detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Wed, 01 Feb 2023 16:22:32 GMT
Age: 61825
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
buy.baltic-pipe.cloud/rejestracja
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 buy.baltic-pipe.cloud/rejestracja
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.cloud Domain
GET /rejestracja HTTP/1.1
Host: buy.baltic-pipe.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 09:32:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 10:32:57 GMT
Location: https://buy.baltic-pipe.cloud/rejestracja
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LLuUWA%2BuALTeNHElM3RGe%2FpfM6IkxAdGl3UJwsCEc4kdh8a6WSrToe7q%2F%2BsI8FXBfb3DibcGYg8f%2FHCNFZdnFVcWbwwLC233G3gT%2Bq01JsUtX3858k72e7Dee0lttw%2FXpAKKkALFQjU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931ec2dcc02fabc-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfabc5ee01150854a0c4c19e1e805192
ceccd77358130cf963777e681cfe3dcc74a2c486
01ce4690c1e0855386546074aa0a43ff8b7db8c8d89748906374b45f3052d7a2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01CE4690C1E0855386546074AA0A43FF8B7DB8C8D89748906374B45F3052D7A2"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18406
Expires: Thu, 02 Feb 2023 14:39:44 GMT
Date: Thu, 02 Feb 2023 09:32:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3716
Expires: Thu, 02 Feb 2023 10:34:54 GMT
Date: Thu, 02 Feb 2023 09:32:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9309
Expires: Thu, 02 Feb 2023 12:08:07 GMT
Date: Thu, 02 Feb 2023 09:32:58 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 40 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash fb1001283534db8bd0fa557646c28ac1
69cf71352aa82a067e260f6168d9235f4b88ea91
1f6f6588481fad6fa68d167d21aff5629303ced23dcb925fc5a24586e2861f32
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: dJd2jRZXyrc33W6d0z4YCAebCnEvS-2uI1y0rLKD-2wj-wjJJIlOkA==
content-encoding: gzip
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 09:32:10 GMT
age: 609
content-type: application/json
content-length: 40122
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VWXP7E4wV32tSDq8fJYpIq9MAf5HBMrLSu2fTtMpiuvjbiMkovo0BS+r6GdxyWYM8qQzqB9HT9U=
x-amz-request-id: B8D5SAW0RT5ZYERF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 09:12:03 GMT
age: 1255
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4365
Expires: Thu, 02 Feb 2023 10:45:43 GMT
Date: Thu, 02 Feb 2023 09:32:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 08:43:29 GMT
content-type: application/json
age: 2969
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/szN6tHyHA_0
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/szN6tHyHA_0
IP 142.250.74.131:0
Hash 2337cea5774886a28d8f8e2820f6fd52
dac0f23af391261f74d348189637109547ecdf46
15a60b418e561b1e13788de130ae43ff8844c427539b38de4ec5923c8deec977
POST /s/gts1p5/szN6tHyHA_0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:32:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 09:32:58 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/szN6tHyHA_0
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/szN6tHyHA_0
IP 142.250.74.131:0
Hash 2337cea5774886a28d8f8e2820f6fd52
dac0f23af391261f74d348189637109547ecdf46
15a60b418e561b1e13788de130ae43ff8844c427539b38de4ec5923c8deec977
POST /s/gts1p5/szN6tHyHA_0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:32:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Wed, 01 Feb 2023 16:22:32 GMT
Age: 61826
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4dd913fe637959787cb8780d1f605e86
a004e39181234f348c63bd45cbc6de6c310aa11f
425f78c5a5b836274ac9fe06cf34f960fb4204efde192d48734cc2b026d94dbe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5513
Cache-Control: max-age=129177
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:32:58 GMT
Etag: "63dac35a-1d7"
Expires: Fri, 03 Feb 2023 21:25:55 GMT
Last-Modified: Wed, 01 Feb 2023 19:54:02 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
buy.baltic-pipe.cloud/rejestracja
188.114.96.1301 Moved Permanently 665 B URL HTTP/2 buy.baltic-pipe.cloud/rejestracja
IP 188.114.96.1:0
Hash c5c0b6a24a5b2223ffbf23be2a3164de
23cb49bcdf6589f9a67cbc22669d848aa02bc166
e65ce62f8bbc65e06665f4b532d20d8ad2b6a4902414047256742ab890d39da1
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.cloud Domain
GET /rejestracja HTTP/1.1
Host: buy.baltic-pipe.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 09:32:58 GMT
content-type: text/html
location: https://go.capital.com/visit/?bta=41100&nci=5735
x-xss-protection: 1
referrer-policy: no-referrer-when-downgrade
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2BRcT8TOAI%2Bvz0BoPyEd3wDXanbj8G7JpJrkhg5NgfkVEA%2F65CxacCLRC91bEOlfLkgDTUDBIZUjQfJnaCNy6QdyBOKhp%2FXE0ZBiiHqL6gMKOTmyrOwu5Wm1l5ABxWxUCT2EKJRKnNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7931ec308a00b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 08:49:05 GMT
age: 2633
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3589
Expires: Thu, 02 Feb 2023 10:32:47 GMT
Date: Thu, 02 Feb 2023 09:32:58 GMT
Connection: keep-alive
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
44.234.248.225200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP 44.234.248.225:0
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Thu, 02 Feb 2023 09:32:58 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
go.capital.com/visit/?bta=41100&nci=5735
35.234.86.61302 Moved Temporarily 3 B URL HTTP/1.1 go.capital.com/visit/?bta=41100&nci=5735
IP 35.234.86.61:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash 43e819cfbef2c8fc69c227513504087b
3ea645da8b9c23cfcf4e75e45b2ea79c5ec89c4a
82985617ce795510ad965737efe6b5a76411b26a6d7453ff4ba680e856377bc8
GET /visit/?bta=41100&nci=5735 HTTP/1.1
Host: go.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Moved Temporarily
Server: rhino-core-shield
Date: Thu, 02 Feb 2023 09:32:59 GMT
Content-Type: application/octet-stream
Content-Length: 3
Connection: keep-alive
Set-cookie: capital-v=5060629; Max-Age=2678400; Path=/; Expires=Sun, 05 Mar 2023 09:32:58 GMT; HttpOnly
expires: 0
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
surrogate-control: no-store
location: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
referer:
X-Cache-Status: MISS
access-control-allow-origin: *, *
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0172922aaad60e0a47550f198dd8c592
35012ddedd48780883edb4d7ff1ecb312aa432f6
30c81ef1914a3af3de14184d07e66799848dbbf44baa1835ecf3aa235c6f3acf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5317
Cache-Control: max-age=99547
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:32:59 GMT
Etag: "63da5061-1d7"
Expires: Fri, 03 Feb 2023 13:12:06 GMT
Last-Modified: Wed, 01 Feb 2023 11:43:29 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.56.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.56.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mg11/J0Y24rFUB84vx2CGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TkOCLHIlpFfEw2eBr5v+IFN1z9A=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675328235317%22
35.241.9.150200 OK 21 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675328235317%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (20973), with no line terminators
Hash 82508944f3f2fa6a2da4930d583ff3c2
72e544c72c3513f9127997cdce9f4cf86b80655c
163fe3325d970f2b80e553e1647d2512e7b8b19228e1dccd149bb6a6e0c9edb7
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221675328235317%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 20973
via: 1.1 google
date: Thu, 02 Feb 2023 09:02:04 GMT
last-modified: Thu, 02 Feb 2023 08:57:15 GMT
content-type: application/json
age: 1855
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675276638966&_since=%221666204638208%22
35.241.9.150200 OK 27 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675276638966&_since=%221666204638208%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (26765), with no line terminators
Hash 2c1cc58703fc40ca187f64e8cba5bfe8
ec4585bd17814a72a12edbc7a2cf8b236b02d67b
ca2253dcc795afb0a3a9cd46885f3a8591b68576f50c80e6dc871eeb4006638a
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675276638966&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 26765
via: 1.1 google
date: Thu, 02 Feb 2023 08:37:11 GMT
age: 3348
last-modified: Wed, 01 Feb 2023 18:37:19 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/css/head.css?v=20230127_134141
45.60.76.121200 OK 25 kB URL HTTP/2 static.capital.com/css/head.css?v=20230127_134141
IP 45.60.76.121:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 5a1f00ff3cce0f1042c459a617b59178
75961bca06ba5dfce07456b2de4e4fcfd084497c
476bf2bedd0e5653f192131f55651eeb0f75ffb4b682742eb22d322e2758f44e
GET /css/head.css?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
etag: "6d671eae095c72ea28804b1ecb1ee1d5"
last-modified: Fri, 27 Jan 2023 10:42:01 GMT
content-type: text/css
content-length: 24653
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 41) q(0 -1 -1 1) r(0 -1)
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YfWYrKSKooudfp8owVcrmWl7jcbgLQQREGNjLnVK7E+/SiA34U0CsDWMSiMPT4JU+kfqgVr8KJ0=
x-amz-request-id: T3XCJNYFXK7MV326
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3580
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 08:36:05 GMT
content-type: application/json
age: 3414
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/finger.svg
45.60.76.121200 OK 937 B URL HTTP/2 static.capital.com/img/lp/smart-invest/finger.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (375)
Hash 9c700d088357ae9cbed0c57e5bae05ac
aa5d9557e1f5a132fd8d300d6662c08cb9b3bf7b
ba0a1587a234ccf487d7ad4f0865d5cd38a3a31467e0b01f62fef08fd27f2652
GET /img/lp/smart-invest/finger.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "c76d6e55a90a5265fbfb9e3e2d6dfea4"
last-modified: Tue, 29 Nov 2022 11:01:15 GMT
content-type: image/svg+xml
content-length: 937
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 159) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/icon_graphic.svg
45.60.76.121200 OK 653 B URL HTTP/2 static.capital.com/img/lp/smart-invest/icon_graphic.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 526930d82ad488c7d2eae37285bf97e2
2faec2a46936a4145a036f4c007b471a0177159c
49c9bff32baf1cb5fa69a3474fce3456ac25b150bbdcf40a2b22b6190a2e5f26
GET /img/lp/smart-invest/icon_graphic.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "939d8f41f354438bdd28eabefbda1d69"
last-modified: Tue, 29 Nov 2022 11:01:15 GMT
content-type: image/svg+xml
content-length: 653
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 162) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
45.60.76.121200 OK 28 kB URL HTTP/2 capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
IP 45.60.76.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (593), with CRLF, LF line terminators
Hash b90237623c5dc9a6060bf88373527051
b03e5344d45094093bc45787580a1c0407d11acd
9bca434c23e5ad3ca39735bdaa480c32b2788debf16b7e25bdb9d96fe33ffd89
GET /pl/trade-crypto?c=41100_5060629&pid=cellxpert HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:32:59 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; Expires=Thu, 09 Feb 2023 09:32:59 GMT; Path=/
AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; Expires=Thu, 09 Feb 2023 09:32:59 GMT; Path=/; SameSite=None; Secure
__cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; path=/; HttpOnly
cc_ab52=1; expires=Mon, 21-Nov-2050 14:32:50 GMT; Max-Age=877323591; path=/; domain=.capital.com
visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; expires=Thu, 01 Feb 2024 22:50:42 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; path=/; Domain=.capital.com; Secure; SameSite=None
server: nginx
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-5802944 NNNN CT(41 41 0) RT(1675330378699 36) q(0 0 1 0) r(2 2) U12
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/money.svg
45.60.76.121200 OK 1.1 kB URL HTTP/2 static.capital.com/img/lp/smart-invest/money.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e879824ce4aeb898a34986d8b52bbac7
0d6a8bb7b7ca6855bad2025ffe9e17b976874f8d
7b863cfda340ffcc9f5cb41300efaa6c76d9a14c6e4f1722b79939446710ef56
GET /img/lp/smart-invest/money.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "05c34d68ccf2ce08cb6593932aabc1ba"
last-modified: Tue, 29 Nov 2022 11:01:15 GMT
content-type: image/svg+xml
content-length: 1050
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 164) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/js/vendor/jquery_2.2.4.min.js
45.60.76.121200 OK 30 kB URL HTTP/2 static.capital.com/js/vendor/jquery_2.2.4.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (32065)
Hash fd8818bc6599c9e113b53c80afbde5ad
445d4b912390077aa05ad6eb79f3c4b2d9e0ecca
e583445a8323a41682a930c4abcf6b2bb4740c9cab6f993bdfbe3bddc95e4c3a
