r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 59be8dfdd6f4ab82f394d3d5b927e065
dc8e8f1bbae495f84322e5efd0c42a39ef5be56c
7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11716
Expires: Thu, 03 Nov 2022 04:57:56 GMT
Date: Thu, 03 Nov 2022 01:42:40 GMT
Connection: keep-alive
t2.blowingwnd.com/l.php?p=c:o6450ylcdnn31butk&d=624e9ea3e8e2a8163b65d246&pid=63631c7ed25a000001997fbb&s=503
51.161.115.163302 Found 0 B URL HTTP/1.1 t2.blowingwnd.com/l.php?p=c:o6450ylcdnn31butk&d=624e9ea3e8e2a8163b65d246&pid=63631c7ed25a000001997fbb&s=503
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l.php?p=c:o6450ylcdnn31butk&d=624e9ea3e8e2a8163b65d246&pid=63631c7ed25a000001997fbb&s=503 HTTP/1.1
Host: t2.blowingwnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 03 Nov 2022 01:42:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: 19t
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43ea74d83493710eb8b64a74046ff569
74dee6d9e8b796d34f2788a472b90b3f7fc79ecd
f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6531
Expires: Thu, 03 Nov 2022 03:31:31 GMT
Date: Thu, 03 Nov 2022 01:42:40 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: max-age=120676
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:40 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 11:13:56 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: L5K/6XePBgYkoSjhlhGfLCl1IKnSNdBXkd7bs0U+AG3eXkr78cUPVoL+dx83MJI9qGTM/icbGS4=
x-amz-request-id: HQ5YCPYJQTSYQRH4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 03 Nov 2022 01:08:58 GMT
age: 2022
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 03 Nov 2022 01:42:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96444d94a98a69eec68a2454eb9b358b
efbe5dfcbf44d74daee10c2154ff81a1d94fb0d3
f0f2d3b8d2ec94551f14660bda46221d22ea3fdae4c690a443ef3e4931c330c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0F2D3B8D2EC94551F14660BDA46221D22EA3FDAE4C690A443EF3E4931C330C6"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=650
Expires: Thu, 03 Nov 2022 01:53:31 GMT
Date: Thu, 03 Nov 2022 01:42:41 GMT
Connection: keep-alive
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503
51.83.143.92200 OK 490 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503
IP 51.83.143.92:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (537)
Hash eed6ca2e6faadd3219a810d97770cc54
39693a89722cad19c57487743a5c75df4b381968
09f5f1f377f20165379f14e10564b81961f82c3e01a2ec0984baae64f38aec13
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 03 Nov 2022 01:42:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=63631c9143648b7b8c40d69e; expires=Sun, 06-Nov-2022 01:42:41 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503&bv=1
51.83.143.92302 Found 0 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503&bv=1
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503
Cookie: bt-603611c5b7eaf46891533240=63631c9143648b7b8c40d69e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 03 Nov 2022 01:42:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 2g2
Location: https://popcash.net/world/go/134600/317194
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fcdfb829588cc1478958c6b74ab5b30d
23d3498a5df424aebe04ecaa1d158981769c279b
14ca63be8445f27094392f5cc23e72507c25a6f05a41690b49768f902d43bbe0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5806
Cache-Control: max-age=92926
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:41 GMT
Etag: "6361cde1-116"
Expires: Fri, 04 Nov 2022 03:31:27 GMT
Last-Modified: Wed, 02 Nov 2022 01:54:41 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ron.trffclb.com/favicon.ico
51.83.143.92200 OK 20 B URL HTTP/1.1 ron.trffclb.com/favicon.ico
IP 51.83.143.92:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-503
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 03 Nov 2022 01:42:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
popcash.net/world/go/134600/317194
172.67.194.203301 Moved Permanently 162 B URL HTTP/2 popcash.net/world/go/134600/317194
IP 172.67.194.203:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 03 Nov 2022 01:42:41 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kppqZjf%2BscTDa7KM96VtLtvymY1SYL7kk8Zo%2BpFYb%2BI2DpD29tIS1lklywq0rFbIMoskSrHGj0eisLdxHV%2F0Sbg9EakUQfFoulqdhiJD9qqO%2FbJn4qrK4DRexEij"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76416a2bde90b506-OSL
X-Firefox-Spdy: h2
ps.popcash.net/go/134600/317194
54.204.100.201200 OK 270 B URL HTTP/1.1 ps.popcash.net/go/134600/317194
IP 54.204.100.201:0
File type HTML document, ASCII text
Hash 8b13274eaa546f04e18971a1f66cc922
274fa2f119cfb8f6ef98738ff0b6928d42348c6e
a5938f722a894020b44f617a9e76733088f3f4b5c65ec0061a3605c1bed5561b
GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Thu, 03 Nov 2022 01:42:41 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 270
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd65439b27a0101cd831309f178fbb45
4daa9343dda0f37ba734e2b5500caf2728cf89db
37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3546
Cache-Control: max-age=112993
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:41 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:05:54 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ps.popcash.net/ad/ad?p=134600&w=317194&t=4a1fd2d280ffac36&r=&vw=1280&vh=0
54.204.100.201303 See Other 0 B URL HTTP/1.1 ps.popcash.net/ad/ad?p=134600&w=317194&t=4a1fd2d280ffac36&r=&vw=1280&vh=0
IP 54.204.100.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=134600&w=317194&t=4a1fd2d280ffac36&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Thu, 03 Nov 2022 01:42:41 GMT
Location: http://dipaka-ead.com/zcvisitor/ce523474-5b18-11ed-b440-127a9a8e997d/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=06d8a3f0-48cd-11ed-a334-0a918cbcbb97#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive
dipaka-ead.com/zcvisitor/ce523474-5b18-11ed-b440-127a9a8e997d/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=06d8a3f0-48cd-11ed-a334-0a918cbcbb97
3.212.50.125302 0 B URL HTTP/1.1 dipaka-ead.com/zcvisitor/ce523474-5b18-11ed-b440-127a9a8e997d/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=06d8a3f0-48cd-11ed-a334-0a918cbcbb97
IP 3.212.50.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/ce523474-5b18-11ed-b440-127a9a8e997d/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=06d8a3f0-48cd-11ed-a334-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Thu, 03 Nov 2022 01:42:41 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://go.money616.xyz/s4?sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z
Server: ymkMpLwr
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DjidRVwJPD/r1UHc63SIfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OPTOyoL7ZMj81QJ+7X3oSgFfwsc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74a88e96c5b2084da27fd93e5f6dbc9b
d453af6b8e75328db0af08fb5e05167c72dd86ff
04cd7d3fdfbd3b7ae777818c1557d335ea3f1e4c035c602d7ddca5a136b6c07f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04CD7D3FDFBD3B7AE777818C1557D335EA3F1E4C035C602D7DDCA5A136B6C07F"
Last-Modified: Mon, 31 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18195
Expires: Thu, 03 Nov 2022 06:45:57 GMT
Date: Thu, 03 Nov 2022 01:42:42 GMT
Connection: keep-alive
go.money616.xyz/s4?sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z
18.184.197.212200 OK 1.6 kB URL HTTP/1.1 go.money616.xyz/s4?sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z
IP 18.184.197.212:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (364)
Hash c24e15479ee13bf91a82641b36b047f5
da083066c51dd9db186d7a61164e08898078259d
cd71af54b4d548e56eb40cc173b403e8185cba321fc69a891d70e15eed1a8281
GET /s4?sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z HTTP/1.1
Host: go.money616.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
connection: close
x-content-type-options: nosniff
content-type: text/html; charset=utf-8
x-powered-by: Short.io link shortener
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
content-length: 1554
Date: Thu, 03 Nov 2022 01:42:42 GMT
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7bcd6061b8f787a8c2c9dba55615e8e4
60387b4a475000772d54c410925be1a4870b9783
3409c289f5208710afbda7026a6c010683bd63a9f523e7fb206b59b3b88e0d77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 10:25:06 GMT
Expires: Wed, 09 Nov 2022 10:25:05 GMT
Etag: "60387b4a475000772d54c410925be1a4870b9783"
Cache-Control: max-age=549142,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76416a331ff2b512-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7bcd6061b8f787a8c2c9dba55615e8e4
60387b4a475000772d54c410925be1a4870b9783
3409c289f5208710afbda7026a6c010683bd63a9f523e7fb206b59b3b88e0d77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 10:25:06 GMT
Expires: Wed, 09 Nov 2022 10:25:05 GMT
Etag: "60387b4a475000772d54c410925be1a4870b9783"
Cache-Control: max-age=549142,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76416a3558f1b512-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16539
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 01:42:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16538
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 01:42:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16538
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 01:42:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc615bd01e1ac97fec7bf47b18f0e999
ee2c892adba5d3e12ac8443065c38317752f3e4a
ca41974691496f2629f45cba9bb21b84e7dbb9cefbf7e8e3348c98b101002269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7044
x-amzn-requestid: 6ed2687f-f478-4206-a9b7-fc63428966bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a5sd1GcvIAMFYew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63608df1-79ada3087098484923a3b64d;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 03:09:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HsnvvNU6huvFGVXW-AypNd0J5_Hwv-bQbpJ0g6JVrjUt6a_cy3vAUA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 04:23:25 GMT
