 May 2023 13:21:03 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"53e182d927426c59a0747c80968992ca"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ypT5pWRO2%2BFYY6cZi1gXgCk7vm22wVYiyjmJSw1ZvCuoUfbM0DbrYUjBuxFjzQ4GthYuGyApjIIpyHg3cC7%2BwsueZDlUruNw9vK4kmiO9CpeFL0F%2BuEWuScU6nVWHZyEF0hZSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4633
server: cloudflare
cf-ray: 7cef09cca896b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tracking.buygoods.com/track/?a=8117&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=1_BF1_69,1_BF3_177,1_BF6_294&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154

172.66.40.234

200 OK

7.4 kB

URL GET HTTP/2
tracking.buygoods.com/track/?a=8117&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=1_BF1_69,1_BF3_177,1_BF6_294&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154
IP
172.66.40.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint27:0D:BC:77:D8:03:AE:AA:EA:FD:64:0C:C8:6A:0E:10:4D:E6:56:46
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 08 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (7782), with no line terminators
Size
7.4 kB (7372 bytes)
Hash
663ea0f70e707c1416fb305c0670b012
94ddea2c20c274e763118cea17ccb78b702acd48
8613d1dda865abe19595dee4d8fec1b189ba2b6b62e6020f3626e1a20dace54b

HTTP Headers

GET /track/?a=8117&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=1_BF1_69,1_BF3_177,1_BF6_294&vid1=&vid2=&vid3=&caller_url=https%3A%2F%2Fgetfitspresso.org%2Fvideo%2Fbg%3Faff_id%3D3378%26subid2%3D8218_sessid20230529132124425%26subid%3D154 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 13:21:04 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_8117=3378; expires=Sun, 27-Aug-2023 13:21:04 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_8117=154%7C8218_sessid20230529132124425; expires=Sun, 27-Aug-2023 13:21:04 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_8117=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_8117=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_8117=91.90.42.154::getfitspresso.org%2Fvideo%2Fbg; expires=Sun, 27-Aug-2023 13:21:04 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_8117=sessid20230529132134621; expires=Sun, 27-Aug-2023 13:21:04 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_8117=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cef09cfcaf10b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googleoptimize.com/optimize.js?id=OPT-KHZGMDF

142.250.74.78

200 OK

120 kB

URL GET HTTP/2
www.googleoptimize.com/optimize.js?id=OPT-KHZGMDF
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

File type
ASCII text, with very long lines (2271)
Size
120 kB (120527 bytes)
Hash
b4626fe5bcb357fd04f5b54c04fe73df
aeb08b1dcee84d7309dec60498eac524e8d8cd3a
1515108814de9faa63666f0f9169ce66dcc73158a71a08928ab48ef0a598630b

HTTP Headers

GET /optimize.js?id=OPT-KHZGMDF HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 13:21:04 GMT
expires: Mon, 29 May 2023 13:21:04 GMT
cache-control: private, max-age=900
last-modified: Mon, 29 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47014
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bat.bing.com/p/action/187026002.js

13.107.21.200

204 No Content

0 B

URL GET HTTP/2
bat.bing.com/p/action/187026002.js
IP
13.107.21.200:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://getfitspresso.org/video/bg?aff_id=3378&subid2=8218_sessid20230529132124425&subid=154
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7
ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/187026002.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getfitspresso.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AB259B35C6AF45FF9EACD8358A046564 Ref B: OSL30EDGE0514 Ref C: 2023-05-29T13:21:04Z
date: Mon, 29 May 2023 13:21:04 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by