GET /js/vendor/jquery_2.2.4.min.js HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "2f6b11a7e914718e0290410e85366fe9"
last-modified: Fri, 28 Oct 2022 09:51:00 GMT
content-type: application/javascript
content-length: 29822
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 164) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/logo.svg
45.60.76.121200 OK 2.2 kB URL HTTP/2 static.capital.com/img/logo.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (830)
Hash dbdd519c357fb7168bbc92606fee5e0c
66a6f5a54183a37222ab3a1f2ff0f63fc81f5f9c
f983abf281f42e4b75f05dea0e2a7260a2f7a3272864e50cc424591f7d1c8482
GET /img/logo.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "1819484b34bbbd4037fe778cea130168"
last-modified: Thu, 03 Nov 2022 11:32:47 GMT
content-type: image/svg+xml
content-length: 2167
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 165) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 772e98ffb218d146fb3dcc0ce821fbe8
f1f77d13cb54909cf8645417a4eaec9db01a7067
370a02f24b8582aa498635bd1ac597180dbb093e32ebddab7891d519abd5fd91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "370A02F24B8582AA498635BD1AC597180DBB093E32EBDDAB7891D519ABD5FD91"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6898
Expires: Thu, 02 Feb 2023 11:27:57 GMT
Date: Thu, 02 Feb 2023 09:32:59 GMT
Connection: keep-alive
static.capital.com/img/icons/ico-popup-profile-4.svg?v=20230127_134141
45.60.76.121200 OK 332 B URL HTTP/2 static.capital.com/img/icons/ico-popup-profile-4.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (454)
Hash fe8a1c547c0694567e458b452d10d05d
9afcc84aa775ce295a5f2a3ba4ae0ea5fedf5f3d
ffb91c1217f528062eab4033b845bc89e9ba087b2dc3364849a9c484ec8c836c
GET /img/icons/ico-popup-profile-4.svg?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "3e13b513b3f34dd684782273d1d9cde4"
last-modified: Fri, 27 Jan 2023 10:42:32 GMT
content-type: image/svg+xml
content-length: 332
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 166) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/js/vendor/wow.min.js
45.60.76.121200 OK 2.7 kB URL HTTP/2 static.capital.com/js/vendor/wow.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (8343), with no line terminators
Hash 62b1d8c59f32de46f9da74cb153b3e6a
82b58fa25b43e4d52c13a897a251305451008199
b0de37180ab08a12808877bda4f8d7fcd6cff1fa9258a4c9957028500f4a6535
GET /js/vendor/wow.min.js HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "c8efd650047c27e31f4a1e450d844e07"
last-modified: Thu, 03 Nov 2022 11:33:12 GMT
content-type: application/javascript
content-length: 2679
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 167) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/js/vendor/slick.min.js
45.60.76.121200 OK 10 kB URL HTTP/2 static.capital.com/js/vendor/slick.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (42862)
Hash 70fc878e287fa6ec3329765500530e14
228aada9212c2d948f2c75b1d693890c77bf1234
8ea5b81222573b447160fbeac62b35188f83464143199586eccd87505208e308
GET /js/vendor/slick.min.js HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "d5a61c749e44e47159af8a6579dda121"
last-modified: Fri, 28 Oct 2022 09:51:01 GMT
content-type: application/javascript
content-length: 10442
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 169) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/js/vendor/lozad.min.js
45.60.76.121200 OK 1.3 kB URL HTTP/2 static.capital.com/js/vendor/lozad.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (1499)
Hash 3d1aa566ee4465c12e268f95f18fb9ff
d32d21109450890cf75824e91de2e872ccf2478f
0363c61c202007788df0e2d9c2d65dd98632afefe4af232a0fae35d163274620
GET /js/vendor/lozad.min.js HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "0f856c2800426884c2acdd3e1819f3f7"
last-modified: Thu, 03 Nov 2022 11:33:12 GMT
content-type: application/javascript
content-length: 1256
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 170) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/js/ready/js_chart_base.min.js?v=20230127_134141
45.60.76.121200 OK 3.8 kB URL HTTP/2 static.capital.com/js/ready/js_chart_base.min.js?v=20230127_134141
IP 45.60.76.121:0
File type HTML document, ASCII text, with very long lines (12708), with no line terminators
Hash 365b39f769f2293ac9d4fc36835950e8
6e2f06d5b0090af2b6ab83438f17b926ac1c0112
dda2dc05a0951ee8c0c9bdbefbbfb427f038b48bebdb79141366fd242f7895af
GET /js/ready/js_chart_base.min.js?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "b517dfacf34c560aaecb8e4abadfdaf5"
last-modified: Fri, 27 Jan 2023 10:42:58 GMT
content-type: application/javascript
content-length: 3820
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 172) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=637119542
45.60.76.121200 OK 22 kB URL HTTP/2 capital.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=637119542
IP 45.60.76.121:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 82a9dc9aef1ee1f97ce5d6365d0e6b05
eba849a8487932001879ab0d28ab638370f71e18
a2713cdaa2db3f279fea433c5d4181935fae6c5e70b3aecc953b9b2208fe017e
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=637119542 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 22398
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
static.capital.com/js/ready/p_main.js?v=20230127_134141
45.60.76.121200 OK 28 kB URL HTTP/2 static.capital.com/js/ready/p_main.js?v=20230127_134141
IP 45.60.76.121:0
File type Unicode text, UTF-8 text, with very long lines (25187)
Hash 7e608195ea056a6b470f390ecfe5651e
6c43d7c063825ea20324160c1956b2de46d13439
243a91caf7031b6af93a14f642dc7c1e3b9d191b345299c92f5148028c37bfd8
GET /js/ready/p_main.js?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "db89b45ff7b4ec03c50597664c07c013"
last-modified: Fri, 27 Jan 2023 10:42:59 GMT
content-type: application/javascript
content-length: 27522
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 183) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/images/spriteSvg/common.svg?v=20230127_134141
45.60.76.121200 OK 57 kB URL HTTP/2 capital.com/images/spriteSvg/common.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (11655)
Hash 7475271585ad2d7cdcdffb8f0a7e0561
21ce03cc69e00ecdf729dd13f2d4452ad01e7b7c
93fc396a959f82ef674a96a5928a9d8232c629c63adf8e4d37d71440ea2d6a7b
GET /images/spriteSvg/common.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3ab04-2419a"
last-modified: Fri, 27 Jan 2023 10:44:20 GMT
content-type: image/svg+xml
content-length: 57195
content-encoding: gzip
cache-control: max-age=11500, public
expires: Thu, 02 Feb 2023 12:44:39 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 610) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Wed, 01 Feb 2023 16:22:32 GMT
Age: 61827
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
34.111.73.144200 OK 807 kB URL HTTP/2 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP 34.111.73.144:0
Size 807 kB (807180 bytes)
Hash 914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DYhzcZihah3+nn9uccTU0QhbDsrYIGJkUq7DnVhCQOs6Y7PkJ/a98vsBufG9wJH7B/5czaGL4HQ=
x-amz-request-id: AQB6GT81KDJK8DAX
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Sat, 28 Jan 2023 15:34:35 GMT
age: 410304
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/css/lp_smart-invest.css?v=20230127_134141
45.60.76.121200 OK 3.6 kB URL HTTP/2 static.capital.com/css/lp_smart-invest.css?v=20230127_134141
IP 45.60.76.121:0
File type ASCII text, with very long lines (15485), with no line terminators
Hash c63d5d77e5745e44ac2ff24b09df7883
b985edf48eaecfd61b8cfa891be22034d68881d9
637b316d41b02c5a9bf3ba97d6dff60db26241d95939390593216182add36671
GET /css/lp_smart-invest.css?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "600279ff36d7d9e3a3bb0a4050d21f5e"
last-modified: Fri, 27 Jan 2023 10:42:01 GMT
content-type: text/css
content-length: 3595
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 325) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-regular-full.woff2
45.60.76.121200 OK 25 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-regular-full.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 25040, version 1.0\012- data
Hash 76ec651ef173202d0c9ce75bd38f3246
3b308598d4b8b04b6656d95a2ab59db39bac72b4
edf920d9f46ad979588d8024676d33101fc13547d486746fbaa72245809dd68f
GET /app-site-fonts/locales/gilroy-regular-full.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "76ec651ef173202d0c9ce75bd38f3246"
last-modified: Thu, 13 Oct 2022 09:03:53 GMT
content-type: font/woff2
content-length: 25040
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET, HEAD
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=9C4sWRCnnDJ+Kqp/pd7ICEuD22MAAAAAsieKd/vSPgCmbfITM7Owag==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 368) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-semibold-full.woff2
45.60.76.121200 OK 26 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-semibold-full.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 26428, version 1.0\012- data
Hash 6ef53b8e73c20f4979c870313b193cc7
bd75d474aa5f08b9238e9cb801a65e137cc9cf79
efc6f66a1bb595c14deff105a545b06d830ac6b1f45d22d2e63cb944ece67c2e
GET /app-site-fonts/locales/gilroy-semibold-full.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "6ef53b8e73c20f4979c870313b193cc7"
last-modified: Thu, 03 Nov 2022 11:32:14 GMT
content-type: font/woff2
content-length: 26428
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET, HEAD
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=/ma7aKjyGxN+Kqp/pd7ICEuD22MAAAAAjvmLEYdeQMSVppH4aB8aoQ==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 368) q(0 -1 -1 3) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-regular-en.woff2
45.60.76.121200 OK 13 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-regular-en.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 13220, version 1.0\012- data
Hash bd2384327622848b1723ea6fac8d59e8
33cc47048985bd121b1145d57fdcca75be778897
0300ebca18efddca170dfa954cc59bb8b2594c1dd5b39571d4019a4cfc96b5aa
GET /app-site-fonts/locales/gilroy-regular-en.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "bd2384327622848b1723ea6fac8d59e8"
last-modified: Fri, 28 Oct 2022 09:50:02 GMT
content-type: font/woff2
content-length: 13220
access-control-allow-methods: GET, HEAD
access-control-allow-origin: https://capital.com
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=ns//Y0FcCmd+Kqp/pd7ICEuD22MAAAAA/K4b2y/ZOBr+bJrnPniKNg==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 371) q(0 -1 -1 2) r(0 -1)
X-Firefox-Spdy: h2
capital.com/img/payments-sprite.svg?v=20230127_134141
45.60.76.121200 OK 32 kB URL HTTP/2 capital.com/img/payments-sprite.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20264)
Hash c1dc0720efd96775e03b47c4c8671892
8c07a88fd4ef5e644ed39e2240bf372859ae18d2
207fe7fad01c8a5b9c2e271e0e220160a1ca579e35f17900932ca9e670cea9b3
GET /img/payments-sprite.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3aade-dffd"
last-modified: Fri, 27 Jan 2023 10:43:42 GMT
content-type: image/svg+xml
content-length: 31736
content-encoding: gzip
cache-control: max-age=2079710, public
expires: Sun, 26 Feb 2023 11:14:49 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 837) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/img/icons/social/google-sm.svg?v=20230127_134141
45.60.76.121200 OK 557 B URL HTTP/2 capital.com/img/icons/social/google-sm.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash dc75ec564c49e03146640459211a9a51
09ec45f0f17c1a39df0be682eebe8bc27dfced0d
dc6527e0decc15f8197d2f8f292f0d7dc9646442948710e0e37c814800f39ccb
GET /img/icons/social/google-sm.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3ab04-4bd"
last-modified: Fri, 27 Jan 2023 10:44:20 GMT
content-type: image/svg+xml
content-length: 557
content-encoding: gzip
cache-control: max-age=2078048, public
expires: Sun, 26 Feb 2023 10:47:07 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 840) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/css/homepage.css?v=20230127_134141
45.60.76.121200 OK 827 B URL HTTP/2 static.capital.com/css/homepage.css?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1505)
Hash 1d4051dc1690a0885813f08d56b0070b
e57c3955b7588b036fcf97c441f8dd0f337e3836
a4bdc2bce2c0ec7b3bccc440add4ca0003b6e2d60217048be6ceb935befa1199
GET /css/homepage.css?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "c5544d4fc43595f028f884bcf778eb6f"
last-modified: Fri, 27 Jan 2023 10:42:00 GMT
content-type: text/css
content-length: 90917
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 327) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/images/spriteSvg/trustpilot.svg?v=20230127_134141
45.60.76.121200 OK 4.0 kB URL HTTP/2 capital.com/images/spriteSvg/trustpilot.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8522)
Hash a92b168b358c904e5d2928153e93a3a4
a44def6bd62685fc8a0182ff64baf79e9dac92e5