age: 76758
etag: "ee2c892adba5d3e12ac8443065c38317752f3e4a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb41c369d-2e26-4fd4-b02e-9c68040d509b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb41c369d-2e26-4fd4-b02e-9c68040d509b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3da5a5a34566686d08b68c465804f3
6e1bc636b7923030b294feeaeb96b593923bdaf9
6a77d97b723c42715fc0afaad2c7ff24dfe0868bd92c9a162ad73aefd7cc20ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb41c369d-2e26-4fd4-b02e-9c68040d509b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13312
x-amzn-requestid: d441a42e-5ddf-439d-a784-8e2c6927178f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_iCZFTKoAMFV7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362e3a8-38c27dce51585b1521bb0a45;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 21:39:52 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zHKTy3bnA3jeaZ_46AdPy3qL1ot8MXq76Pg0dRnzbHgVAb2Kdip8bA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:40:08 GMT
age: 14555
etag: "6e1bc636b7923030b294feeaeb96b593923bdaf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26182d39e6261f137221e7f49dc4bf57
9feb2d147394a8bde9df6184de4e95e2c0e2c67c
55979ae48a023c4dce97ab1ac085ae797a650f82ef5a8cac0ac57e43f0fabb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9061
x-amzn-requestid: 46da4a81-4629-485e-a1ac-6d1cf7794a1a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avzazGt0IAMFsSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c9911-0225b41020c46521683bdf7a;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 03:08:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: du60l8S7Y1FiCa1ZW-Jnk8SDNCVuvmGzlO2d5kRHWmvNOUrFhE_5yg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 08:59:45 GMT
age: 60178
etag: "9feb2d147394a8bde9df6184de4e95e2c0e2c67c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z6Lnru_eeTvRGdsz-q37-HGFgFfIT6fLSFcJBvT3oPjAPilszTWkDw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 11:00:57 GMT
age: 52906
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff4da3d2c66d6f155fea05b88127873d
eafb1bafaa2feb2b188aeb1bc8caac505337d258
82e62da33562177403fcab7a552a5f5f64c91ab4cee25dd1cd979dedfe066cde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7972
x-amzn-requestid: fa64bad3-9070-43c8-83d1-803fb3696318
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8cx_GSlIAMFZqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361a80c-5806a37c15d428d96366abfa;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 23:13:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dW1wdxKzL1WvezmHwKiqEoPPoEQVoq9oYTKoLMq9sd2nPED6afF63w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 04:29:40 GMT
age: 76383
etag: "eafb1bafaa2feb2b188aeb1bc8caac505337d258"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F915461ca-9b07-49f7-ad2b-5c86773b4292.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F915461ca-9b07-49f7-ad2b-5c86773b4292.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29dda99e5910f2c33ce87e5c794c5dc2
dfe01edc335a0894b67b26999e810c64f9cca524
9569302edc6518ac09794f5ccfbcf4bf2d231fec23652a1a8f7893c70c517f0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F915461ca-9b07-49f7-ad2b-5c86773b4292.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6652
x-amzn-requestid: c911092c-70d7-41ee-8fa2-ce9387c320ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2ZK9FOZoAMFjVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f3bdf-18f40a4a4c74b38b5dbe87a0;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:07:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: lAzsnRovNNjufGLK7JbjExab1Uh_QlQEq0NpQHOa5oK3GqFk1AZYaw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 06:39:13 GMT
age: 68610
etag: "dfe01edc335a0894b67b26999e810c64f9cca524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9ea497d5f8b5a916e5c4b41268745bd9
bb552bbd89159c879b00d01c79ad176bf83bd93e
4c257bc283a3a87acbb607ea5c4d6e65d7d232cd1e7c73c5b3c089ed082ef868
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5122
Cache-Control: max-age=89382
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:43 GMT
Etag: "6361c2b7-116"
Expires: Fri, 04 Nov 2022 02:32:25 GMT
Last-Modified: Wed, 02 Nov 2022 01:07:03 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9ea497d5f8b5a916e5c4b41268745bd9
bb552bbd89159c879b00d01c79ad176bf83bd93e
4c257bc283a3a87acbb607ea5c4d6e65d7d232cd1e7c73c5b3c089ed082ef868
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5122
Cache-Control: max-age=89382
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:43 GMT
Etag: "6361c2b7-116"
Expires: Fri, 04 Nov 2022 02:32:25 GMT
Last-Modified: Wed, 02 Nov 2022 01:07:03 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
goosebomb.com/gogate/etoro/31/index.html?action=166743976210000TNOTV415326358024Vbc
172.67.144.202200 OK 1.1 kB URL HTTP/2 goosebomb.com/gogate/etoro/31/index.html?action=166743976210000TNOTV415326358024Vbc
IP 172.67.144.202:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d81584c84fe6754737963fcfe089767b
0414b0aa0cb764a45ee799615a8a16a37830bf73
4fa6af6ec486a171df12d70e72d9286a65056c6c0b4abeb68028f4cf5e2f3b50
GET /gogate/etoro/31/index.html?action=166743976210000TNOTV415326358024Vbc HTTP/1.1
Host: goosebomb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: text/html
x-guploader-uploadid: ADPycduhZ5LfvR5FAgGRJiu_U0TiyOwn1O1k_nhATi7EbyE3i_Jixk_isU_JVTxImfCkjWajekYtW0UhiM7eQBEJy9Ecb_-UQ-Bv
expires: Thu, 03 Nov 2022 02:42:43 GMT
cache-control: public, max-age=3600
last-modified: Tue, 09 Mar 2021 12:58:00 GMT
x-goog-generation: 1615294680223358
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1290
x-goog-meta-goog-reserved-file-mtime: 1614945425
content-language: en
x-goog-hash: crc32c=XVFUmg==, md5=RiW9HhJTA+38GSh9LrzYDg==
x-goog-storage-class: STANDARD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XV%2FNFkTeVkRUyuEdquQhvv6X515Vu4Gnqgtia7Zsyj9DFw0b9xa%2BiPNMdrR%2Bchy5QZ0jVepblP7Vq1Qv5VBWxPt80aNAw3E1j9iner3D4fsJc%2Fg2ryidx%2BQP61r1f1Pf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76416a379e851c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash 33ae7f0d7fa6ea2c43229b0e48f900b8
d67a4eb0bae6d79854e26696091fbed1f7bf173f
515a65051f4f9c059442b6a4461e2b3c3df5e7cb0f0b5075650e34a82eeb07e1
GET /gtag/js?id=G-E9QBCJNBNS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 03 Nov 2022 01:42:43 GMT
expires: Thu, 03 Nov 2022 01:42:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75964
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
med.etoro.com/B12616_A89099_TSlick_S166743976210000TNOTV415326358024Vbc.aspx
96.6.17.100301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/B12616_A89099_TSlick_S166743976210000TNOTV415326358024Vbc.aspx
IP 96.6.17.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /B12616_A89099_TSlick_S166743976210000TNOTV415326358024Vbc.aspx HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://etoro.com/
Date: Thu, 03 Nov 2022 01:42:43 GMT
Connection: keep-alive
etoro.com/
2.22.37.169301 Moved Permanently 0 B IP 2.22.37.169:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.etoro.com/
Date: Thu, 03 Nov 2022 01:42:43 GMT
Connection: keep-alive
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
104.16.149.64200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (2829)
Hash b9eadb6d05b9bafe419aa99f68097df2
d850dc819264475c6d1cbe6e8419a1016a659db2
a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13711
expires: Thu, 03 Nov 2022 05:42:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a3bfb48b500-OSL
X-Firefox-Spdy: h2
adspredictiv.com/jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z
35.190.38.40200 OK 9.9 kB URL HTTP/2 adspredictiv.com/jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z
IP 35.190.38.40:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (21747)
Hash 61504f2004811a760fd23ce494b2e601
20ea5e9a7c37248efb0ae1af24184fc4ee2be1ba
c07cc6000056597df9bd619b500949c93fbe748c2e7b89bffb959be3246c3b0d
GET /jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.money616.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 03 Nov 2022 01:42:42 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
IP 23.38.201.117:0
File type PNG image data, 322 x 432, 8-bit colormap, non-interlaced\012- data
Hash b7322c639dcf276550e310727cf76893
136b5f1a82788708f04b74a30fcefdadaff00e43
6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
GET /cache1/hp/v_250/images/instruments/t3-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ynBcBZLuM0g8KM2F3SRl5wWRChG7u8muIqcCU58ccgoEdfV0x23Je45/tjxzNW1Pv46uF30VAQQ=
x-amz-request-id: BJSN68QDJ2WRDK40
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "b7322c639dcf276550e310727cf76893"
x-amz-meta-sha256: 6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: r9skgKWaP8RVY9nRMto5PlKboL4BQb73
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11012
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/assets/css/onetrust.css
23.38.201.117200 OK 2.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/assets/css/onetrust.css
IP 23.38.201.117:0
File type ASCII text, with very long lines (885)
Hash b3f403de6d79b34f32dba5e4effaabc2
7b436b6060e88daf19f12bd27cbe2533d25a2343
3ec0cde05873dde93c16f4b4f3b7ca7e236ba4e82ab595ee8f13b959f5b2813a
GET /cache1/assets/css/onetrust.css HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7vqiIPn64ptqVNwIM1fvJGjbv11IUdsOT6JKR8Cyxsr81DT/4uax9s7iGzI7fTeV0SwX20GmqJE=
x-amz-request-id: Z3V5BX28EG5962WS
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 12:30:17 GMT
etag: "66e8b2c112ebb5bb9b4fc326d3d5f87b"
x-amz-meta-sha256: 55c8a3b763077bf16466a3a9af5b7e5b2baba7d345cd90b50403058a633bda48
x-amz-meta-s3b-last-modified: 20220616T122823Z
x-amz-version-id: Qcu9.b5PJ70a2SNFK2gJjtsbcFrk1Lur