b32aceb48e8c1c0ee4cb83d699bd2d14423198909098e7fee484c4a79a676477
GET /images/spriteSvg/trustpilot.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3ab04-27ae"
last-modified: Fri, 27 Jan 2023 10:44:20 GMT
content-type: image/svg+xml
content-length: 3955
content-encoding: gzip
cache-control: max-age=14012, public
expires: Thu, 02 Feb 2023 13:26:31 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 842) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/img/icons/social/fb-round.svg?v=20230127_134141
45.60.76.121200 OK 312 B URL HTTP/2 capital.com/img/icons/social/fb-round.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (386)
Hash 84fc379a32a0064677400f9389cdee71
75643b4c2d7786a6c053a6600390596b91c2502c
839171cd941c109b3d6338021d28c67940d61f875ce2a5f8484e9c9c3e296406
GET /img/icons/social/fb-round.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3ab04-1e1"
last-modified: Fri, 27 Jan 2023 10:44:20 GMT
content-type: image/svg+xml
content-length: 312
content-encoding: gzip
cache-control: max-age=2078048, public
expires: Sun, 26 Feb 2023 10:47:07 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 843) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
capital.com/img/icons/close_big.svg?v=20230127_134141
45.60.76.121200 OK 195 B URL HTTP/2 capital.com/img/icons/close_big.svg?v=20230127_134141
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 0d2fd34309ef3d0f253c46987a1353d1
a7fa3da3ba62c5582370ebcf0ae566b75c1df0d9
9d2e3f2d1964b8451e5995dd65bc695cfe07353b3da8d2ad0c3e56d72ff3e473
GET /img/icons/close_big.svg?v=20230127_134141 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63d3ab04-103"
last-modified: Fri, 27 Jan 2023 10:44:20 GMT
content-type: image/svg+xml
content-length: 195
content-encoding: gzip
cache-control: max-age=2078048, public
expires: Sun, 26 Feb 2023 10:47:07 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 844) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675307251799&_since=%221666279968541%22
35.241.9.150200 OK 70 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675307251799&_since=%221666279968541%22
IP 35.241.9.150:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f80aa7b971bf03e96efe8784f42b1b0f
abe6c41a8c94e61179be1225e2c5a23671326b08
c7c2e2d8539ab17f90232e2d7d91daf994e974661d07d831c4461ef854f23db2
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675307251799&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 69787
via: 1.1 google
date: Thu, 02 Feb 2023 08:51:31 GMT
age: 2488
last-modified: Thu, 02 Feb 2023 03:07:31 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/img/sprite4.png?v=04
45.60.76.121200 OK 49 kB URL HTTP/2 static.capital.com/img/sprite4.png?v=04
IP 45.60.76.121:0
File type PNG image data, 2342 x 2085, 8-bit colormap, non-interlaced\012- data
Hash 89fd9e7c38b6c8d2d2aa91a084dc82c7
114669326375896b9a6401727ceb2899e63468e7
62ed6df21f4a5a363f398368a11fbcf2330d52c900bba3b26d74f0efd65d97d2
GET /img/sprite4.png?v=04 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/head.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "89fd9e7c38b6c8d2d2aa91a084dc82c7"
last-modified: Thu, 03 Nov 2022 11:33:04 GMT
content-type: image/png
content-length: 49254
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 432) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/homepage/sprite-homepage.png
45.60.76.121200 OK 12 kB URL HTTP/2 static.capital.com/img/homepage/sprite-homepage.png
IP 45.60.76.121:0
File type PNG image data, 1067 x 857, 8-bit colormap, non-interlaced\012- data
Hash 3439ee2cfbf2525409b1d6c3c5b7b275
ffbb0492ddbfca1dbc272e8c655dcff84dde2936
49af2fe727f59d6b26a890372b806e5ca374f3b601f3363963362b11645a035c
GET /img/homepage/sprite-homepage.png HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/head.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "3439ee2cfbf2525409b1d6c3c5b7b275"
last-modified: Thu, 03 Nov 2022 11:32:42 GMT
content-type: image/png
content-length: 12389
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 436) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191304 Not Modified 0 B URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 29 Jan 2023 18:44:47 GMT
If-None-Match: "e76071a28ee566dababb3834f46d68ed"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3580
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-bold-full.woff2
45.60.76.121200 OK 26 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-bold-full.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 26412, version 1.0\012- data
Hash 7faaa183bc9dff6dc7b0367268a6fa89
48fd14793071ed8d7ba2f46683026abb7978002b
de678cc548873dc7cd31c1481fa1f2508d414385bcd6bd1de64e666fd36cd516
GET /app-site-fonts/locales/gilroy-bold-full.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "7faaa183bc9dff6dc7b0367268a6fa89"
last-modified: Thu, 03 Nov 2022 11:32:14 GMT
content-type: font/woff2
content-length: 26412
access-control-allow-methods: GET, HEAD
access-control-allow-origin: https://capital.com
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=0XHtDn+EXwB+Kqp/pd7ICEuD22MAAAAAR93wlM9C+7VBwaYgE8T13Q==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 448) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/svg-fonts/icomoon.ttf?3pc66c
45.60.76.121200 OK 2.1 kB URL HTTP/2 static.capital.com/app-site-fonts/svg-fonts/icomoon.ttf?3pc66c
IP 45.60.76.121:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 9b092ddf7b338d086bbcf019e5485732
025d98d30afd69ca403d14eaa91ed85d2c3f88c1
370f0d02647db886e8f2901bb8ddb17cb155df07410aa82ddd846ef32e0270b0
GET /app-site-fonts/svg-fonts/icomoon.ttf?3pc66c HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "9b092ddf7b338d086bbcf019e5485732"
last-modified: Thu, 03 Nov 2022 11:32:14 GMT
content-type: font/ttf
content-length: 2076
access-control-allow-methods: GET, HEAD
access-control-allow-origin: https://capital.com
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=6NvlI3dvFCh+Kqp/pd7ICEuD22MAAAAAWB0tnbWo1uXVppP+UMRoNw==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 485) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
img.capital.com/imgs/blocks/1440x700x1/Crypto_2x-1-_9.jpg
45.60.76.121200 OK 48 kB URL HTTP/2 img.capital.com/imgs/blocks/1440x700x1/Crypto_2x-1-_9.jpg
IP 45.60.76.121:0
File type JPEG image data, baseline, precision 8, 1440x700, components 3\012- data
Hash 5db28823cd3360c3d931750fc70b80e1
c7a629250a2a1ea762bbd58bcee2c047c8e2fc48
4c6ba95014424e1179c217708c472cd87cfe9bbc39b7fcad6aed283164ddd8ca
GET /imgs/blocks/1440x700x1/Crypto_2x-1-_9.jpg HTTP/1.1
Host: img.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "ee74ceb0a75e01a594139601a13f6ddd"
last-modified: Fri, 18 Mar 2022 18:07:49 GMT
content-type: image/jpeg
content-length: 48084
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 520) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1674595012490&_since=%221662044085942%22
35.241.9.150200 OK 4.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1674595012490&_since=%221662044085942%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (4318), with no line terminators
Hash f907735e3715dc6d1879d3a6acc28609
9ef4d7f2c5b9b4583d992295b72d5f3a635b065e
b4977e583a6818ad9317b1d87e0536bdbbee1d11ae7a911f65c415f385739ba1
GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1674595012490&_since=%221662044085942%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 4318
via: 1.1 google
date: Thu, 02 Feb 2023 08:59:58 GMT
age: 1982
last-modified: Wed, 01 Feb 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5BLNS36
142.250.74.40200 OK 89 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5BLNS36
IP 142.250.74.40:0
File type ASCII text, with very long lines (25694)
Hash 05e0dd264d70096cc121b370dae8f327
b5ea45b952dab6ac31bafb4f8eb9f71a04d712ea
9115edd1f2db650589b94079dabb69787c22fde267e9d2ec562e114634d76d56
GET /gtm.js?id=GTM-5BLNS36 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 09:33:00 GMT
expires: Thu, 02 Feb 2023 09:33:00 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191304 Not Modified 0 B URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 29 Jan 2023 18:44:47 GMT
If-None-Match: "e76071a28ee566dababb3834f46d68ed"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3581
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capital.com/service
45.60.76.121200 OK 0 B IP 45.60.76.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /service HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 127
Origin: https://capital.com
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto; __cp_AB_testSample_var=variant2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: text/html; charset=UTF-8
content-length: 0
set-cookie: AWSALB=rm7PnnPvE8wMH8AyjeVnyR9yYs4RkpxgCXjlLj96D3/0CzrAha8p4L72RNRu/l1Txa66p3ViY2v40h6hrCJFxGoZbq205gXNaV3Q86xsHOTnqLgApAG8Gj3LJ2tJ; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=rm7PnnPvE8wMH8AyjeVnyR9yYs4RkpxgCXjlLj96D3/0CzrAha8p4L72RNRu/l1Txa66p3ViY2v40h6hrCJFxGoZbq205gXNaV3Q86xsHOTnqLgApAG8Gj3LJ2tJ; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
server: nginx
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-5802944 PNNN RT(1675330378699 931) q(0 0 0 -1) r(2 2) U6
X-Firefox-Spdy: h2
capital.com/_Incapsula_Resource?SWKMTFSR=1&e=0.553329635933981
45.60.76.121200 OK 1 B URL HTTP/2 capital.com/_Incapsula_Resource?SWKMTFSR=1&e=0.553329635933981
IP 45.60.76.121:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.553329635933981 HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto; __cp_AB_testSample_var=variant2; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
capital.com/js/js_worker.js
45.60.76.121200 OK 3.7 kB URL HTTP/2 capital.com/js/js_worker.js
IP 45.60.76.121:0
Hash 24bdb67e87a0be986bce18002bc4028c
ac092339757cc759034ec227f966ddc30b9bf089
2fbb30d5dbb28ad97fa71de3ee7e7ee8ce7c6a9392d022b549e27a9d3a74d41b
GET /js/js_worker.js HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto; __cp_AB_testSample_var=variant2; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; ___utmvc=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
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63a43fd8-335e"
last-modified: Thu, 22 Dec 2022 11:30:32 GMT
content-type: application/javascript
content-length: 3673
content-encoding: gzip
cache-control: max-age=529553, public
expires: Wed, 08 Feb 2023 12:38:52 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:43:55 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 1174) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1742), with no line terminators
Hash 22092e301760ed865af6ece6eb04b1be
557b52e40ec2d8f2fe080580a1858c8666791bf2
12afba8f5929ab372e9cffbbe57e8bb562c60fc0a98b751c69de1adc04fb4aea
GET /v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1742
via: 1.1 google
date: Thu, 02 Feb 2023 09:21:05 GMT
age: 715
last-modified: Wed, 01 Feb 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/form.svg
45.60.76.121200 OK 458 B URL HTTP/2 static.capital.com/img/lp/smart-invest/form.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b0b7a0bbd1b7e5e8704c3fc1a599bd1
e59cfe64c6328c1ac5a61da01b1ef9cdcb9b3616
e47947c7ccb99dbb3cba49d41c0339a4739280a5cb4061915795e306261430a5
GET /img/lp/smart-invest/form.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/lp_smart-invest.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "00cc4d7b520b0fdb760ecf74dcfbc7e5"
last-modified: Thu, 15 Dec 2022 12:44:15 GMT
content-type: image/svg+xml
content-length: 458
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 826) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191304 Not Modified 0 B URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 29 Jan 2023 18:44:47 GMT
If-None-Match: "e76071a28ee566dababb3834f46d68ed"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3581
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/img/badge-appstore/1x/16.png
45.60.76.121200 OK 1.4 kB URL HTTP/2 static.capital.com/img/badge-appstore/1x/16.png
IP 45.60.76.121:0
File type PNG image data, 160 x 48, 8-bit colormap, non-interlaced\012- data
Hash 5fbc2f9e048303179ddc89c62c96afb2
5b3d7beb602c6fdf9abdb86cdbd1eaadaca18c55
c3b755711ea49a227b5b719282dbfa177b3b89b81b618e54f163d76da43a950c
GET /img/badge-appstore/1x/16.png HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "5fbc2f9e048303179ddc89c62c96afb2"
last-modified: Tue, 29 Nov 2022 11:00:57 GMT
content-type: image/png
content-length: 1431
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 831) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/badge-googleplay/1x/16.png
45.60.76.121200 OK 1.9 kB URL HTTP/2 static.capital.com/img/badge-googleplay/1x/16.png
IP 45.60.76.121:0
File type PNG image data, 160 x 48, 8-bit colormap, non-interlaced\012- data
Hash 5cd481c9ccf5b12fb7f7c26eb1f9668c
67971893864de643a6cbeb77af8bafcd5d165b6d
78c4efe8e7d7c6803a2ae729b73a4c465cdb41501b7cf8a352fd03b5dcddc691
GET /img/badge-googleplay/1x/16.png HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "5cd481c9ccf5b12fb7f7c26eb1f9668c"
last-modified: Tue, 29 Nov 2022 11:00:58 GMT
content-type: image/png
content-length: 1938
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 833) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/line.svg
45.60.76.121200 OK 437 B URL HTTP/2 static.capital.com/img/lp/smart-invest/line.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b18ed6abd8f26af81f42f81450828a2e
05736109e79872b0012a553c8b65098126e40597
7bab5e01991eeb2885c3d6e9ae1e323b1e0e60543ba9c0059b3c098b7e8d3661
GET /img/lp/smart-invest/line.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/lp_smart-invest.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "b4085b32f04b22610ab53de9778237b4"
last-modified: Thu, 24 Nov 2022 11:39:00 GMT
content-type: image/svg+xml
content-length: 437
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 836) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/arrows.svg
45.60.76.121200 OK 458 B URL HTTP/2 static.capital.com/img/lp/smart-invest/arrows.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bbc905f9446099c0f3beba184f55fff6
fb823af22efb47e85bb85b523608a463e4dcb5b8
ed9aa7267b08b77283927746e0f8070a3b594d45c30d3395ee706f6fed822e81
GET /img/lp/smart-invest/arrows.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/lp_smart-invest.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "2e1ca2893088a2a3217b68459d252f0e"
last-modified: Thu, 10 Nov 2022 12:37:00 GMT
content-type: image/svg+xml
content-length: 458
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 837) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/images/spritePng/icon/markets_icon.png?v1
45.60.76.121200 OK 19 kB URL HTTP/2 static.capital.com/images/spritePng/icon/markets_icon.png?v1
IP 45.60.76.121:0
File type PNG image data, 288 x 288, 8-bit colormap, non-interlaced\012- data
Hash a0156e72639c4401bcc290e4e7427570
79f3d877671748af905e56b84b4f9f02b7f8a21c
4c49bd4478543bc15f50796d7e93496ed4529a6f7e54b4ea224f779890528c3c
GET /images/spritePng/icon/markets_icon.png?v1 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "a0156e72639c4401bcc290e4e7427570"
last-modified: Thu, 12 Jan 2023 11:35:53 GMT
content-type: image/png
content-length: 19270
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 841) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/lp/smart-invest/Dop.jpg
45.60.76.121200 OK 54 kB URL HTTP/2 static.capital.com/img/lp/smart-invest/Dop.jpg
IP 45.60.76.121:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x628, components 3\012- data
Hash 9ce349a66f17c9b94d8bbb682ddb3664
becdfbbdb9d4f0d7a8a945ce82cff26be64220b2
ccee521fd073822b9ca84e93789be59b084c9b24a16a2cbb8d0642b3fce8053e
GET /img/lp/smart-invest/Dop.jpg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/lp_smart-invest.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "9ce349a66f17c9b94d8bbb682ddb3664"
last-modified: Thu, 03 Nov 2022 11:32:50 GMT
content-type: image/jpeg
content-length: 53728
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 846) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/images/icons/stars2.svg
45.60.76.121200 OK 623 B URL HTTP/2 static.capital.com/images/icons/stars2.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (370)
Hash 5e6e646c71e6c4b4caa27fdc19a43f53
fd062240518557ca6504bb8904a475c27391bdf2
4d3420a2b8b9f886febe94e6517bffe1d363285e98b3f1dfc0a33667f933cd86
GET /images/icons/stars2.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "c511f577cda29ad2b7fe45dfbf78b942"
last-modified: Thu, 03 Nov 2022 11:32:24 GMT
content-type: image/svg+xml
content-length: 623
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=vpfLT/M8an9+Kqp/pd7ICEuD22MAAAAAdByGEyAp54GVQwKEeJ8tug==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 848) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/images/icons/stars.svg
45.60.76.121200 OK 371 B URL HTTP/2 static.capital.com/images/icons/stars.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 565334d1bb6cc37874f0b6facd412563
d75260704f42b7e72d3edd7c6473ea230187c73f
8403eb6740eaade7b7bd3e8348de179904b7a2ea7f08966f34543a6fe7b09073
GET /images/icons/stars.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "2d1e9be03d358cbfe66fbeba45d85d66"
last-modified: Thu, 13 Oct 2022 09:04:04 GMT
content-type: image/svg+xml
content-length: 371
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=IjIrPNNHVl5+Kqp/pd7ICEuD22MAAAAALcocBeWu61WbPivxmJ55rw==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 850) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/icons/ico-logout-user.svg
45.60.76.121200 OK 762 B URL HTTP/2 static.capital.com/img/icons/ico-logout-user.svg
IP 45.60.76.121:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (570)
Hash 793dd6fd85aac4651a6368881da428dc
940f6ef88ac5b10a39db740f75573b58926747bd
70ce521b27f8274fa808a75bd649dba8654b097befc5cba2ceb8704916dab69c
GET /img/icons/ico-logout-user.svg HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.capital.com/css/homepage.css?v=20230127_134141
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "e3e07a8a12266f2cbb819d5b89f14079"
last-modified: Thu, 03 Nov 2022 11:32:45 GMT
content-type: image/svg+xml
content-length: 762
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 853) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-medium-full.woff2
45.60.76.121200 OK 26 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-medium-full.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 26076, version 1.0\012- data
Hash 44c5c3a6778c2fe5971b0dd1c3a3934b
d851cddac40d7cc7ecfa6cf2f5d7bd4cd7addd50
68c23005d39f3f90c795acf2af895c5cc506f861cf49050ecb7162447ca899fa
GET /app-site-fonts/locales/gilroy-medium-full.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "44c5c3a6778c2fe5971b0dd1c3a3934b"
last-modified: Thu, 03 Nov 2022 11:32:14 GMT
content-type: font/woff2
content-length: 26076
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET, HEAD
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=ee1pJgKaEX1+Kqp/pd7ICEuD22MAAAAAOTBVEsI84Q0mhk8mv7xdcw==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 855) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/app-site-fonts/locales/gilroy-medium-en.woff2
45.60.76.121200 OK 14 kB URL HTTP/2 static.capital.com/app-site-fonts/locales/gilroy-medium-en.woff2
IP 45.60.76.121:0
File type Web Open Font Format (Version 2), TrueType, length 13876, version 1.0\012- data
Hash b19cd681523e89b29bbc5b9f7f3dfac6
b2303c3a96bfe66091853fa9173fa35f06030cf7
047e7ea24d283f72d68224dc2f6f7b82147bf4c9a1e116f494d80040896aa270
GET /app-site-fonts/locales/gilroy-medium-en.woff2 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capital.com
Connection: keep-alive
Referer: https://static.capital.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "b19cd681523e89b29bbc5b9f7f3dfac6"
last-modified: Thu, 03 Nov 2022 11:32:14 GMT
content-type: font/woff2
content-length: 13876
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET, HEAD
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:32:59 GMT
date: Thu, 02 Feb 2023 09:32:59 GMT
set-cookie: visid_incap_2784786=2TD6+JSWRJ+laDUlnDCoCUuD22MAAAAAQUIPAAAAAABv3BX6+IMNKIzQCq0VBknc; expires=Thu, 01 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.capital.com; Secure; SameSite=None
incap_ses_633_2784786=HvBgAfWWT2t+Kqp/pd7ICEuD22MAAAAAcyTE2e1VUzl5aDSFupBJmA==; path=/; Domain=.capital.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 859) q(0 -1 -1 0) r(0 -1)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1719), with no line terminators
Hash 91fc66b0cc0a6a614095f1a64df0ae3b
36d83cd4aac353d81990df94ac1e5466483ab145
fee8713249b5cc35e5a4bb521c3a645c8b2a0c927c8384b99cf4f3a046e5d316
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1719
via: 1.1 google
date: Thu, 02 Feb 2023 08:44:04 GMT
age: 2936
last-modified: Tue, 31 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
static.capital.com/css/flags.css?v=20230127_134141
45.60.76.121200 OK 5.0 kB URL HTTP/2 static.capital.com/css/flags.css?v=20230127_134141
IP 45.60.76.121:0
File type ASCII text, with very long lines (40588), with no line terminators
Hash 38c1b5af600c980f3b93bf609fc1ae1d
248fa8e82320c7799de3e47ffe37b23270ac0cb7
5c07e3d844917f791eebbad330325f9d19f370bd008265157c59ea1cbf59f2b2
GET /css/flags.css?v=20230127_134141 HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "8bf6a4583d441ec8002b1cc9a6c89f71"
last-modified: Fri, 27 Jan 2023 10:42:01 GMT
content-type: text/css
content-length: 4973
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:33:00 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 907) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191304 Not Modified 0 B URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 29 Jan 2023 18:44:47 GMT
If-None-Match: "e76071a28ee566dababb3834f46d68ed"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3581
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 549065e71a26c2577764d015d808d7d3
f6475cfaae1cb929c10acdb06bcfc45638bef1ba
d6f5c56c77dc55626cf7b22f25709984c0b1b7a16b547998893e42719094128a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 09:33:00 GMT
Last-Modified: Thu, 02 Feb 2023 08:24:21 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nUJIUVZv-YyNIio9bAlQ5FI9npiWFkV9R1xuIvFlizXf15t8HvFjVQ==
Age: 4119
capital.com/js/vendor/pusher.worker.min.js
45.60.76.121200 OK 18 kB URL HTTP/2 capital.com/js/vendor/pusher.worker.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (65405)
Hash ee8e604f3d66d28bf7ac1a03f3520d6f
b58042f7ba2f37bfcafaad2ff36197de54e84b54
d035b81f806405bbdcd60cf2afc1d414dab29c73a1a7d5149ade576ac62dc347
GET /js/vendor/pusher.worker.min.js HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/js/js_worker.js
Cookie: AWSALB=rm7PnnPvE8wMH8AyjeVnyR9yYs4RkpxgCXjlLj96D3/0CzrAha8p4L72RNRu/l1Txa66p3ViY2v40h6hrCJFxGoZbq205gXNaV3Q86xsHOTnqLgApAG8Gj3LJ2tJ; AWSALBCORS=rm7PnnPvE8wMH8AyjeVnyR9yYs4RkpxgCXjlLj96D3/0CzrAha8p4L72RNRu/l1Txa66p3ViY2v40h6hrCJFxGoZbq205gXNaV3Q86xsHOTnqLgApAG8Gj3LJ2tJ; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto; __cp_AB_testSample_var=variant2; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"63a43fd8-10433"
last-modified: Thu, 22 Dec 2022 11:30:32 GMT
content-type: application/javascript
content-length: 17736
content-encoding: gzip
cache-control: max-age=529563, public
expires: Wed, 08 Feb 2023 12:39:03 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-0 0CNN RT(1675330378699 1385) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
35.241.9.150200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1250), with no line terminators
Hash 4b4dc2f2fa90e5157009acf4c7b1d589
ec64bb109dac848eafb80765cb510015c5d3ffd5
83ad9f7b27e6c7f20f257f0a3ff004ca69cfd0d4768222a51a655ac9ae139f6e
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1250
via: 1.1 google
date: Thu, 02 Feb 2023 08:47:54 GMT
age: 2706
last-modified: Tue, 31 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
clts-e170.cc/gilroy-widget-custom.woff2
52.48.157.66200 OK 4.3 kB URL HTTP/2 clts-e170.cc/gilroy-widget-custom.woff2
IP 52.48.157.66:0
File type Web Open Font Format (Version 2), TrueType, length 4300, version 1.0\012- data
Hash 57380db4452dd66a4b5e7380d6a37d33
552a4bdbd58bc3760c3329f399092b8561549b70
5e7f779c5268c4950112a963fbdc0cd912e96b1da4c2517f3a7bb349c181df2e
GET /gilroy-widget-custom.woff2 HTTP/1.1
Host: clts-e170.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/octet-stream
content-length: 4300
server: nginx/1.18.0 (Ubuntu)
last-modified: Mon, 19 Dec 2022 13:54:00 GMT
etag: "63a06cf8-10cc"
accept-ranges: bytes
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191304 Not Modified 0 B URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 29 Jan 2023 18:44:47 GMT
If-None-Match: "e76071a28ee566dababb3834f46d68ed"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 08:33:19 GMT
age: 3581
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3619
Expires: Thu, 02 Feb 2023 10:33:19 GMT
Date: Thu, 02 Feb 2023 09:33:00 GMT
Connection: keep-alive
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 02 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EiZIzueSTljexVoKxxUvDLACOUcMVojRLOncrzrxqf6kBcYHSUGIjg==
Age: 4009
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3619
Expires: Thu, 02 Feb 2023 10:33:19 GMT
Date: Thu, 02 Feb 2023 09:33:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 40853
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
8280983.fls.doubleclick.net/activityi;src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert?
142.250.74.6200 OK 266 B URL HTTP/2 8280983.fls.doubleclick.net/activityi;src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert?