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
content-length: 2655
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
23.38.201.117200 OK 43 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
IP 23.38.201.117:0
File type PNG image data, 660 x 684, 8-bit colormap, non-interlaced\012- data
Hash 43f62ee21492814c91e306a57be05ee7
77e0ddcffc72c83f9c6690f521a4594d0eacdf7a
55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
GET /cache1/hp/v_250/images/instruments/t3-4.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CQyOioDgEwsXle/cn0DSfXbIj4PtX6wwvvY03kgw+sPBr5gMr79OxJ6rVKvDrcsLStc69BjQXWU=
x-amz-request-id: BJSNRPZPM3RB1Y56
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "43f62ee21492814c91e306a57be05ee7"
x-amz-meta-sha256: 55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: ZJ9bAs_aawgIHhTc3zcLSZS.lxwDFu4K
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 42876
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1bg.jpg
23.38.201.117200 OK 72 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1934x1230, components 3\012- data
Hash 2b8c66295f644aad1bbd97bffcf8f910
f34b342b50c43263d6c130286958086addefd3d6
923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
GET /cache1/hp/v_250/images/instruments/t1bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YFTNty5SIcdhKq450TYHwf7SRkH10wCrNu6VxS0n04wBpLStduNxmbhS13gnNaIasJR4Ietz9UY=
x-amz-request-id: BJSVX197ACP9V7RR
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "2b8c66295f644aad1bbd97bffcf8f910"
x-amz-meta-sha256: 923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: rXQsdf5tcUphlZZ7QaAie.wlAbWxbLl7
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 72188
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
IP 23.38.201.117:0
File type PNG image data, 450 x 392, 8-bit colormap, non-interlaced\012- data
Hash f61c9d2ed729320b71af181ff331cb79
182f5c37accdde48b36e7803de6251cc92319b86
11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
GET /cache1/hp/v_250/images/instruments/t1-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 92R24GLatFUU0eh05veMnGqcA2KrIVfsdBz9zWssCytuT0e3Lb7tPc2v9A+iyx7fTZjRCEWnHVc=
x-amz-request-id: BJSJMDWMK7ZCK773
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "f61c9d2ed729320b71af181ff331cb79"
x-amz-meta-sha256: 11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: YkW8_gVG77z0IkOnT2pWi2camXx3AgiY
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 31786
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
23.38.201.117200 OK 94 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x2160, components 3\012- data
Hash b05c8e47e71ba8a0fe73a0da54f010ef
f26455efe60bcf1e74e693574e482b0a952e3de9
2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
GET /cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zqCA8I7VwQ4OM57SeL41enO3ZjqGkwlCS7cjlH8/RylZXzy3zQnrVtSi0iaVUFdNRZjfpzfdllE=
x-amz-request-id: XSS69QHT5BYHDT0P
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:38 GMT
etag: "b05c8e47e71ba8a0fe73a0da54f010ef"
x-amz-meta-sha256: 2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
x-amz-meta-s3b-last-modified: 20220920T161111Z
x-amz-version-id: VChvjEsOHCDhESR_vRlWIZZI9qChCEb_
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 94463
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
IP 23.38.201.117:0
File type PNG image data, 744 x 504, 8-bit colormap, non-interlaced\012- data
Hash 5a95a095169c27431449bf549b99993d
91a11cffc857dcaa2b38fa901423b227870ac1e4
681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
GET /cache1/hp/v_250/images/instruments/t2-1.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: K4TQrvgv6tHAKlL+ySccGF7oIFbHIm62RTqZ2kB54E9ph5Z0n4O9Fr37Li7vBlcPNEqBlNn15Zg=
x-amz-request-id: BJSS8ZSZ4K6J87Q8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "5a95a095169c27431449bf549b99993d"
x-amz-meta-sha256: 681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 6s15Jbvt_YhVTfS.Qm19BI1gvokKxcHz
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11234
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
IP 23.38.201.117:0
File type PNG image data, 668 x 938, 8-bit colormap, non-interlaced\012- data
Hash beb13238cf465f668c413a022f5633c8
31760dac17b8e58942c79708a4616c3a1df4b233
88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
GET /cache1/hp/v_250/images/instruments/t2-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ky3vrANJhtTj+F60HsRTmFy7QMNFEWRYKVWaE2DyXeaBTBmkZn6svQRqLkPAK6t0vCsNwJQ9vwY=
x-amz-request-id: BJSN4THC2967ZG2T
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "beb13238cf465f668c413a022f5633c8"
x-amz-meta-sha256: 88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 42HIJXJNQSkchYiJUGINB9CQEa72HNtD
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21388
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
adspredictiv.com/script/i.php?stamat=m%257C%252C%252CQhNqtiKuoGU3B0-GH0dEdHP3xP.645%252C1xiXI3Ajt2k-yEg2q0Uf9X-7ofbYCn32qzmv7RvlKxp1LGw0Pwl1oKmCbU7F3INm_u5yydwBS76L7qLOVhFru7WBPQxzBt1hVoh56zwPPFyPLJ3X-MpJCWqQeHesvfcOC78uFGRPLhR5z-iil4J-QSp-PjXXD-SNsxrqILrNdUJbFdZCUfNxXSuN5g27pSoz-Z3Byjhz5w_SESTCJyUby0rN0_oiKLLfkb246M-fNrX2QJm7h6jGqcT2vmb3zSCfAbsc3GQn5cqDMez69lgi51UheR_occ10yWO9GQ1D2WcdmjRGkeMMh_ou9pdmqjlOEGwG78H3FawIXbM5KqmWHKTFPaVs8an0stKpCHyeD4SBuryPuhAU8QZNP78Gb_styrlippmJgKnMMhWLoY2xZjsZYQM5Pgt9_fox-gvX5r-uewzmt4X8Lw-2P45HPrZQZIi5S1QZr75rDiJezroiMPU859AB69JCDHP7gnG0X7oO-lgpRwF6xPnpNtE3rAC1x1AzMpFcdK4m6stu8KjepEjUNjj5CKf9sZWvQ_vb3APxdDXMTMpPhYCBgGOwIruAaijZsFe8TUj40mi5efaZqs9HYBsRwRrUa8FCOuFNMl0%252C
35.190.38.40302 Found 1.5 kB URL HTTP/2 adspredictiv.com/script/i.php?stamat=m%257C%252C%252CQhNqtiKuoGU3B0-GH0dEdHP3xP.645%252C1xiXI3Ajt2k-yEg2q0Uf9X-7ofbYCn32qzmv7RvlKxp1LGw0Pwl1oKmCbU7F3INm_u5yydwBS76L7qLOVhFru7WBPQxzBt1hVoh56zwPPFyPLJ3X-MpJCWqQeHesvfcOC78uFGRPLhR5z-iil4J-QSp-PjXXD-SNsxrqILrNdUJbFdZCUfNxXSuN5g27pSoz-Z3Byjhz5w_SESTCJyUby0rN0_oiKLLfkb246M-fNrX2QJm7h6jGqcT2vmb3zSCfAbsc3GQn5cqDMez69lgi51UheR_occ10yWO9GQ1D2WcdmjRGkeMMh_ou9pdmqjlOEGwG78H3FawIXbM5KqmWHKTFPaVs8an0stKpCHyeD4SBuryPuhAU8QZNP78Gb_styrlippmJgKnMMhWLoY2xZjsZYQM5Pgt9_fox-gvX5r-uewzmt4X8Lw-2P45HPrZQZIi5S1QZr75rDiJezroiMPU859AB69JCDHP7gnG0X7oO-lgpRwF6xPnpNtE3rAC1x1AzMpFcdK4m6stu8KjepEjUNjj5CKf9sZWvQ_vb3APxdDXMTMpPhYCBgGOwIruAaijZsFe8TUj40mi5efaZqs9HYBsRwRrUa8FCOuFNMl0%252C
IP 35.190.38.40:0
File type PNG image data, 136 x 132, 8-bit colormap, non-interlaced\012- data
Hash 6bedb1b3afc69447f7ea0c00993b53a8
1281f1fd5df23a9a19bd8573619007d04f6047ac
55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
GET /script/i.php?stamat=m%257C%252C%252CQhNqtiKuoGU3B0-GH0dEdHP3xP.645%252C1xiXI3Ajt2k-yEg2q0Uf9X-7ofbYCn32qzmv7RvlKxp1LGw0Pwl1oKmCbU7F3INm_u5yydwBS76L7qLOVhFru7WBPQxzBt1hVoh56zwPPFyPLJ3X-MpJCWqQeHesvfcOC78uFGRPLhR5z-iil4J-QSp-PjXXD-SNsxrqILrNdUJbFdZCUfNxXSuN5g27pSoz-Z3Byjhz5w_SESTCJyUby0rN0_oiKLLfkb246M-fNrX2QJm7h6jGqcT2vmb3zSCfAbsc3GQn5cqDMez69lgi51UheR_occ10yWO9GQ1D2WcdmjRGkeMMh_ou9pdmqjlOEGwG78H3FawIXbM5KqmWHKTFPaVs8an0stKpCHyeD4SBuryPuhAU8QZNP78Gb_styrlippmJgKnMMhWLoY2xZjsZYQM5Pgt9_fox-gvX5r-uewzmt4X8Lw-2P45HPrZQZIi5S1QZr75rDiJezroiMPU859AB69JCDHP7gnG0X7oO-lgpRwF6xPnpNtE3rAC1x1AzMpFcdK4m6stu8KjepEjUNjj5CKf9sZWvQ_vb3APxdDXMTMpPhYCBgGOwIruAaijZsFe8TUj40mi5efaZqs9HYBsRwRrUa8FCOuFNMl0%252C HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
referrer-policy: no-referrer
location: https://goosebomb.com/gogate/etoro/31/index.html?action=166743976210000TNOTV415326358024Vbc
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
IP 23.38.201.117:0
File type PNG image data, 436 x 390, 8-bit colormap, non-interlaced\012- data
Hash dad8f4f5e1f7c6afaa7a1d02bbad4aae
7c47738ec815ba441c70d30967035c1a2c3a34ff
82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
GET /cache1/hp/v_250/images/instruments/t3-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: vYYw4/nX6J0XwQyBd7Bxo8ppBa11euWIhuDvwJG3+nyQlemDKpJ4ol5vRCRWMd3J1rhCuy9Zzfk=
x-amz-request-id: BJSG6VSZV3NPRZZ5
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:25 GMT
etag: "dad8f4f5e1f7c6afaa7a1d02bbad4aae"
x-amz-meta-sha256: 82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: .ea0J.LF3Tey.FSpyPfEDCWl6aYThAFP
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21261
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2bg.jpg
23.38.201.117200 OK 67 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 19c57357b906758af6469a6b2a2c8846
e360a5922a6d44ca6066ff5dff01ef2440fd7368
358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
GET /cache1/hp/v_250/images/instruments/t2bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CzOhkgu5Y0R6HoaBI3spOEsIC0ULFFWfQP/StDzqj7O8zeKrbqTF2gmrAiXeQrLylU+M0/ANeRM=
x-amz-request-id: BJSZ59B0WDG7GH0E
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:25 GMT
etag: "19c57357b906758af6469a6b2a2c8846"
x-amz-meta-sha256: 358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: RNRY.bWk105UAkjO4Db33xjz7lHZilcf
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 66908
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
23.38.201.117200 OK 59 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 6d94c8cb40dfa33fccc8b4800f2c7e0e
745c0d98d4cde90d8717feadfa120e0cc20dab1f
a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
GET /cache1/hp/v_250/images/instruments/t3bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XyBWTcKB6ZnhqlKK/cUvo3Mkusx8tebxk8v4iJZ1SngSydT4rYfmHqKA1NPou6jsVLdVHFTSpuc=
x-amz-request-id: BJSW4ZMF254PA5ET
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "6d94c8cb40dfa33fccc8b4800f2c7e0e"
x-amz-meta-sha256: a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: pyA8G.VrAE4shNTZPyu3hFkUKsSZGk39
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 59017
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
23.38.201.117200 OK 115 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
IP 23.38.201.117:0
File type PNG image data, 588 x 638, 8-bit colormap, non-interlaced\012- data