IP 142.250.74.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (497), with no line terminators
Hash 05b34c5fa2064d78d958604fbe6dfb7d
b17e9378e15434f5e4270ecb6d09845646940620
cd9e7e2ed609c5edd8e54cd69ab49540580e9ae1f6bd8eb0b7fedb3c7f9b1736
GET /activityi;src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert? HTTP/1.1
Host: 8280983.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 266
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 09:48:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 02:29:58 GMT
age: 25382
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zTIOb8GbYU3-38UBlsbhdREhQ4dwFrporBjb--FSNOdz9fmVjss-hg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 09:25:18 GMT
age: 764
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c0980cc80018f2218e1a5a7336a4bcc
461e33619154423dbbf49407a80b70ade9078593
4375676d6ce36b3ec3923eefe2007bb96d96135dae10103a886c24fc9063fce9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3541
x-amzn-requestid: f65e4be6-20ff-4f14-a722-d6c2c4631a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5YHQqoAMFeBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6f-5f9183ed1c2cb640249c2b09;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MkyEC1BsGtVceLSJo97YtrklOkjdB8swLs0Wu1LEogp8UxClNruZGQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 09:30:32 GMT
age: 148
etag: "461e33619154423dbbf49407a80b70ade9078593"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
34.120.237.76200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a1ddd54f3c344b36a26476a33ccfe20
3cc3a77f6a59cafed25fa0882e13644f4eebef50
65cef0476175fca421fef73419440b82dcb763879b79385f2cacc43f42b3237b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2530
x-amzn-requestid: 3ce99c09-61b5-4a51-97ec-c40c443238ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freplHVZoAMFz5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade3d-605687635e0a740e49ff78b9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TjYU3BsU2PsKUBuk4ZK6JOH3x9BBHltihOwtyFTZP7C1V6RdUGFDtg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:20 GMT
etag: "3cc3a77f6a59cafed25fa0882e13644f4eebef50"
content-type: image/jpeg
age: 40060
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ceb09fa3caa0fcda4a6314141e2d019
d08f43956f6859e4c2385231bb5506262257445f
a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: e8b062cd-a2e6-4110-b97a-278c09aa3232
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE59oAMFx9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-02cac6b3417a8d2b028b8ca2;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mJxQBYHzPzTHN3jjom55KlSyicUPfqmpdriEWffRozt7jItlxS-TVA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 05:01:28 GMT
age: 16292
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
8301429.fls.doubleclick.net/activityi;src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert?
142.250.74.6200 OK 262 B URL HTTP/2 8301429.fls.doubleclick.net/activityi;src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert?
IP 142.250.74.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (495), with no line terminators
Hash 9349b76d398dc585ac6214dace641e51
4ac5fd5783d385b737a22dd9a3bb02e34ce6f0ac
635603b7ad0f07870ba9ff8c0bd023cff8f06675a76d48da11e0c88dc52a7d27
GET /activityi;src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert? HTTP/1.1
Host: 8301429.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 262
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 09:48:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e31b9146b004e4b86643cfc3a1b33c7e
60befb95c9597fd085788b2ede23eb09ccff4095
4cbc76fc615f5fc0a84a074d1f511f99bab63bd0067d507b675f76cb3e602273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128963
Date: Thu, 02 Feb 2023 09:33:00 GMT
Etag: "63dad5c0-1d7"
Expires: Fri, 03 Feb 2023 21:22:23 GMT
Last-Modified: Wed, 01 Feb 2023 21:12:32 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kAbSqzqtZPFU_qvhP2oM8XJzMh5fdILUF-up5OGEtiBBqKpCg-ZZSA==
Age: 591
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e31b9146b004e4b86643cfc3a1b33c7e
60befb95c9597fd085788b2ede23eb09ccff4095
4cbc76fc615f5fc0a84a074d1f511f99bab63bd0067d507b675f76cb3e602273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134300
Date: Thu, 02 Feb 2023 09:33:00 GMT
Etag: "63dad5c0-1d7"
Expires: Fri, 03 Feb 2023 22:51:20 GMT
Last-Modified: Wed, 01 Feb 2023 21:12:32 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3q67tNwoLMC3B0JYgA5eBILBK5gDA4--LXGYfFDkjJuepgeMU0HSzg==
Age: 5928
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
35.241.9.150200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash ee3b2ca8193a47eb1c2f1628b80b953f
6b53021c8663e3a0f874c5f030902a78c3ef1b9d
2cc501aa09d747a9b69b88c92f896650b9c9f5c32dae8b2315ab61c63d9a4ccc
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Thu, 02 Feb 2023 08:50:16 GMT
age: 2564
last-modified: Sun, 29 Jan 2023 16:36:52 GMT
etag: "1675010212483"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4cc6QmkHRW/WBR1UXoOslRrtDFFBSWHQLNFQdykZMLWXPQInlpCSIksafLPLBlBC3bAJklizH8c=
x-amz-request-id: TVRZ4VWNPGFX9CR0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 09:23:02 GMT
age: 598
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/trading/v1/quoteCurrent
52.209.171.208200 OK 0 B URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteCurrent
IP 52.209.171.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /proxy/trading/v1/quoteCurrent HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capital.com/
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-length: 0
set-cookie: AWSALBTG=tDVDGhHwLGhtDkpC16lX7LBdznsMDSPSb1GV9A8g/TbUqvTLjPRU2WgxGJ2TURD2JXu5R+mvtrrsFGA7N1ZLpbdn4UbGqD5cnkFPUb55Z0tb6fR+CdH2M/HAi+sDG8ng2c62EzppjpeOdjkyT6WGwzsOJGC4T3rlTI3nRwNV89YsT84520Y=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=tDVDGhHwLGhtDkpC16lX7LBdznsMDSPSb1GV9A8g/TbUqvTLjPRU2WgxGJ2TURD2JXu5R+mvtrrsFGA7N1ZLpbdn4UbGqD5cnkFPUb55Z0tb6fR+CdH2M/HAi+sDG8ng2c62EzppjpeOdjkyT6WGwzsOJGC4T3rlTI3nRwNV89YsT84520Y=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=LcFPZWojjEvMuKBpz+6/cS+KidMPrui8sYo61+SbneRG2z+se34xpfJPya3pY2+71tFW75Htvzdrumh4xp7dCMDmWDNuCu+VLTo3prtQvQxDEly9Al7E55Mw5yRr; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=LcFPZWojjEvMuKBpz+6/cS+KidMPrui8sYo61+SbneRG2z+se34xpfJPya3pY2+71tFW75Htvzdrumh4xp7dCMDmWDNuCu+VLTo3prtQvQxDEly9Al7E55Mw5yRr; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node06j8vd70jbgykvokf73lefun3485897.node0; Path=/
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET,POST,DELETE,PUT
access-control-allow-headers: content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/trading/v1/quoteHistory
52.209.171.208200 OK 0 B URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteHistory
IP 52.209.171.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /proxy/trading/v1/quoteHistory HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: app-version,content-type,device-id,random-request-uuid,tracking-session-id
Referer: https://capital.com/
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-length: 0
set-cookie: AWSALBTG=hD2W981/H4GBk/euvP1bFupxbQfR5YClH6yV3k7fiwIgY51LfsNiEaa6SAP/IIHJ/mVKZj4BYhNIPNnOZITGXzNHdSM75HhRjil59SY9MHtKP1UsOf8N6JwHA+rPWzfy/ixNY1iEIX9cqRiUOU3iNuw34k5sJ+9ffngotkALdV/uPuxD1Qc=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=hD2W981/H4GBk/euvP1bFupxbQfR5YClH6yV3k7fiwIgY51LfsNiEaa6SAP/IIHJ/mVKZj4BYhNIPNnOZITGXzNHdSM75HhRjil59SY9MHtKP1UsOf8N6JwHA+rPWzfy/ixNY1iEIX9cqRiUOU3iNuw34k5sJ+9ffngotkALdV/uPuxD1Qc=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=0B9lgqi0op++K6SSNxLkT0pRyROz1sav9HxZ1Oj/ocx4b14aoYlnrtIA/h/xTS/F5SkMIwJ/NeAEabhqKSdNWBZhXpLh9gbsb06zmqfTSFy32b6+ito1++eIpJc7; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=0B9lgqi0op++K6SSNxLkT0pRyROz1sav9HxZ1Oj/ocx4b14aoYlnrtIA/h/xTS/F5SkMIwJ/NeAEabhqKSdNWBZhXpLh9gbsb06zmqfTSFy32b6+ito1++eIpJc7; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node0u52iox4e77erketyvot7c2e1485319.node0; Path=/
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET,POST,DELETE,PUT
access-control-allow-headers: app-version, content-type, device-id, random-request-uuid, tracking-session-id
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e31b9146b004e4b86643cfc3a1b33c7e
60befb95c9597fd085788b2ede23eb09ccff4095
4cbc76fc615f5fc0a84a074d1f511f99bab63bd0067d507b675f76cb3e602273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134300
Date: Thu, 02 Feb 2023 09:33:00 GMT
Etag: "63dad5c0-1d7"
Expires: Fri, 03 Feb 2023 22:51:20 GMT
Last-Modified: Wed, 01 Feb 2023 21:12:32 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1Hkh7XA18ns3M8RBfm5Sa5SqbLg8DscZVxWCAqQMf2obioiskcBCYA==
Age: 5928
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e31b9146b004e4b86643cfc3a1b33c7e
60befb95c9597fd085788b2ede23eb09ccff4095
4cbc76fc615f5fc0a84a074d1f511f99bab63bd0067d507b675f76cb3e602273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132532
Date: Thu, 02 Feb 2023 09:33:00 GMT
Etag: "63dad5c0-1d7"
Expires: Fri, 03 Feb 2023 22:21:52 GMT
Last-Modified: Wed, 01 Feb 2023 21:12:32 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zSLdFYk669c6i54rPXmUP2OmdCzAFjigsUS1t1-YoiZyPS_jH7C4xg==
Age: 4160
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash fc85dc6a10d30ddf3778469a877a412f
43114746819e28264826d10436434fb7f31643b8
5a07d0ef85a9e78677e1ae3d5dbd360da47b5dbe07334cd4511c898a03af7975
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 09:33:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 08:43:36 GMT
Expires: Wed, 08 Feb 2023 08:43:35 GMT
Etag: "43114746819e28264826d10436434fb7f31643b8"
Cache-Control: max-age=514834,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7931ec404b1eb500-OSL
adservice.google.com/ddm/fls/i/src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
142.250.74.162200 OK 267 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (496), with no line terminators
Hash 275fb5742171c0be21191980aad7079b
3962ace319fe0749f8a59572d84c4f27d0ea9674
ac21d276ddc571c023c085b0e237e3fbfa1df500044d5b8d72536e8f2f6b7014
GET /ddm/fls/i/src=8280983;type=funne0;cat=accou6;ord=4540112151889;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://8280983.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 267
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e31b9146b004e4b86643cfc3a1b33c7e
60befb95c9597fd085788b2ede23eb09ccff4095
4cbc76fc615f5fc0a84a074d1f511f99bab63bd0067d507b675f76cb3e602273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131562
Date: Thu, 02 Feb 2023 09:33:00 GMT
Etag: "63dad5c0-1d7"
Expires: Fri, 03 Feb 2023 22:05:42 GMT
Last-Modified: Wed, 01 Feb 2023 21:12:32 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7qpk310mcPe6Kf2KJOAM0n2chbsIXi83k7xiYmw27fzHhUAXbOSduQ==
Age: 3190
api.backend-capital.com/proxy/trading/v1/quoteCurrent
52.209.171.208200 OK 0 B URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteCurrent
IP 52.209.171.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /proxy/trading/v1/quoteCurrent HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capital.com/
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-length: 0