Size 115 kB (115422 bytes)
Hash a0edff04cdbe03fe84f35b2368beedd9
6231c9d9265502517533892d8a0f42d5790c0310
51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
GET /cache1/hp/v_250/images/instruments/t1-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CLncvM4L18ZkiKjHvjGrOYpGKksF2UJqMLsRtr7/JixW0QqS6mNX7SWENSlm9Aj8le9WdCqQ7XM=
x-amz-request-id: BJSTAV1CC0CZR8SW
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "a0edff04cdbe03fe84f35b2368beedd9"
x-amz-meta-sha256: 51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: gsLHL9_akY3qvzziYmuZ43tVdbQ8cOch
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115422
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
104.16.149.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Hash 6439835da3e85cb6917ac06b2dab2b37
b65ad002a7c48559e9124256295c1c688e8f3084
bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13549
expires: Thu, 03 Nov 2022 05:42:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a3c9ba2b500-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/logger/logger.js
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/others/logger/logger.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (5055), with no line terminators
Hash f620bec033fe844135374191b331937d
ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
GET /others/logger/logger.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 03 Nov 2022 01:47:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
content-length: 2285
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
142.250.74.78200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
IP 142.250.74.78:0
File type ASCII text, with very long lines (1343)
Hash 0e533996fcaba6ac174727a6e8e586bb
09bd81251154c02e44157f64eb883f919a909c02
d8adcee38adfb3deea99e628daf88922be1f5d47ee0ec8ec202dec870ccdab56
GET /optimize.js?id=GTM-55ZB4XN HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 03 Nov 2022 01:42:43 GMT
expires: Thu, 03 Nov 2022 01:42:43 GMT
cache-control: private, max-age=900
last-modified: Thu, 03 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
104.17.224.78200 OK 0 B URL HTTP/2 cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
IP 104.17.224.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1
Host: cdn.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: text/css
content-length: 0
x-amz-id-2: 0YZ0H80/30MgBTG2ijPKvwK2o4c7bg1oKeBH6NC/Vct0AWcwyu8ktTQ8I/j+udXxbuBe4+WEVrY=
x-amz-request-id: K2GEEGSX18GPYAHC
last-modified: Thu, 20 Oct 2022 08:49:27 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=300
cf-cache-status: HIT
age: 579160
expires: Thu, 03 Nov 2022 01:47:43 GMT
accept-ranges: bytes
set-cookie: __cf_bm=Tokvvv8E59TPBJZ8Q7pzV7u_ai3LrXZXtd0EIwep.OY-1667439763-0-Ae+yLsUNrgUnR69Xm3pvDBZyzX+S/mYqABZyGPti6GTHZzrqGaMt9495eW93tXzUYM+xatEdz6z+1/BwSDsXhIs=; path=/; expires=Thu, 03-Nov-22 02:12:43 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76416a3cc8f70b41-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Hash 4a61fe67108ddbb01a2ceaf3687ba30e
3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:43 GMT
date: Thu, 03 Nov 2022 01:42:43 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
23.38.201.117200 OK 17 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
IP 23.38.201.117:0
File type PNG image data, 830 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d14115558936d84e16ec7efd2f4f45
a6268986699c86e577ca5589a0fcf2880661f7ea
68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
GET /cache1/hp/v_250/images/flags-hd2022.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TBVqRoB02EDyfVmR0znW/MNspedH9bXBBIhZ5E5yqJ3jEmjjuff+OOrTSAXRCNf4skiXRHJz8GQ=
x-amz-request-id: Y4J7D71XBE8X7XME
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 15:06:18 GMT
etag: "69d14115558936d84e16ec7efd2f4f45"
x-amz-meta-sha256: 68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
x-amz-meta-s3b-last-modified: 20220920T144902Z
x-amz-version-id: otKQpwD91003SDrhrFJwP7u7k7kYEK4v
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 16703
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Hash 1f385d1ea2e1c06cda506bafc17a4a94
0dc0ebf0502018976383091908379054b5a3cfed
e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 12028, version 1.0\012- data
Hash ee570da55652b90a2222880a1ece7323
d9a81b65239041b42c6aed22f5809797f0574c1e
26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
GET /cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xDtdJzSi21sF7CpiuxjIbrQdQrHfCf0qZSuIYVXllN38HVN7OiOcLrLEIAOZRHPfr0UXkqds/bQ=
x-amz-request-id: 0RKEXE4EJ8774W83
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:52 GMT
etag: "ee570da55652b90a2222880a1ece7323"
x-amz-meta-sha256: 26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
x-amz-meta-s3b-last-modified: 20220206T231740Z
x-amz-version-id: _nNBWNk.b.aBJaK32Y.ScZnJcz4Is6Dl
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 12028
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash e20f6e1c0681c07f69d37c428c0684d3
4aa36ecd12f2e7d3592807a0a3879914252faeb5
c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31844, version 1.0\012- data
Hash 9d7f82d9510b57b2d00f328d87ef3869
2a031c8ae51e62d8dc30fa0bb47f57a3695224c1
c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
GET /cache1/fonts/madera2/Madera-Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: d6poWwwwj9abPq/ES4oNvQTY1I4y2hMv1EdVnTf07kpNv7a2N1tn1ySx9pMV8KWPcG6wwi1unZI=
x-amz-request-id: K8KWP566ERFJBVE1
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:29 GMT
etag: "9d7f82d9510b57b2d00f328d87ef3869"
x-amz-meta-sha256: c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
x-amz-meta-s3b-last-modified: 20220203T192736Z
x-amz-version-id: VMc3owpvYk5nHUjZ.xX4Wq.u2RPawBMa
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31844
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Hash db85a0ddc6f6973df4bc98a1b2ed9d65
c6bba41edc8501b76aed9bff58597edef1c2502f
26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
23.38.201.117200 OK 2.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (8887), with no line terminators
Hash 1d2137aea2d4a9fca68a7b135e2cb9f3
e97ca29d385352fc286f1711bbdc45584161a316
ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
GET /cache1/hp/v_250/js/waypoints.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9lFezzLGhy5accCsGYcyDyckewdqZE6Df8H6ytpCQuSWrMcKQiCNX7H2YhvOccJk0UxxBNsnPHo=
x-amz-request-id: 5E8B8NFW9H2EH0EG
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: OAj0wpBsOOe0r5kxCMrusioy2xpCNFTE
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-length: 2635
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/jquery-3.5.1.min.js
23.38.201.117200 OK 31 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/jquery-3.5.1.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (65451)
Hash e96fc85ce0a9070920b87b1072dd9e1d
afd9871c95caf6a26ae56e8c661789d00c510162
43e3ac1190912814c4b67ca3512c14745d1b41ce4740d3df73ead62561ca31dd
GET /cache1/hp/v_250/js/jquery-3.5.1.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: e54UiWLmzXf08GlFZQOwNLmjw248K84CkHRaduvC3FXRYfpbzInEkKvkHjrXjI1R6iLGr6Oq0hk=
x-amz-request-id: 5E8854E5AX589C4N
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:57 GMT
etag: "dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-meta-sha256: f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: 4aWmwoVEWdk_DjJ9o9.1cbellEQnGA4x
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-length: 30950
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
23.38.201.117200 OK 9.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 17232e2fe3e81d95e6f1cb7c4d5b9e57
510e1569ab0187ef5712a7630d673536e8c519ac
4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
GET /cache1/hp/v_250/js/slick.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: JlrnGLJ6W/UxGhdYSC8CH8xghXbLPjPNChhyxW9KZUfoGKU71X7LjptjjFXM/+ltoatY8umxNmk=
x-amz-request-id: 5E85XVS4GHHW1N8V
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: YetQublaGzZokQiJoN6572gELuBFGXNz
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-length: 9568
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1047255493&cid=993084063.1667439763&ul=en-us&sr=1280x1024&_s=1&sid=1667439763&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166743976210000TNOTV415326358024Vbc&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1047255493&cid=993084063.1667439763&ul=en-us&sr=1280x1024&_s=1&sid=1667439763&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166743976210000TNOTV415326358024Vbc&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1047255493&cid=993084063.1667439763&ul=en-us&sr=1280x1024&_s=1&sid=1667439763&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166743976210000TNOTV415326358024Vbc&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Thu, 03 Nov 2022 01:42:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 16 kB IP 93.184.220.29:0
Hash 45a41737ff0108ad84e81403a2872d7a
8c8d9bf504e46dfe2bee42e479736273bfc6d32d
cd2b59f94b408dcce2c6b3e1ff0e1d22128cb0ad37c3568fe6bdd5cde7921bf5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 421
Cache-Control: max-age=136500
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:44 GMT
Etag: "63628d23-2d7"
Expires: Fri, 04 Nov 2022 15:37:44 GMT
Last-Modified: Wed, 02 Nov 2022 15:30:43 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3af3e30831669a44d8ccbd33e84e49c4
4960ff6336bb1c89013e7a5417e3c8b9b20310ed
29a0248ca18a0967a20b3ee636df7a0bc30799b754bf65e2cd38624b99f3bd3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
23.38.201.117200 OK 5.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
IP 23.38.201.117:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 8d34d8eb122958024d6319988331e68a
e79ac403f17e240360be6f5540b8e7dd4a5bb9a6
f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
GET /cache1/hp/v_250/images/favicon/apple-touch-icon.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zS7BtNRDYQQ8zMJHkYU73f6dvQrBR4/jG9pLiV2+ECAWJIWOshj7kabGoiH6CH3KtwiY7bnoVT4=
x-amz-request-id: 85NM0JGJ52A3JDYD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:47 GMT
etag: "8d34d8eb122958024d6319988331e68a"
x-amz-meta-sha256: f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: Q2EbxWG5EYMEKf0iJz44VFOyVRrx2PXV
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4959
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
23.38.201.117200 OK 1.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
IP 23.38.201.117:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 6f73b13c53883dda26ced7b25bdf69ef
a4743cd740ba05c518cc754a3ab2715f6a23d762
4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
GET /cache1/hp/v_250/images/favicon/favicon-16x16.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: q9Fv8gRd6+b337XtoTpjf0lXha/xDl8MDnEInDhNQHkRs5JLXmey+zDMgkhZFANHULI0QMT1Yxk=
x-amz-request-id: 85NZMGGA0Z9XBNVH
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:48 GMT
etag: "6f73b13c53883dda26ced7b25bdf69ef"
x-amz-meta-sha256: 4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: 8hLOOpLCaCPyjH8.y7Cb39Asiw_Qt5uv
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1020
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
23.38.201.117200 OK 8.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
IP 23.38.201.117:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (58067)
Hash f953d5c71910c6ac52b43b461396312a
4f05910e43fe46b681cda2c81af778b5cd2d28b2
26a8ffd9765eda92a46eee6f2fd622e562ff124b394101c0118118ecca68c09c
GET /cache1/hp/v_250/css/style-newhp.min.css?v=1666787325 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: RfoPvqKXzaq3HI+vj6CoefVvf/rn2n4Ybn6GKCGCDpFtSSsEb3ieUmiGkL2VP8WWZnbBJe+joTo=
x-amz-request-id: YFFS03YFYAZHRAFH
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 11:22:06 GMT
etag: "eb05627089f6248f125b58845182861e"
x-amz-meta-sha256: a9f2f6aa1eda10879c3d4149f011cb5529f07bb4ab43c09bd61e5d81c88b0012
x-amz-meta-s3b-last-modified: 20220920T204059Z
x-amz-version-id: BS1lBzQzv2GL0QuRJy7fh_FPT1FP8XXD
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-length: 8214
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash fbea15ab2f5f589bbb8e1e36fc8879b4
fa3555a6a50b2ff2a77e3c92781b176ef5075a12
4086d5441c751b0172f7f98d558b5c28123e79b4bd553e686f18bb325c7201bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6176
Cache-Control: max-age=126081
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:44 GMT
Etag: "63624df6-118"
Expires: Fri, 04 Nov 2022 12:44:05 GMT
Last-Modified: Wed, 02 Nov 2022 11:01:10 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
static.hotjar.com/c/hotjar-1871831.js?sv=6
52.222.139.53200 OK 9.0 kB URL HTTP/2 static.hotjar.com/c/hotjar-1871831.js?sv=6
IP 52.222.139.53:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (11525)
Hash 812867babcbb6e978db2f4bd3d8ac373
7f2261fdfc2d1cc5fafb0d8c68d30b8f0c385741
26ac3a2c7cdb6054d75b5008ecc076aea6372c2b51c7972f890a30a2eb1fb24f
GET /c/hotjar-1871831.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 03 Nov 2022 01:42:44 GMT
cache-control: max-age=60
etag: W/357b85607a12995b0b089bfea41f2467
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dd133741afef09b02f3e6afd7cb39f40.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: d6uZn6fPtsMSKpIWgRR4loVA_lWQ8xbGzws4RNm_DWwyyiAyuF0LGA==
age: 1
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
23.38.201.117200 OK 2.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (450)
Hash 0a6e20a299b321b57e48a9c83871cc0c
b3474e03f92a55d42c5ee4032fb1f7b38bd5fd80
f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
GET /cache1/hp/v_250/images/hp-2022/reliability-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LzbecIzhwvBoQ7BWygJldYYYM6We6Ivc0s9yeELNTux/bvYN3Yt+4RBXo+6y+IJIMyE0XHUm5Ew=
x-amz-request-id: P36RY7P00A1N12Z3
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:15 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: YLr9yDu4y6poTawQ7WP7MojiYbCk.0rk
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
23.38.201.117200 OK 3.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Hash 7dc0a2667b5de60ff9a96c6ebcca9a7b
cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
GET /cache1/hp/v_250/images/hp-2022/reputation-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ihx3lBRD+qT3COxacNhADs25840cosw7qQjWNARp2NEbhy2sQGGC6bcDQn8R8zkCgoXq9Qg6fjs=
x-amz-request-id: P36HSNCC0CCGYRB4
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:16 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: sr2qY5Yx1bOPXsrLw8D.ycZfr6bVRigS
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
23.38.201.117200 OK 3.4 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Hash d8016306372e33ba7354032b4de316ac
7caeb070e9f95ab00ca267ad95c37530d3be361e
3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
GET /cache1/hp/v_250/images/hp-2022/globe-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zEZql33RdFD015QzhOK47P8wzFLSFm/IcV6Blksieco1+krqTMPmOXsvpWNCUzjqRe5kvLJGWuU=
x-amz-request-id: P36N4Q9BMY5E42PD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:11 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: qXWG2jxf6eO4.Ee8JU9epi0qWNdNYdex
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
IP 23.38.201.117:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socials \012- data
Hash 379e2da7fbcf7192af131dab8664fa44
191a7c64f76a91ab3ac7418ef12e16155ffe916b
8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
GET /cache1/fonts/socials/socials.ttf?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: VqG8Xoz+PNUpc5ek0EHqjuCErGzCqKx3w2Mb/U3IRKb02qkQEhEC1dsBPpa357J3lamLhU00/dI=
x-amz-request-id: ABP0NYTQMK8XRN5V
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "379e2da7fbcf7192af131dab8664fa44"
x-amz-meta-sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: 64DCSoh81dgHS5BU7pf3T55ups5kO3ge
accept-ranges: bytes
content-type: application/x-font-ttf
server: AmazonS3
content-length: 2232
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
IP 23.38.201.117:0
File type Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Hash b63c50623057857a66071527d3d19e34
60a97e3734cf76a48f1605076590257bfd370f5e
1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 36 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
Hash d2ac9aa4d77b9430c5ad19d0c1546076
8bae7ca2e0ad65ac49cc0de9c6c5887c59f4db60
7483a4524ee20681692af93c354ace8d5c67137e8403f36f826049850da89b0a
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2588672-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-range: bytes 2588672-2625182/2625183
content-length: 36511
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 1.5 MB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
Size 1.5 MB (1543839 bytes)
Hash d0ba53357c4f5b4b9eae1c6525e903b2
f694aa31d8edd311ea848464213e810e9539783f
91d239b01228e9a83668643872aecff33a9e95f6c182e07d86a0639accb3f7bd
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1081344-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-range: bytes 1081344-2625182/2625183
content-length: 1543839
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.24.199200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.24.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 387
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:44 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
104.16.149.64200 OK 78 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (65455)
Hash f1e687b418a03f55376f8dabb88831b1
59e7de3f39b2bd1d3cff8b1286f317d913a03fac
a8f0ed59befb0dc3da4e194382166d61584fc77442140cdbe734a761ca07ded2
GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:44 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 14030
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a405d64b500-OSL
X-Firefox-Spdy: h2
vars.hotjar.com/box-0feefa1930c964ac6aa4db4e99e8f25f.html
13.227.219.76200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-0feefa1930c964ac6aa4db4e99e8f25f.html
IP 13.227.219.76:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 7860f2201e5523a8914b582db81455db
91f1e5e06e953b9d35a106d2bb6a6739a2cd1479
bf41dd20ba00ece42aa39b78fa602b8f7e4f0059e5ff6820057f19cc835573de
GET /box-0feefa1930c964ac6aa4db4e99e8f25f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 02 Nov 2022 16:01:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "7860f2201e5523a8914b582db81455db"
last-modified: Wed, 02 Nov 2022 16:00:49 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2dc050ab05a5052054de7d000d6c5f50.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: hMur4sDck5-M5v2diUOxaSkzKKGwsw2GeEuSz5h-5rJmX2IgY9U4Qw==
age: 34898
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
104.16.149.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
IP 104.16.149.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 7b4d0389cd3bdfc36b615a0b060eed3c
a13bee7f9604f7dc3b55ddbbad915fd605ab9a4b
bd7cccf2a2ad2ff6c00b8fd8238da52e11e19f36d1e30447f7c4561576788a57
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:44 GMT
content-type: application/x-javascript
content-length: 14384
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: e00Dic0738NrYVoLBg7tPA==
last-modified: Tue, 14 Dec 2021 12:34:59 GMT
etag: 0x8D9BEFE24E4B72A
x-ms-request-id: 42befd17-e01e-00f6-6ee7-f0fff0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13398
expires: Thu, 03 Nov 2022 05:42:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a40cd8eb500-OSL
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
138.128.247.123200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 138.128.247.123:0
File type Unicode text, UTF-8 text, with very long lines (61000), with no line terminators
Size 142 kB (142347 bytes)
Hash 09e8b17fe8fb4fd2f6bd3e814adeb976
05f09e2001c9bfc7bd0ada6831b4edaeb1fc2f08