set-cookie: AWSALBTG=Yh5izJRGzJXKsBY/8AmAUpOpNxpyOd4fyqLnhcq4JfylAoJHQwNVlg6QXHvrBNI/YuMVxPF3/UcwIOdX8KjUZPCl+AjcXudJlFluRlRhPaqRv1mscK/IJ7UXXGEiL5h81RZ5V3aFZEV3i0pmwdnZNi+muJdngEjDKxFklH8vIvhJwCfW8TM=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=Yh5izJRGzJXKsBY/8AmAUpOpNxpyOd4fyqLnhcq4JfylAoJHQwNVlg6QXHvrBNI/YuMVxPF3/UcwIOdX8KjUZPCl+AjcXudJlFluRlRhPaqRv1mscK/IJ7UXXGEiL5h81RZ5V3aFZEV3i0pmwdnZNi+muJdngEjDKxFklH8vIvhJwCfW8TM=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=b1Z6/sqkv4sYrEb5wEgBchnLIFEw61hLyqVQFgcd2XFeC/cKcP8aWu2nzssQisA3vniovRIGsJexKK3tNtoUIHgy8iRBMyQxT+54Be23/sEpDd8T5YL9v4Bg6o9G; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=b1Z6/sqkv4sYrEb5wEgBchnLIFEw61hLyqVQFgcd2XFeC/cKcP8aWu2nzssQisA3vniovRIGsJexKK3tNtoUIHgy8iRBMyQxT+54Be23/sEpDd8T5YL9v4Bg6o9G; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node0yuvigrj7rab475vi0fpghm1g485325.node0; Path=/
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET,POST,DELETE,PUT
access-control-allow-headers: content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
142.250.74.162200 OK 266 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (494), with no line terminators
Hash 0eb38e0df7d06a38c8cb83fd18ffab0e
1bb0b88eab1fd05dfcb4049ef775448d183bb225
851e34c19a74b922dd0cfb30cfefa30ba5bd263db5ddf89142c6ef157cf134db
GET /ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://8301429.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 266
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
35.241.9.150200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash 3d63398bfcd270d3aff50d730b7fbf8e
95b217d19c323845ba9739f9e343ffd4a050dc2a
28be153e42646803b6aa62501fcb5262eea2812237655cec6be8b2a3ff4e7d0c
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Thu, 02 Feb 2023 09:08:30 GMT
age: 1470
last-modified: Sat, 28 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
prod-pusher.backend-capital.com/app/app_key?protocol=7&client=js&version=7.4.0&flash=false
49.12.124.93101 Switching Protocols 0 B URL HTTP/1.1 prod-pusher.backend-capital.com/app/app_key?protocol=7&client=js&version=7.4.0&flash=false
IP 49.12.124.93:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/app_key?protocol=7&client=js&version=7.4.0&flash=false HTTP/1.1
Host: prod-pusher.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://capital.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DFnTRWkhUYKUxLPgB19yRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
upgrade: websocket
connection: upgrade
sec-websocket-accept: tpts/9PeVyzGwk4NGHDDT20C1f8=
sec-websocket-extensions: permessage-deflate
api.backend-capital.com/proxy/v1/api/country.detect
52.209.171.208200 OK 0 B URL HTTP/2 api.backend-capital.com/proxy/v1/api/country.detect
IP 52.209.171.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /proxy/v1/api/country.detect HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: app-version,content-type,device-id,random-request-uuid,tracking-session-id
Referer: https://capital.com/
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-length: 0
set-cookie: AWSALBTG=ll6Q83afozLk4XmLAE//LUdjq0HcVHUCTSPzzGzEElgSiC/VdKc6G45UcChuWOBsD+IzeL6X9hK865NF1bfR/MOWNw01kXjFYZPJF7udjZ5zkmzJmC26ShI/JBBzRO0R9209kdhwzwXTlLJsrtDPPDN4ZiNuLtjYZ5IcoybtK+b1jZYANZY=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=ll6Q83afozLk4XmLAE//LUdjq0HcVHUCTSPzzGzEElgSiC/VdKc6G45UcChuWOBsD+IzeL6X9hK865NF1bfR/MOWNw01kXjFYZPJF7udjZ5zkmzJmC26ShI/JBBzRO0R9209kdhwzwXTlLJsrtDPPDN4ZiNuLtjYZ5IcoybtK+b1jZYANZY=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=YdmJySO0HEwfZgMz2UGnQ8TXhSK7FUI2Pi2pnZ+N/1TKRM0x+POim62gsdH0zqoWN001DAhct0HAVtqwrfsT+teSrE5U3GQrvgdRCsHBkK7i5F829/NFc/Dpge7C; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=YdmJySO0HEwfZgMz2UGnQ8TXhSK7FUI2Pi2pnZ+N/1TKRM0x+POim62gsdH0zqoWN001DAhct0HAVtqwrfsT+teSrE5U3GQrvgdRCsHBkK7i5F829/NFc/Dpge7C; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node01bfxan1hpgwdwbirf7yetjeyd485901.node0; Path=/
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET,POST,DELETE,PUT
access-control-allow-headers: app-version, content-type, device-id, random-request-uuid, tracking-session-id
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/v1/api/country.detect
52.209.171.208200 OK 0 B URL HTTP/2 api.backend-capital.com/proxy/v1/api/country.detect
IP 52.209.171.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /proxy/v1/api/country.detect HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: app-version,content-type,device-id,random-request-uuid,tracking-session-id
Referer: https://capital.com/
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-length: 0
set-cookie: AWSALBTG=2mBcdpErR8NcVA+ErOEgqwAPg5BaXkK9GrooIN/mE3m2cP0lTV5rqOxHSxmCYzDCFulGRT8lgkta9X6F1l5QQmbijManpG0CCa8zhH6fvClGqSTTpKn3kMoCi1jBWKpTcYEYg1+tZ9t6N2aYFWeN+LM8Kuv60pOLh75fzn+Wa/1OVMJzYcM=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=2mBcdpErR8NcVA+ErOEgqwAPg5BaXkK9GrooIN/mE3m2cP0lTV5rqOxHSxmCYzDCFulGRT8lgkta9X6F1l5QQmbijManpG0CCa8zhH6fvClGqSTTpKn3kMoCi1jBWKpTcYEYg1+tZ9t6N2aYFWeN+LM8Kuv60pOLh75fzn+Wa/1OVMJzYcM=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=spKEgofx9c6f58057hHf72TcsKB/RCy+xeWcEOcw0XErYLrP/Hp91+RaumPVtZNHlkeZlS5ACJIKkB0DqKQ/kB0hipQjFGp1giX9wuXUEOJEqQWxwUOzKJRfFCJc; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=spKEgofx9c6f58057hHf72TcsKB/RCy+xeWcEOcw0XErYLrP/Hp91+RaumPVtZNHlkeZlS5ACJIKkB0DqKQ/kB0hipQjFGp1giX9wuXUEOJEqQWxwUOzKJRfFCJc; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node0106k7ofnm2oznzdp2epugyyx4485326.node0; Path=/
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://capital.com
access-control-allow-methods: GET,POST,DELETE,PUT
access-control-allow-headers: app-version, content-type, device-id, random-request-uuid, tracking-session-id
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.capital.com/js/vendor/Chart.bundle.min.js
45.60.76.121200 OK 64 kB URL HTTP/2 static.capital.com/js/vendor/Chart.bundle.min.js
IP 45.60.76.121:0
File type ASCII text, with very long lines (65414)
Hash d11d15dc2fb53f57cd9ef33e2b046950
b173ccab2a03ac63d44b2bf6a7ea843b9a07ceb3
bd49c9ecd0b7ece43403183ac2dc55396c248945381d853b320b67abc3a319a7
GET /js/vendor/Chart.bundle.min.js HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; _gcl_au=1.1.2083320236.1675330406; _ga_E0HDCHTG1C=GS1.1.1675330406.1.0.1675330406.60.0.0; _ga=GA1.1.331416360.1675330406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "bd9843d1866f45d1406a12f7de05f9ff"
last-modified: Thu, 03 Nov 2022 11:33:12 GMT
content-type: application/javascript
content-length: 64203
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:33:00 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 1464) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22
35.241.9.150200 OK 52 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (52267), with no line terminators
Hash 43fa3c33ef7e1368ef38013ab44077ec
70447b3d512f20511dec32ecad04b77a76a86b6f
bae20740abda87eb747664b2ec70fb29c5ff7899292685645d7ed2c609727391
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 52267
via: 1.1 google
date: Thu, 02 Feb 2023 09:30:57 GMT
age: 123
last-modified: Fri, 27 Jan 2023 17:46:06 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/v1/api/country.detect
52.209.171.208200 OK 897 B URL HTTP/2 api.backend-capital.com/proxy/v1/api/country.detect
IP 52.209.171.208:0
Hash e517e7e1cb622531934b889a0bdbc0ed
86807347baf21eb1c36648df19ab3707a968d03d
5d10fd0011bf046f1702e5a67536585c29f03b1c3e80d9dbfe07b6a66c761d96
POST /proxy/v1/api/country.detect HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Content-Type: application/json; charset=utf-8
Device-Id: 7993a2e3-a425-cb88-abc5-501f9af58ca5
App-Version: com.capital.website:1.1.8.web.03/17.15:57
Tracking-Session-Id: 7b35955c-ded5-94d3-b204-53d2b7dc8fbe
Random-Request-Uuid: 4d1ac775-09dd-4f2a-9812-db9d0a983c01
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/json;charset=utf-8
set-cookie: AWSALBTG=13JPPKD6N1r2AlDzH3O3Yx+doYijhe7uGyE3maWfIaWT9/VEp88X46/VuTsGbSeGyGNBIy5duDqeu8hLeISEfmZjDD1imFw9B+BLNRhxQwxr2653vdbB9D3XdeMwJhtSjjZYaoVH6QdLmlb0GUhcC0O/PQcesEBP0fDH6g+CQ0SFDqoW3eY=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=13JPPKD6N1r2AlDzH3O3Yx+doYijhe7uGyE3maWfIaWT9/VEp88X46/VuTsGbSeGyGNBIy5duDqeu8hLeISEfmZjDD1imFw9B+BLNRhxQwxr2653vdbB9D3XdeMwJhtSjjZYaoVH6QdLmlb0GUhcC0O/PQcesEBP0fDH6g+CQ0SFDqoW3eY=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=n0g5GD7uJeupNRe93CX0mmSc1sGxY6EDqx/43BmGIjLia/IX7oSOU4C9t5xloSRdUeCnLCL68hK/Ha22kih7uI3h9bc1pPhTzmRh+TNxYqDRlF6VKN0FNMYqS9x1; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=n0g5GD7uJeupNRe93CX0mmSc1sGxY6EDqx/43BmGIjLia/IX7oSOU4C9t5xloSRdUeCnLCL68hK/Ha22kih7uI3h9bc1pPhTzmRh+TNxYqDRlF6VKN0FNMYqS9x1; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node0uz1m9g28d6cs153qcneeww89r485334.node0; Path=/
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://capital.com
access-control-allow-credentials: true
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-disposition: inline;filename=f.txt
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
content-encoding: gzip
X-Firefox-Spdy: h2
static.capital.com/img/favicon/android-icon-192x192.png
45.60.76.121200 OK 12 kB URL HTTP/2 static.capital.com/img/favicon/android-icon-192x192.png
IP 45.60.76.121:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9030189fbeed8e9ab661de943b10d1b5
8e4388f598838fa17da2359be713eefe635608ff
0bcb54cbd9653e2c032037ef5da7e1c93625725066520ffd3bddc4c978214c7b
GET /img/favicon/android-icon-192x192.png HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; _gcl_au=1.1.2083320236.1675330406; _ga_E0HDCHTG1C=GS1.1.1675330406.1.0.1675330406.60.0.0; _ga=GA1.1.331416360.1675330406
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "9030189fbeed8e9ab661de943b10d1b5"
last-modified: Fri, 28 Oct 2022 09:50:26 GMT
content-type: image/png
content-length: 12433
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:33:00 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 1525) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
static.capital.com/img/favicon/favicon-16x16.png
45.60.76.121200 OK 617 B URL HTTP/2 static.capital.com/img/favicon/favicon-16x16.png
IP 45.60.76.121:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a0d20664f829fd88fda7f6f17d17ecc
fb9d4aca7e34434a6e1760167c41ba0a30b86469
0e052dd6d26a5d8818d9d606c50af35e5846e170e076d538b19c55154096deb2
GET /img/favicon/favicon-16x16.png HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; _gcl_au=1.1.2083320236.1675330406; _ga_E0HDCHTG1C=GS1.1.1675330406.1.0.1675330406.60.0.0; _ga=GA1.1.331416360.1675330406
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "0a0d20664f829fd88fda7f6f17d17ecc"
last-modified: Thu, 03 Nov 2022 11:32:38 GMT
content-type: image/png
content-length: 617
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:33:00 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 1527) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/trading/v1/quoteHistory
52.209.171.208200 OK 8.6 kB URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteHistory
IP 52.209.171.208:0
Hash 59ed04d93518055dd6093875d496bda2
a89ed7922fc019d0d9fa8c58a5b3f5ad2df6d57d
517ad0ed3890e1eff17c4acae19e4cb77830b3e97ef844231e5e45e6a422062d
POST /proxy/trading/v1/quoteHistory HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Content-Type: application/json; charset=utf-8
Device-Id: 7993a2e3-a425-cb88-abc5-501f9af58ca5
App-Version: com.capital.website:1.1.8.web.03/17.15:57
Tracking-Session-Id: 7b35955c-ded5-94d3-b204-53d2b7dc8fbe
Random-Request-Uuid: 8cfeeeb5-0dff-4220-83b6-c99aaa0a631c
Origin: https://capital.com
Content-Length: 63
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/json;charset=utf-8