fd0952431ab51c8c8a234b8df7917f7b0bba2a67c06e9fa27697ce7b476fb571
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 04 Nov 2022 01:42:44 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 18:06:07 GMT
etag: "6aab4-6361600f-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142347
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
script.hotjar.com/modules.681bd93469b1fa9acc61.js
13.227.219.71200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.681bd93469b1fa9acc61.js
IP 13.227.219.71:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 424c144768844c7a72bd7eec43025c4c
d21fbc3e73119cbf6641d5520aba5b2338fca99b
0bcbd8fdf7ef2d3d1c2e8ad811494987b434a4356efd1ece6fa2be84e7ce0ec6
GET /modules.681bd93469b1fa9acc61.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66240
date: Wed, 02 Nov 2022 16:01:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "424c144768844c7a72bd7eec43025c4c"
last-modified: Wed, 02 Nov 2022 16:00:49 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ec5c4a66c1200ddcc562c6e98f77a48c.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: me-yIu-nqqRKMSSLqfS9Ac-ZnWhqW88xMneNDfnMG54gpLzfeZ0V4A==
age: 34897
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/etoro.com/config.json
104.238.215.8200 OK 158 B URL HTTP/2 cdn.acsbapp.com/cache/app/etoro.com/config.json
IP 104.238.215.8:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9f5877ec519a95badbdf8e757b9f4ccf
6b263af9f6033675094b95bf383701d859ba044f
ea62b666bdee6306a22510336a41dd436ada3679fcba2b3502fdc4c68a910480
GET /cache/app/etoro.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 04 Nov 2022 01:42:44 GMT
content-type: application/json
last-modified: Thu, 03 Nov 2022 01:42:11 GMT
etag: "9e-63631c73-b93a9b29ba86ba1a;;;"
accept-ranges: bytes
content-length: 158
date: Thu, 03 Nov 2022 01:42:44 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
104.16.149.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 5521c152bc1efa1baa93129bb8717e19
d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
GET /scripttemplates/6.27.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: VSHBUrwe+huqkxKbuHF+GQ==
last-modified: Mon, 29 Nov 2021 20:30:50 GMT
etag: 0x8D9B3772216FA2F
x-ms-request-id: 247cd6ec-501e-004e-2dec-ec1d03000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13413
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a440f51b500-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
104.16.149.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (37703)
Hash 71e3871d634182b17c1b15ca3d58f7e4
4063bf0afb25a8c96bdd33f6d24ca832067c7806
c20f40887a2fdad6ea7070063acf1150881e18405c91338338e88be4195583b5
GET /scripttemplates/6.27.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: application/json
content-length: 11602
content-encoding: gzip
content-md5: ceOHHWNBgrF8GxXKPVj35A==
last-modified: Mon, 29 Nov 2021 20:30:52 GMT
etag: 0x8D9B377239B4147
x-ms-request-id: a3c3cc4e-901e-00f9-2cec-ec1206000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13413
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a440f52b500-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
142.250.74.168200 OK 104 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
IP 142.250.74.168:0
File type ASCII text, with very long lines (35498)
Size 104 kB (103552 bytes)
Hash c00eb52e5983399007398beccbb30874
281b3c3c7f2e49b0f8e40103afd7cbc7e23569e7
e33f2fbf54ca632ab5e0100a676c12e0e11abc00d0f457c4dd731fb04fb7c98d
GET /gtm.js?id=GTM-N7SQ5DP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 03 Nov 2022 01:42:45 GMT
expires: Thu, 03 Nov 2022 01:42:45 GMT
cache-control: private, max-age=900
last-modified: Thu, 03 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103552
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/en.build.json
104.238.215.8200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 104.238.215.8:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 13e3192ec8661075f563348727c205ab
75b80b84765af0ccf8cddf9b1483e7a90d514566
304c1959410b4ae2b9d554465e7f5da59aad27de1265bf640ac7c9de981e068c
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 04 Nov 2022 01:42:45 GMT
content-type: application/json
last-modified: Tue, 01 Nov 2022 18:07:03 GMT
etag: "3b8a8-63616047-73b8cca57a4dfaaa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25896
date: Thu, 03 Nov 2022 01:42:45 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
52.222.137.119200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 52.222.137.119:0
Hash 3f10a57c1de5e40b45b14d495a24fb99
71bff86a798e1eb5a76ec1c7f90c16037cbfe45c
8346898169063e1dca8eeceac56edf359b3fe62acf17d308218fe0fb4bd466f7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133612
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "63627dce-1d7"
Expires: Fri, 04 Nov 2022 14:49:37 GMT
Last-Modified: Wed, 02 Nov 2022 14:25:18 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 5345148f0ba8ae3c67b69d035acdbfc4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS50-C1
X-Amz-Cf-Id: nYinTblGn-LrHMkyD_kKBZjdIyOJCbUAZSzgz6SaXa0g-JAcq6llDQ==
Age: 1459
marketing.etorostatic.com/others/general/js/seo.js
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/others/general/js/seo.js
IP 23.38.201.117:0
File type C source, ASCII text, with very long lines (366), with CRLF line terminators
Hash f22c155ea9a463fee325cc2f52cb2c5b
67913d0b1cdaa875752a36f5c22fc21884cd6b22
115d84510217e73948fabbc05aa6041071564a86dee31d7abb282d764ff4f7a7
GET /others/general/js/seo.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: IbCrnl2jHtt3ARkbdDtJdY1t/iT+eA6L1pkPIeISKQrHurrfYzN0CE54ZOlbBo/E9qrm76WQ/M0=
x-amz-request-id: 69QVGW75ZMC6VK3N
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2017 14:31:16 GMT
etag: "bb01557076c5f1cc6976325a60a0be7c"
x-amz-meta-s3b-last-modified: 20170110T142820Z
x-amz-version-id: SSqunX8tv_w4z_1vK9cbzCWNqGZTmd8y
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 03 Nov 2022 01:47:45 GMT
date: Thu, 03 Nov 2022 01:42:45 GMT
content-length: 2209
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
13.227.222.181200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 13.227.222.181:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 03:35:22 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 23776effa8a63b2e2dccd702e73b0c86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS54-C1
X-Amz-Cf-Id: l1j2P4CeSY5HbTlgB9SsSM_A1O2zk1LfvlT68GXD9DWSgVS8zBwWkg==
Age: 79644
sc-static.net/scevent.min.js
54.192.87.248200 OK 12 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.192.87.248:0
File type ASCII text, with very long lines (27626), with no line terminators
Hash 1f0c68af0b1a3417320edf3397a92da8
da2b9d033dcfed8547c5ab2322cee4c833e36a65
066a2fe40523eeadd90df81e815fbe7420d5c2e8b851a81b80e408925c0ce1da
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11952
server: CloudFront
date: Thu, 03 Nov 2022 01:42:45 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 04 Nov 2022 00:50:39 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 fc8f1559bec15e56ec52376ce42c7d90.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: aP787qdgDN2lLtTk9oSIOGV-xW_m93EAv4SdkqcDJdyALExxPnTpWA==
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80df6aca16e5c4838c3996793c9ab30b
61bd496bc398c19132452f9c1d31ac2880728310
c1823ffa6db3ac0db8e3805f431f2187e85f58f48cab94b1566c6eda8589cf30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5260
Cache-Control: max-age=130523
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "636262e4-1d7"
Expires: Fri, 04 Nov 2022 13:58:08 GMT
Last-Modified: Wed, 02 Nov 2022 12:30:28 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 34a7c1c5ef8686616df36b826e379a78
9b0d346a82bc0dfe284932298a61c5da8563765f
6591fef612e61252b86b77d4950a3ae2191d80e421839f43ea9bb03823b0d216
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
142.250.74.70200 OK 398 B URL HTTP/2 9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (562), with no line terminators
Hash 5a9998dc3732f15d817b24017d169287
825636fb778c372628fbf3f119c26cd8002631db
d5c63dc0ce384f7306f7e3fc43f893fd13e2a71fcfebdc6af26a039e976dc810
GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1
Host: 9944765.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 398
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 03-Nov-2022 01:57:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
web1.acsbapp.com/apps/app/dist/media/logomono.svg
138.128.247.123200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP 138.128.247.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 03 Nov 2023 01:42:45 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Thu, 03 Nov 2022 01:42:45 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
c0.adalyser.com/adalyser.js?cid=etoro
54.220.223.247200 OK 12 kB URL HTTP/2 c0.adalyser.com/adalyser.js?cid=etoro
IP 54.220.223.247:0
File type ASCII text, with very long lines (31834)
Hash 5301983312500f1fa818e866832a8ede
96c054b07049abe3b764dbcf0f8189055de98e78
24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
GET /adalyser.js?cid=etoro HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
52.222.137.119200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 52.222.137.119:0
Hash 0d53d200b2b6425c737fe02064cb07f2
a0c1eeb41a87ce151c57ede0024e821225572052
6a142a0de76502fba0911d42167be144100893fdbe5a080edc1d757fd22ce994
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=172042
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "6363141a-1d7"
Expires: Sat, 05 Nov 2022 01:30:07 GMT
Last-Modified: Thu, 03 Nov 2022 01:06:34 GMT
Server: ECS (dcb/7EEC)
X-Cache: Miss from cloudfront
Via: 1.1 5345148f0ba8ae3c67b69d035acdbfc4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS50-C1
X-Amz-Cf-Id: BqwowUYpqPEMylz-H2x2znNJJVaSd7SiAMdNvshM3cyxdh9wmGNAKg==
Age: 1413
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 34a7c1c5ef8686616df36b826e379a78
9b0d346a82bc0dfe284932298a61c5da8563765f
6591fef612e61252b86b77d4950a3ae2191d80e421839f43ea9bb03823b0d216
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
52.222.139.93200 OK 30 kB URL HTTP/2 zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
IP 52.222.139.93:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 1654f0dd5a5d17ae2084d8bdf5c43a1c
10b05154ca19428f11c643258a13b145dc8d074c
c7c97139f185f0e4b70d1d77780fd0b913ccc1c90f108dcf8af69c137c5ab0e0
GET /i/3c2d8da22b7aa416fab4696fbd547cc9.js HTTP/1.1
Host: zero.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 29659
content-encoding: gzip
server: Caddy
cache-control: max-age=43200
date: Wed, 02 Nov 2022 19:23:52 GMT
expires: Thu, 03 Nov 2022 07:23:52 GMT
etag: "13cd9-8R36yXcfV1rrMSad8JN5R8CsNW0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dd133741afef09b02f3e6afd7cb39f40.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: dftaNg95UosA45mML6WsRdgV_khtWEYe-rrDJ8N5_jdtqoeN-WzJSA==
age: 22733
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63f963fe32bd718a24e27534fdacaaef
a2d815bea20a4ed93d968170a1e8930652c9cb3a
5e72579866ec70f3c245f23d487e748dee2d95198925262d20fccdc6e04c9d06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4496
Cache-Control: max-age=105676
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "636204d2-1d7"
Expires: Fri, 04 Nov 2022 07:04:01 GMT
Last-Modified: Wed, 02 Nov 2022 05:49:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63f963fe32bd718a24e27534fdacaaef
a2d815bea20a4ed93d968170a1e8930652c9cb3a
5e72579866ec70f3c245f23d487e748dee2d95198925262d20fccdc6e04c9d06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4496
Cache-Control: max-age=105676
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "636204d2-1d7"
Expires: Fri, 04 Nov 2022 07:04:01 GMT
Last-Modified: Wed, 02 Nov 2022 05:49:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
c0.adalyser.com/tracking/track/v3/p?stm=1667439765279&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1667439765277%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22765aa740-bf56-40ab-9b0a-2f2f7cec96fe%22%2C%22duid%22%3A%22da2994f7-a1a5-4a8c-9700-a87786965b7c%22%2C%22cw%22%3A1667439765277%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
54.220.223.247200 OK 43 B URL HTTP/2 c0.adalyser.com/tracking/track/v3/p?stm=1667439765279&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1667439765277%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22765aa740-bf56-40ab-9b0a-2f2f7cec96fe%22%2C%22duid%22%3A%22da2994f7-a1a5-4a8c-9700-a87786965b7c%22%2C%22cw%22%3A1667439765277%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
IP 54.220.223.247:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /tracking/track/v3/p?stm=1667439765279&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1667439765277%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22765aa740-bf56-40ab-9b0a-2f2f7cec96fe%22%2C%22duid%22%3A%22da2994f7-a1a5-4a8c-9700-a87786965b7c%22%2C%22cw%22%3A1667439765277%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
etag: W/"2b-B//0C13UlayirE4cP7xgqg"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 57df153655037b8e8280e35eafee070a
55311f6fac37bdccca1f871f86182e56bdbd3a9b
939711113f60abfa508b2763111d02407d608e4ae88595452e558deafee98014
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=88ed6596-d2bd-45f5-8cd9-aa3d47f850f0&u_sclid=aa7f8daa-77f3-4a81-a733-6c1bf8d41a27
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=88ed6596-d2bd-45f5-8cd9-aa3d47f850f0&u_sclid=aa7f8daa-77f3-4a81-a733-6c1bf8d41a27
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=88ed6596-d2bd-45f5-8cd9-aa3d47f850f0&u_sclid=aa7f8daa-77f3-4a81-a733-6c1bf8d41a27 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.2200 OK 399 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (561), with no line terminators
Hash aafbe00c9237405a89209c023ecf0e9f
73cedd4fd162051ba33aa05103826a641e11b888
5c63f827ce3f4a9601091587fd7b5a85afdf1443a0b93fd06c4e8a226bc6b90c
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 456
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
access-control-allow-origin: https://www.etoro.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItIMOKAc9ThFRxvy8nn5BFGldjbKaGWgot9M1AjtXsAbjMdq/UDZTMYcDIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 5
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63f963fe32bd718a24e27534fdacaaef
a2d815bea20a4ed93d968170a1e8930652c9cb3a
5e72579866ec70f3c245f23d487e748dee2d95198925262d20fccdc6e04c9d06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4496
Cache-Control: max-age=105676
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Etag: "636204d2-1d7"
Expires: Fri, 04 Nov 2022 07:04:01 GMT
Last-Modified: Wed, 02 Nov 2022 05:49:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 57df153655037b8e8280e35eafee070a
55311f6fac37bdccca1f871f86182e56bdbd3a9b
939711113f60abfa508b2763111d02407d608e4ae88595452e558deafee98014
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
in.hotjar.com/api/v2/client/sites/1871831/visit-data?sv=6
34.246.28.68200 OK 567 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1871831/visit-data?sv=6
IP 34.246.28.68:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d79e7bbf599815baac868c6aea3f1754
715c09efc25695723c7bc8187dda3344059a75a6
c8e9973ce310fcb7d1c10be12b89b247b7f482af1bf0528f0f25b8dc997f027c
POST /api/v2/client/sites/1871831/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 145
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.130200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:45 GMT
expires: Thu, 03 Nov 2022 01:42:45 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d104b70bf03bbef04277daf71d9e99b0
3fee377f3d3c3b36a50b40e989a55d137c565952
7964cc47620e464da24a4263b3b22832710cc4cd746ea463553e1d634d15b8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 03 Nov 2022 01:42:46 GMT
via: 1.1 varnish
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1025
x-timer: S1667439766.025900,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
104.16.149.64200 OK 24 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
IP 104.16.149.64:0
File type ASCII text, with very long lines (11123)
Hash 907e358697f1e526fb5af3b1fb84f8bc
cbf712803dc000e767ed990385ade23d91b3b083
e468a2e4eec8c73f654558da47573929ecfef0b81e72238fb9a89290fc629a9e
GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13413
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76416a440f53b500-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 03 Nov 2022 01:42:46 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.5 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8656), with no line terminators
Hash 6cff2cb49ee772adf066904fd18efd9a
8b876016198b0fc9862d2b6e29a80251c5422e72
85d26923c638ce50f36f7b69f9f50d2a6d6863abed574af143e24a14a343f9d2
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "0d5508c59e34b5d35cde5aea2aa1c2fd:1665301953.026714"
Last-Modified: Sun, 09 Oct 2022 07:50:08 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 03 Nov 2022 02:02:46 GMT
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Length: 3471
Connection: keep-alive
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3800FF6E90956FD03878ED3F91606E0B; domain=.bing.com; expires=Tue, 28-Nov-2023 01:42:46 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F8E4DAFBD01F432F85AB94848F986824 Ref B: OSL30EDGE0219 Ref C: 2022-11-03T01:42:46Z
date: Thu, 03 Nov 2022 01:42:45 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash da71a34ecbacf17cd3ac89c3ec8ec1d9
8effbb8d6efbaa6c6c64d65dec94695b53b0be4d
25f3a056066c0ff6862550e0428d923a42afe323782a7327bd76205fac1dfd52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3252
Cache-Control: max-age=123516
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "63624f5e-1d7"
Expires: Fri, 04 Nov 2022 12:01:22 GMT
Last-Modified: Wed, 02 Nov 2022 11:07:10 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.112200 OK 471 B URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.112:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (996)
Hash e1ec75f64605dcf47d74531bbbd3c525
f5847f130a0353d5de55e058d23c83b7b4d145a9
697f3411ba82530b539f0f22be6bedbd4de261727e3632f259884c4487848124
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Nov 2022 19:12:50 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=54504
date: Thu, 03 Nov 2022 01:42:46 GMT
content-length: 471
x-cdn: AKAM
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1005612/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1005612/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58483)
Hash e5328a7e044435832d695c043e7b426d
0970cbeaea50c43b458a53d782b65328d6fb59e3
257e4e0c753eabc7b2ff076077d99446dd86556dd74a066888be5cd80a975144
GET /libtrc/unip/1005612/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xR6zVH1bP+wBbSo88vvxTCyL1PDc9FHMRcmK3C50v+ePP87xx1YcAx6DaUSMjijgIRFLDdHQBU8=
x-amz-request-id: S5VKHKBFGTHNNDWG
x-amz-replication-status: PENDING
last-modified: Sun, 30 Oct 2022 11:37:28 GMT
etag: "f50f326c2373eca8b7e149f872fd9d92"
x-amz-version-id: lNGvvp3oe96TOBqtMeA_dbvDIgHxhEF8
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 03 Nov 2022 01:42:46 GMT
via: 1.1 varnish
age: 110
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1667439766.079948,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 17
content-length: 17942
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1&z=1549383885
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1&z=1549383885
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1&z=1549383885 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1794703892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&ul=en-us&de=UTF-8&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAEK~&jid=1285917290&gjid=1588647802&cid=940653742.1667439765&tid=UA-2056847-65&_gid=922497944.1667439766&_r=1>m=2wgav0N7SQ5DP&cd8=NA&cd9=NA&cd10=NA&cd11=NA&cd12=NA&cd20=1701525041-812510666&cd21=No&cd22=No&cd26=Web&cd28=Web&cd51=&cd52=www.etoro.com&cd53=&cd59=HP%20funnel%20-%20&cd74=Real%20URL&cd76=No&cd92=https%3A%2F%2Fwww.etoro.com%2F&cd97=General&cd105=gtm.js&cd3=940653742.1667439765&z=1650523626