set-cookie: AWSALBTG=fPlUbklvGYirF3h7CM+uyoKIExyF1qIw1MPtAVEgmZUbc/5fw7vzKkINhTh69eRDZ4dgRuwgplSNaTqCyKYNwUeTVaymOO3lk3w6VrPFHxgqIfJohrEehvY9iTZ9zhDDZrJ8C8RMY/vUVw5Zw47A2ALioeVcMRReFKoP1GrjuWksQCN65Dc=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=fPlUbklvGYirF3h7CM+uyoKIExyF1qIw1MPtAVEgmZUbc/5fw7vzKkINhTh69eRDZ4dgRuwgplSNaTqCyKYNwUeTVaymOO3lk3w6VrPFHxgqIfJohrEehvY9iTZ9zhDDZrJ8C8RMY/vUVw5Zw47A2ALioeVcMRReFKoP1GrjuWksQCN65Dc=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=UVAGMrIv97NtI1J+7Uoq21IdxlFXbZlci3vJIMz9Bgj+Cx9r7SBfC34hFYt3qg0OEeHh2cGl3/xpP6iUzSW+SdtKtLAOfDqY2yfwN7XkXYrHnZDkfINs1y/pwQ//; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=UVAGMrIv97NtI1J+7Uoq21IdxlFXbZlci3vJIMz9Bgj+Cx9r7SBfC34hFYt3qg0OEeHh2cGl3/xpP6iUzSW+SdtKtLAOfDqY2yfwN7XkXYrHnZDkfINs1y/pwQ//; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node0lsicx31vulnl1u113a1oa9pw0485900.node0; Path=/
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://capital.com
access-control-allow-credentials: true
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
content-encoding: gzip
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
142.250.74.34200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=8301429;type=web0;cat=web_p0;ord=7251419065501;gtm=2wg1u0;auiddc=2083320236.1675330406;~oref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:01 GMT
expires: Thu, 02 Feb 2023 09:33:01 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 07:44:08 GMT
expires: Thu, 02 Feb 2023 09:44:08 GMT
cache-control: public, max-age=7200
age: 6533
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
35.241.9.150200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1505), with no line terminators
Hash bf91148bc6bc52655c8e8138e8a0a4f4
919f632d0fa2021439aefb26804e6c811f077343
0b87aabbe04ee50ba0cdfdfd6710e761f3ede6ac42cc8faa1b136315529daabf
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1505
via: 1.1 google
date: Thu, 02 Feb 2023 09:12:41 GMT
age: 1220
last-modified: Fri, 27 Jan 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1&z=699652494
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1&z=699652494
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1&z=699652494 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 09:33:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-N6KVLGH
142.250.74.110200 OK 48 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-N6KVLGH
IP 142.250.74.110:0
File type ASCII text, with very long lines (3885)
Hash 215508eef3a12421979853ade11ac1b2
6e3bdf11c97a2d1ad5d9e3de7d8c759e00ac867f
aa3b73ed32fd01dadfea25393dfd5e9a119301aed4a982d7af760eb22628fbff
GET /gtm/optimize.js?id=GTM-N6KVLGH HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 09:33:01 GMT
expires: Thu, 02 Feb 2023 09:33:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/trading/v1/quoteCurrent
52.209.171.208200 OK 16 kB URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteCurrent
IP 52.209.171.208:0
File type JSON data\012- , ASCII text, with very long lines (57597)
Hash 2d97e5f035cdcfaf114dd2b00cf440a1
1f170254e29194ab750fa20287643ce4a8491fbb
e29c0c25120f2d794b5c70ae1faececc6a19565b2fe1883ef69fc3ad8492e0bd
POST /proxy/trading/v1/quoteCurrent HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Content-Type: application/json; charset=utf-8
Origin: https://capital.com
Content-Length: 152
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/json;charset=utf-8
set-cookie: AWSALBTG=hDDM5qDreXlvWMBW5TKCckMESEs3duCwZGojb/DEgnnwI5ViyNyYxdspVQwyTWIwXNJbd4xUM+sMyNXwdmN/8OM37lvx9MF9w7E1kPhunvoNv1Dc5+YGoqIbqNgFzmvsmsRwKyHebhJ152ZeumHVDdx0cOvTb34t94vYE+t+bMIXa9SoZuU=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=hDDM5qDreXlvWMBW5TKCckMESEs3duCwZGojb/DEgnnwI5ViyNyYxdspVQwyTWIwXNJbd4xUM+sMyNXwdmN/8OM37lvx9MF9w7E1kPhunvoNv1Dc5+YGoqIbqNgFzmvsmsRwKyHebhJ152ZeumHVDdx0cOvTb34t94vYE+t+bMIXa9SoZuU=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=po+JFemlZWqHXGlzQH3XvvT04ZRH38h6uruhoZFStfyzFlTL1sY6kNURgMbH2VOz8TPad/IU61HMAHzKyueHfJOH7RVnNT+AELeiPulbveiQZVshR+UXxGks5jP8; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=po+JFemlZWqHXGlzQH3XvvT04ZRH38h6uruhoZFStfyzFlTL1sY6kNURgMbH2VOz8TPad/IU61HMAHzKyueHfJOH7RVnNT+AELeiPulbveiQZVshR+UXxGks5jP8; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node01t9o9e762mief5ymxoadjsmnv485904.node0; Path=/
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://capital.com
access-control-allow-credentials: true
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
content-encoding: gzip
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5AF9F4133CEA419795AB7C5444852EDA Ref B: OSL30EDGE0115 Ref C: 2023-02-02T09:33:01Z
date: Thu, 02 Feb 2023 09:33:01 GMT
X-Firefox-Spdy: h2
api.backend-capital.com/proxy/trading/v1/quoteCurrent
52.209.171.208200 OK 1.1 kB URL HTTP/2 api.backend-capital.com/proxy/trading/v1/quoteCurrent
IP 52.209.171.208:0
Hash a3523529cc090d9a1a93bf9e64d26ce4
5d768016ed67f41f065a2398f745920d567d3bf6
3409388adde301f6f43d39b42289e6d3313b0ec6a9af5839f489a085d0e7dfa3
POST /proxy/trading/v1/quoteCurrent HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Content-Type: application/json; charset=utf-8
Origin: https://capital.com
Content-Length: 36
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/json;charset=utf-8
set-cookie: AWSALBTG=CCOhu4KuneVtForsbdltFYDKNXiMZBtiqzpBaY7N7Oxr1uKBWM8NapqKs9XBQOOVMbMJKJbUK5TObzLbwJ0bXi5hxJxe04tW6jsJOiLvE6Aax4Lph+0aURrYc8+BoTCLn9YAf7XWR1snaxDea+dDqRpj+0GpjjUnlgP23ZrZpFoJoSXEzco=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=CCOhu4KuneVtForsbdltFYDKNXiMZBtiqzpBaY7N7Oxr1uKBWM8NapqKs9XBQOOVMbMJKJbUK5TObzLbwJ0bXi5hxJxe04tW6jsJOiLvE6Aax4Lph+0aURrYc8+BoTCLn9YAf7XWR1snaxDea+dDqRpj+0GpjjUnlgP23ZrZpFoJoSXEzco=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=AVnt0u9UCIo1Dxq3mh0S3sGyC458xxxDEZL6kN9gCyIYaX15MAtxJuDO3aUylgL9HBJqKwIR7nDmreTCa7rhjQ5GxLd4NelqJUXUauJzOUFbNPiyYW0LKwM7tmx1; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=AVnt0u9UCIo1Dxq3mh0S3sGyC458xxxDEZL6kN9gCyIYaX15MAtxJuDO3aUylgL9HBJqKwIR7nDmreTCa7rhjQ5GxLd4NelqJUXUauJzOUFbNPiyYW0LKwM7tmx1; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node01gk9h51te7teyjcxtgi4lek2i485322.node0; Path=/
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://capital.com
access-control-allow-credentials: true
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
content-encoding: gzip
X-Firefox-Spdy: h2
static.capital.com/js/vendor/Chart.min.css
45.60.76.121200 OK 244 B URL HTTP/2 static.capital.com/js/vendor/Chart.min.css
IP 45.60.76.121:0
File type ASCII text, with very long lines (521), with no line terminators
Hash 986b6d5a34eb7d3025912423e55a6cbb
15312f71fcaa04e4bfd822ce014df6af3fcd2468
c79e9b6c61773d14b9e1c6c63eaece4e7f6940b91d39df40afca7c8538c40bf5
GET /js/vendor/Chart.min.css HTTP/1.1
Host: static.capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; visid_incap_2784784=OPz/Dxn4SauSa+jZviJVukuD22MAAAAAQUIPAAAAAADQ7lUvvfkBCsU6FLIIwxDE; incap_ses_633_2784784=jOyXfah4Tn+QKqp/pd7ICEuD22MAAAAAKJ1w/2zgEcfRh9+RFu1RAQ==; _gcl_au=1.1.2083320236.1675330406; _ga_E0HDCHTG1C=GS1.1.1675330406.1.0.1675330406.60.0.0; _ga=GA1.1.331416360.1675330406
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
etag: "7d8693e997109f2aeac04066301679d6"
last-modified: Fri, 28 Oct 2022 09:51:00 GMT
content-type: text/css
content-length: 244
content-encoding: gzip
cache-control: max-age=2419200, public
expires: Thu, 02 Mar 2023 09:33:00 GMT
date: Thu, 02 Feb 2023 09:33:00 GMT
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 7-9822468-0 0CNN RT(1675330379118 1693) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1674751976728&_since=%221661199949574%22
35.241.9.150200 OK 42 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1674751976728&_since=%221661199949574%22
IP 35.241.9.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/buckets/main/collections/search-config/changeset?_expected=1674751976728&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 17471
via: 1.1 google
date: Thu, 02 Feb 2023 08:55:54 GMT
age: 2227
last-modified: Thu, 26 Jan 2023 16:52:56 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
35.241.9.150200 OK 2.1 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (2144), with no line terminators
Hash 5081e6ce6effca1e5ba513b8ee475b1c
56b570761e64c997d2340e4697a1c0e1b06cc0e5
df3c6bd21705a779e7eace5f711efb8e0c91a77a0fd18288d12cf49507f944a2
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2144
via: 1.1 google
date: Thu, 02 Feb 2023 09:00:02 GMT
age: 1979
last-modified: Thu, 26 Jan 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.backend-capital.com/proxy/v1/api/country.detect
52.209.171.208200 OK 468 B URL HTTP/2 api.backend-capital.com/proxy/v1/api/country.detect
IP 52.209.171.208:0
Hash 38ffc95d6bfd5ec1be8a31ca0018585a
c2bdaadf13b89f29dcc8b3ea0722bd33397fbf32
f3a1ac6900255f6183fd4cd22700abf0d3ae6512855448085c71d5c9e524287f
POST /proxy/v1/api/country.detect HTTP/1.1
Host: api.backend-capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capital.com/
Content-Type: application/json; charset=utf-8
Device-Id: 7993a2e3-a425-cb88-abc5-501f9af58ca5
App-Version: com.capital.website:1.1.8.web.03/17.15:57
Tracking-Session-Id: 7b35955c-ded5-94d3-b204-53d2b7dc8fbe
Random-Request-Uuid: ca4b1845-f69e-4a35-886a-74227ae91cb7
Origin: https://capital.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: application/json;charset=utf-8
set-cookie: AWSALBTG=B/4sH3eqtycet1ufp4BpAYdtaHdl9VZZFbv1S4XzkOhpL9UExtmALX/oA9lbgv3XUBqskd8I/4WMQKHnjTM750yE32Xjx3b644O/9cEo690t/IFyJ2ZmWRDTRObteOP1DYecBi4Jya9JOGMxq/LnCrKHc9QbSf16QqodMQW82IcQzPFZ/7U=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBTGCORS=B/4sH3eqtycet1ufp4BpAYdtaHdl9VZZFbv1S4XzkOhpL9UExtmALX/oA9lbgv3XUBqskd8I/4WMQKHnjTM750yE32Xjx3b644O/9cEo690t/IFyJ2ZmWRDTRObteOP1DYecBi4Jya9JOGMxq/LnCrKHc9QbSf16QqodMQW82IcQzPFZ/7U=; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
AWSALB=dQ3tOX9A52u6pbScDDe2VARlFdGx0IwGMTevBLAlUPua+TYL5hOy9ziThX/MgielVSVX/H53ayASqlfFX6NknuYZRJNttDKuXvVJtDBGOMNi4oUQRGWCWwgN3rIW; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=dQ3tOX9A52u6pbScDDe2VARlFdGx0IwGMTevBLAlUPua+TYL5hOy9ziThX/MgielVSVX/H53ayASqlfFX6NknuYZRJNttDKuXvVJtDBGOMNi4oUQRGWCWwgN3rIW; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
JSESSIONID=node01fzgyea4vh3701go2caknujuj7485911.node0; Path=/
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-origin: https://capital.com
access-control-allow-credentials: true
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-disposition: inline;filename=f.txt
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
server: prod-green-capital.com
content-encoding: gzip
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=26045462&Ver=2&mid=037f3092-d269-4317-93e0-f4a759b0e117&sid=a5477d70a2dc11ed9d3bc5c70dc1bd6e&vid=a5476ea0a2dc11ed8663795298788f74&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&p=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&r=<=2304&evt=pageLoad&sv=1&rn=745702
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=26045462&Ver=2&mid=037f3092-d269-4317-93e0-f4a759b0e117&sid=a5477d70a2dc11ed9d3bc5c70dc1bd6e&vid=a5476ea0a2dc11ed8663795298788f74&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&p=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&r=<=2304&evt=pageLoad&sv=1&rn=745702
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=26045462&Ver=2&mid=037f3092-d269-4317-93e0-f4a759b0e117&sid=a5477d70a2dc11ed9d3bc5c70dc1bd6e&vid=a5476ea0a2dc11ed8663795298788f74&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&p=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&r=<=2304&evt=pageLoad&sv=1&rn=745702 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3BC006B42240687C1FF9141823B56971; domain=.bing.com; expires=Tue, 27-Feb-2024 09:33:01 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F23FC1877E3F449AA58B750692CF8D41 Ref B: OSL30EDGE0115 Ref C: 2023-02-02T09:33:01Z
date: Thu, 02 Feb 2023 09:33:01 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f34e13cd7bd2390540358d01cbc690ff
15a098b4cd8fbd001a15d36207579fe9b18d4c07
1a74d35e15a7479290f811969f72f0de78f65bcb5b42bdfe673719d746839682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6509
Cache-Control: max-age=101412
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Etag: "63da5305-139"
Expires: Fri, 03 Feb 2023 13:43:13 GMT
Last-Modified: Wed, 01 Feb 2023 11:54:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
bat.bing.com/p/action/26045462.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/26045462.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/26045462.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AE4E64FD7A734DE4B13F022C65040175 Ref B: OSL30EDGE0115 Ref C: 2023-02-02T09:33:01Z
date: Thu, 02 Feb 2023 09:33:01 GMT
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-E0HDCHTG1C>m=2oe1u0&_p=1902081610&_gaz=1&cid=331416360.1675330406&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675330406&sct=1&seg=0&dl=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&dt=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.content_group=doc&ep.page_category_main=landings&ep.page_category_sub=landings_v1&up.client_id=7993a2e3-a425-cb88-abc5-501f9af58ca5
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-E0HDCHTG1C>m=2oe1u0&_p=1902081610&_gaz=1&cid=331416360.1675330406&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675330406&sct=1&seg=0&dl=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&dt=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.content_group=doc&ep.page_category_main=landings&ep.page_category_sub=landings_v1&up.client_id=7993a2e3-a425-cb88-abc5-501f9af58ca5
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E0HDCHTG1C>m=2oe1u0&_p=1902081610&_gaz=1&cid=331416360.1675330406&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675330406&sct=1&seg=0&dl=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&dt=Handluj%20kontraktami%20cfd%20na%20kryptowaluty%20%7C%20Capital.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.content_group=doc&ep.page_category_main=landings&ep.page_category_sub=landings_v1&up.client_id=7993a2e3-a425-cb88-abc5-501f9af58ca5 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital.com
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://capital.com
date: Thu, 02 Feb 2023 09:33:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1
64.233.162.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1
IP 64.233.162.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E0HDCHTG1C&cid=331416360.1675330406>m=2oe1u0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital.com
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://capital.com
date: Thu, 02 Feb 2023 09:33:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-89020635-1&cid=7993a2e3-a425-cb88-abc5-501f9af58ca5&jid=551275205&gjid=463737372&_gid=1641746862.1675330407&_u=aKDAgEABQAAAAEAAI~&z=465322635
64.233.162.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-89020635-1&cid=7993a2e3-a425-cb88-abc5-501f9af58ca5&jid=551275205&gjid=463737372&_gid=1641746862.1675330407&_u=aKDAgEABQAAAAEAAI~&z=465322635
IP 64.233.162.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-89020635-1&cid=7993a2e3-a425-cb88-abc5-501f9af58ca5&jid=551275205&gjid=463737372&_gid=1641746862.1675330407&_u=aKDAgEABQAAAAEAAI~&z=465322635 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://capital.com
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://capital.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 09:33:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a74e9df0da2b1a67dfda6786a37dd2a8
8fefdd28cf1a5806b0f3bb23f86b81e03dbde32a
6a8ae9cbe9e568d449136667058e401101fe5130f4dc92524d44f4498210aa9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4271
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 09:33:01 GMT
Last-Modified: Thu, 02 Feb 2023 08:21:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
t.co/i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=1697c4d2-17be-4492-b309-b76fc0e6d701; Max-Age=63072000; Expires=Sat, 01 Feb 2025 09:33:01 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 2454209bf64cd29d
strict-transport-security: max-age=0
x-response-time: 112
x-connection-hash: 14fc1beffe1b09fcdebf4936ec11146525a29e0dda1138de8ed0c8869b2796ae
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=aed026a5-7d65-429b-a4ff-922c3f21d9fa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0a6cee35-1e19-4930-806d-9cdd3a575d16&tw_document_href=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nz63a&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:01 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_HquhIPVWjaTvzqZPWrzYYQ=="; Max-Age=63072000; Expires=Sat, 01 Feb 2025 09:33:01 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: de5b9f4c7fbefbb5
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 9cb125135dd7d337aaa2e487922adf7c87ae8da64e7e7b938e2241638ac475ad
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDL1RRBC77UEAU3QMER0&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDL1RRBC77UEAU3QMER0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2355)
Hash 6df62f88738f97330768f1f9be7205f5
791cc1b8d66b5acd148e417c40a593f8992c3efd
d629fd3667324b70f8a22097d68b798b8f88ab9f0d6c042ce5ba326fca97917e
GET /i18n/pixel/events.js?sdkid=CDL1RRBC77UEAU3QMER0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202302020933045F0D0149562FAD288E77
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0369cb24960fbb841c43ba74fe9e2bf4c35beddd2b2567121fbbdaa6ea9db01a4dba5fe0f45d4d5aba5029f2d41020858b078b61de3fd3236983eecbb634c953
content-encoding: gzip
expires: Thu, 02 Feb 2023 09:33:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 09:33:04 GMT
content-length: 1150
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LB2vMOKgeXwVpfifOyy0SYlyOF; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=1, origin; dur=105
x-origin-response-time: 105,23.36.79.13
x-akamai-request-id: a6eab10d
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
23.36.79.17200 OK 70 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash e470cdee4fb19533b3076cf5e6445ff0
3fa761e875d60e55f5464f0cee6207bca0d2cbed
e7fa855a1d974007175332f96be3ec95d6c6b94f7f4180dac64e4cf7d3d7115a
GET /i18n/pixel/static/main.MWE2YWY2YTgzMQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: _ttp=2LB2vMOKgeXwVpfifOyy0SYlyOF
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175829D91E25D7003EA9A803DC
x-tt-trace-host: 01f6175df718ab226765794aaab21df67154f0b53b7f693af896ad93db0deb0ef832d63bb31438f0c5e0aa4878e941bb88c0976593910f5ab417b5ca255605e18e5e0fd52686d843afbd593b8bd0d366fe4ffb20082da9c196e6db1f01a9ce8992
content-encoding: gzip
content-length: 70411
date: Thu, 02 Feb 2023 09:33:04 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=3
x-akamai-request-id: a6eab3f5
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Cookie: _ttp=2LB2vMOKgeXwVpfifOyy0SYlyOF
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Thu, 02 Feb 2023 09:33:04 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: a6eab584
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 806
Origin: https://capital.com
Connection: keep-alive
Referer: https://capital.com/
Cookie: _ttp=2LB2vMOKgeXwVpfifOyy0SYlyOF
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302020933048C8F43322852FF515C19
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a8ce8929b2fa9aa2c268b4383d8eeda03b95c273d2b6054432e8bb63cdb29805d9df20207d6cf4b9aca00c8da225c675fd36b451447f46be89da6999b2f274e5f
expires: Thu, 02 Feb 2023 09:33:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 09:33:04 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=4, origin; dur=115
x-origin-response-time: 115,23.36.79.13
x-akamai-request-id: a6eab61f
X-Firefox-Spdy: h2
capital.com/service?mode=tk&d=7993a2e3-a425-cb88-abc5-501f9af58ca5&tgid=-1000&oid=12&ln=pl&tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe
45.60.76.121200 OK 0 B URL HTTP/2 capital.com/service?mode=tk&d=7993a2e3-a425-cb88-abc5-501f9af58ca5&tgid=-1000&oid=12&ln=pl&tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe
IP 45.60.76.121:0
GET /service?mode=tk&d=7993a2e3-a425-cb88-abc5-501f9af58ca5&tgid=-1000&oid=12&ln=pl&tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe HTTP/1.1
Host: capital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/pl/trade-crypto?c=41100_5060629&pid=cellxpert
Cookie: AWSALB=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; AWSALBCORS=ImGvjpn4ZzlTDpb08MUnjlQ5bUbgrC//xLRGRPe3ylUgaQYdzBtvuI70zyJLc4TmCMBGmDQn7rwF+CZML60h21lKOPFdgKBWOVnuzWbe9nsuZJ3L++1iGozoAZsH; __cp_sdssid=e43aec00fb6aecd81478968858d2a8b6; cc_ab52=1; visid_incap_2326300=EEaCsZWOS2Cd+4kZE/6AikqD22MAAAAAQUIPAAAAAAALigqTy/F/zv7XxBg7EcQP; nlbi_2326300=4URobJCm7B1nbulKxQSD8QAAAACxVi0Uqak9pPALP4o1gbgz; incap_ses_633_2326300=aAn4MInPzEY6Kqp/pd7ICEqD22MAAAAASym7h8+XeU4NofbPH/og7Q==; visid_incap_2784786=ALtoe/pCRXeCP0TcT+53hEuD22MAAAAAQUIPAAAAAAA1cK1cMkGRcOtRsS8oQxp+; incap_ses_633_2784786=aw3kaVJEhW5YKqp/pd7ICEuD22MAAAAA9rEp1n0m3LBz1ztbUiYz3g==; uid=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_deviceId=7993a2e3-a425-cb88-abc5-501f9af58ca5; __cp_tsid=7b35955c-ded5-94d3-b204-53d2b7dc8fbe; __cp_lastPage=https://capital.com/pl/trade-crypto; __cp_AB_testSample_var=variant2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 09:33:00 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALB=xv93KYjp4GWWzMZqYDw/bSnzZ/OdP62bIhO4NA8vtp6tUYbReFPdFH8t+UmH1Q0lZWrm7uyd3vKha++KvXwpGmvZLTkpFL/N2PzFORoTeDw4IRuZzCWA8K88mTfb; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/
AWSALBCORS=xv93KYjp4GWWzMZqYDw/bSnzZ/OdP62bIhO4NA8vtp6tUYbReFPdFH8t+UmH1Q0lZWrm7uyd3vKha++KvXwpGmvZLTkpFL/N2PzFORoTeDw4IRuZzCWA8K88mTfb; Expires=Thu, 09 Feb 2023 09:33:00 GMT; Path=/; SameSite=None; Secure
server: nginx
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn: Imperva
x-iinfo: 1-5802942-5802962 NNNN CT(39 39 0) RT(1675330378699 951) q(0 0 1 -1) r(9 9) U12
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=c95bmzw&ref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&upid=nnowqga&upv=1.1.0
3.33.220.150302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=c95bmzw&ref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&upid=nnowqga&upv=1.1.0
IP 3.33.220.150:0
GET /track/up?adv=c95bmzw&ref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&upid=nnowqga&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 09:33:01 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=c95bmzw&ref=https%3A%2F%2Fcapital.com%2Fpl%2Ftrade-crypto%3Fc%3D41100_5060629%26pid%3Dcellxpert&upid=nnowqga&upv=1.1.0
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=15602010-863e-41d2-a75e-0b6d8f43aadb; domain=.adsrvr.org; expires=Fri, 02-Feb-2024 09:33:01 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2