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1794703892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&ul=en-us&de=UTF-8&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAEK~&jid=1285917290&gjid=1588647802&cid=940653742.1667439765&tid=UA-2056847-65&_gid=922497944.1667439766&_r=1>m=2wgav0N7SQ5DP&cd8=NA&cd9=NA&cd10=NA&cd11=NA&cd12=NA&cd20=1701525041-812510666&cd21=No&cd22=No&cd26=Web&cd28=Web&cd51=&cd52=www.etoro.com&cd53=&cd59=HP%20funnel%20-%20&cd74=Real%20URL&cd76=No&cd92=https%3A%2F%2Fwww.etoro.com%2F&cd97=General&cd105=gtm.js&cd3=940653742.1667439765&z=1650523626
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=1794703892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&ul=en-us&de=UTF-8&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAEK~&jid=1285917290&gjid=1588647802&cid=940653742.1667439765&tid=UA-2056847-65&_gid=922497944.1667439766&_r=1>m=2wgav0N7SQ5DP&cd8=NA&cd9=NA&cd10=NA&cd11=NA&cd12=NA&cd20=1701525041-812510666&cd21=No&cd22=No&cd26=Web&cd28=Web&cd51=&cd52=www.etoro.com&cd53=&cd59=HP%20funnel%20-%20&cd74=Real%20URL&cd76=No&cd92=https%3A%2F%2Fwww.etoro.com%2F&cd97=General&cd105=gtm.js&cd3=940653742.1667439765&z=1650523626 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.etoro.com
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iLJU0LtfnEZv23S5abB/BaKpTSf8dzwLafiACpftbTHCFwXgVL0SzVJAhLQFharwbkRWSulaOhRVLPCPf8sMxg==
priority: u=3,i
content-length: 27337
x-fb-trip-id: 1679558926
date: Thu, 03 Nov 2022 01:42:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.etoro.com/
104.18.35.149200 OK 38 kB IP 104.18.35.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30995)
Hash 9dea17359e919fd03f48b943672a385b
638d41086919ce998f4e541c59e864dcbda0b859
ef9d2e2907db7a186d60465a6a7a080462a219946facf8543d1ddebabc494575
GET / HTTP/1.1
Host: www.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:43 GMT
content-type: text/html
vary: Accept-Encoding
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
set-cookie: TS01047baf=01d53e5818f8d97ad0a95a5a940fa9f685bbe17e6b6e2204bfc5185233ba157f60c1fbece89ab4ed75aa287000fc178752a798dcf5; Path=/
__cf_bm=jyTisvatdRxzE3tP9iA2fuEOzbkAipPZ3MXJ789JyaU-1667439763-0-AQQURRvRqBgc2NQa04ja3yc/qvpz4AresjEgO/Pfu0oy9jIP1SUClem+JJVvLLz/smpG7F2G0wyo7q+DJPtr3BjwBLBdxquyA3FlQkY91A0s; path=/; expires=Thu, 03-Nov-22 02:12:43 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None
__cflb=02DiuEAg8LPSYevHEYkaxA3gcDJTcgw9zpubveTXmGrnQ; SameSite=None; Secure; path=/; expires=Fri, 04-Nov-22 00:42:43 GMT; HttpOnly
__cfruid=51fc789c6dad7fe74e223b43c3b04d83386894db-1667439763; path=/; domain=.etoro.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76416a3adbd20b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.yimg.com/wi/config/10118123.json
188.125.94.204200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10118123.json
IP 188.125.94.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21e2ae430121102daa2c1810b5cf910b
ffef080cc2eacc942a9bcb67561f790c34ed3fb0
a44e6042de416123c90209eb39d7fdbe79665819ffbb07646cc939bb2dfa84e0
GET /wi/config/10118123.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZT6k/rc6HwyGDJkgPFEqzYHl2Uyahxl65R5/Jiv7wmUaeaklqL7j3ktZ+lnoVZrd1b+oheEyQWU=
x-amz-request-id: JCZ022VGZGE093J9
date: Thu, 03 Nov 2022 00:58:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Oct 2022 22:00:29 GMT
x-amz-expiration: expiry-date="Sat, 18 Nov 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "21e2ae430121102daa2c1810b5cf910b"
x-amz-server-side-encryption: AES256
x-amz-version-id: PPtAZrGHQpA8i..pPqBYS_TW.49B0pC2
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 2682
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667439765423&hl=2&op=0&ag=1317291471&rand=142801292187119251026010955728002101216516295828880888960210922912780824689&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE2NjBdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFs3MSwic291cmNlVVJMPWUsdGhpcy5saW5lPW59ZnVuY3Rpb24gIl0sWyJjYiIsIjAsMCwwLDAsMywwLDAsMSwwLDIsNiwwLDEsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsOCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwzIl0sWy0xLCJMaW51eCB4ODZfNjQiXSxbLTIsIi0iXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiTlJFVU1cIixcIm5ld3JlbGljXCIsXCJfX25yX3JlcXVpcmVcIixcIk9uZVRydXN0U3R1YlwiLFwiT3B0YW5vbldyYXBwZXJcIixcIm90SGFuZGxlTGVhcm5Nb3JlXCIsXCJlVG9yb0Nvb2tpZUNvbnNlbnRcIixcImV0b3JvX2hwXCIsXCJoalwiLFwiX2hqU2V0dGluZ3NcIixcImRhdGFMYXllclwiLFwiZXRvcm9Mb2dnZXJBcHBzXCIsXCJnZXRVc2VyR3VpZHNcIixcInNldEVuY29kZWRJdGVtXCIsXCJlbmNvZGVJdGVtXCIsXCJHdWlkR2VuZXJhdG9yXCIsXCJnZXRFbmNvZGVkSXRlbVwiLFwiZGVjb2RlSXRlbVwiLFwic2FmZUpTT05QYXJzZVwiLFwiZXRvcm9Mb2dnZXJcIixcImlcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcIkxhenlMb2FkXCIsXCJlcXVhbEhlaWdodFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJjc3NfYnJvd3Nlcl9zZWxlY3RvclwiLFwiZVRvcm9fYWlyZHJvcFwiLFwibG1cIixcIm1peHBhbmVsXCIsXCJnXCIsXCJ3XCIsXCJzXCIsXCJvXCIsXCJtXCIsXCJoXCIsXCJiXCIsXCJjXCIsXCJBT1NcIixcIkNhcm91c2VsXCIsXCJGYW5jeWJveFwiLFwiUGFuem9vbVwiLFwiV2F5cG9pbnRcIixcInNsaWNrXCIsXCJqUXVlcnkzNTEwMjgyNDUyMzAyOTM2NTE5ODFcIixcIiRsYW5nUG9wdXBcIixcIndheXBvaW50Q29udGV4dEtleVwiLFwia1wiLFwib2JqVG9VcmxQYXJtXCJdLFwiblwiOltcInNheXN3aG9cIl0sXCJkXCI6W119Il0sWy03LCItIl0sWy04LCItIl0sWy05LCIrIl0sWy0xMCwiLSJdLFstMTEsIntcInRcIjpcIlwiLFwibVwiOltcImRlc2NyaXB0aW9uXCIsXCJvZzp0aXRsZVwiLFwib2c6ZGVzY3JpcHRpb25cIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCI5NDA2NTM3NDIuMTY2NzQzOTc2NSJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY2NzQzOTc2NTQwMiwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImMsLTEsLTEsMTA3LDAsMSwwLDQxLDEwLDExOSwtMSwzLCw0NjIsMjIzOCwyMjM5Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIi0iXSxbLTQ2LCIwIl0sWy00NywiVVRDLGVuLVVTLGxhdG4sZ3JlZ29yeSJdLFstNDgsIjAsMCJdLFstNDksIi0iXSxbLTUwLCItIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbImRkYiIsIjAsMCwwLDEsMSwzLDEsMCwwLDAsMCwwLDAsMCwzLDAsMSwwLDAsMCwwLDEsMCwwLDAsMCwwLDEsMCwwLDAsMiwxLDAsMCwyLDAsMCwwLDAsMCwwLDEsMSwwLDAsMTQsMCwxLDAsMCwwLDAiXSxbImJuY2giLDY1XSxbImFibmNoIiw2NV1d&dep=0&pre=0&sdd=%7B%7D&cri=xirdlJ8Mex&pto=2259&ver=48&gac=940653742.1667439765&mei=&ap=&duid=1.1667439765.AgtaN5YjsI85y3zF&suid=1.1667439765.1mR303ztUdF1j8SB&tuid=1.1667439765.6ZsqPIpPzfhI8Vdg&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C1872%2C269&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
52.45.196.192200 OK 895 B URL HTTP/2 one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667439765423&hl=2&op=0&ag=1317291471&rand=142801292187119251026010955728002101216516295828880888960210922912780824689&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=xirdlJ8Mex&pto=2259&ver=48&gac=940653742.1667439765&mei=&ap=&duid=1.1667439765.AgtaN5YjsI85y3zF&suid=1.1667439765.1mR303ztUdF1j8SB&tuid=1.1667439765.6ZsqPIpPzfhI8Vdg&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C1872%2C269&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 52.45.196.192:0
File type ASCII text, with very long lines (2562), with no line terminators
Hash c47f535d61ab1ad83b8f8b97d2b32a6e
c7c92cdfcc6849fb621f66f20ba850509ec9e344
59e148043dc36d35160f95f35c1d15aea920e161780e0379de416a832f4b22fc
GET /ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667439765423&hl=2&op=0&ag=1317291471&rand=142801292187119251026010955728002101216516295828880888960210922912780824689&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE2NjBdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFs3MSwic291cmNlVVJMPWUsdGhpcy5saW5lPW59ZnVuY3Rpb24gIl0sWyJjYiIsIjAsMCwwLDAsMywwLDAsMSwwLDIsNiwwLDEsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsOCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwzIl0sWy0xLCJMaW51eCB4ODZfNjQiXSxbLTIsIi0iXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiTlJFVU1cIixcIm5ld3JlbGljXCIsXCJfX25yX3JlcXVpcmVcIixcIk9uZVRydXN0U3R1YlwiLFwiT3B0YW5vbldyYXBwZXJcIixcIm90SGFuZGxlTGVhcm5Nb3JlXCIsXCJlVG9yb0Nvb2tpZUNvbnNlbnRcIixcImV0b3JvX2hwXCIsXCJoalwiLFwiX2hqU2V0dGluZ3NcIixcImRhdGFMYXllclwiLFwiZXRvcm9Mb2dnZXJBcHBzXCIsXCJnZXRVc2VyR3VpZHNcIixcInNldEVuY29kZWRJdGVtXCIsXCJlbmNvZGVJdGVtXCIsXCJHdWlkR2VuZXJhdG9yXCIsXCJnZXRFbmNvZGVkSXRlbVwiLFwiZGVjb2RlSXRlbVwiLFwic2FmZUpTT05QYXJzZVwiLFwiZXRvcm9Mb2dnZXJcIixcImlcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcIkxhenlMb2FkXCIsXCJlcXVhbEhlaWdodFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJjc3NfYnJvd3Nlcl9zZWxlY3RvclwiLFwiZVRvcm9fYWlyZHJvcFwiLFwibG1cIixcIm1peHBhbmVsXCIsXCJnXCIsXCJ3XCIsXCJzXCIsXCJvXCIsXCJtXCIsXCJoXCIsXCJiXCIsXCJjXCIsXCJBT1NcIixcIkNhcm91c2VsXCIsXCJGYW5jeWJveFwiLFwiUGFuem9vbVwiLFwiV2F5cG9pbnRcIixcInNsaWNrXCIsXCJqUXVlcnkzNTEwMjgyNDUyMzAyOTM2NTE5ODFcIixcIiRsYW5nUG9wdXBcIixcIndheXBvaW50Q29udGV4dEtleVwiLFwia1wiLFwib2JqVG9VcmxQYXJtXCJdLFwiblwiOltcInNheXN3aG9cIl0sXCJkXCI6W119Il0sWy03LCItIl0sWy04LCItIl0sWy05LCIrIl0sWy0xMCwiLSJdLFstMTEsIntcInRcIjpcIlwiLFwibVwiOltcImRlc2NyaXB0aW9uXCIsXCJvZzp0aXRsZVwiLFwib2c6ZGVzY3JpcHRpb25cIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCI5NDA2NTM3NDIuMTY2NzQzOTc2NSJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY2NzQzOTc2NTQwMiwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImMsLTEsLTEsMTA3LDAsMSwwLDQxLDEwLDExOSwtMSwzLCw0NjIsMjIzOCwyMjM5Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIi0iXSxbLTQ2LCIwIl0sWy00NywiVVRDLGVuLVVTLGxhdG4sZ3JlZ29yeSJdLFstNDgsIjAsMCJdLFstNDksIi0iXSxbLTUwLCItIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbImRkYiIsIjAsMCwwLDEsMSwzLDEsMCwwLDAsMCwwLDAsMCwzLDAsMSwwLDAsMCwwLDEsMCwwLDAsMCwwLDEsMCwwLDAsMiwxLDAsMCwyLDAsMCwwLDAsMCwwLDEsMSwwLDAsMTQsMCwxLDAsMCwwLDAiXSxbImJuY2giLDY1XSxbImFibmNoIiw2NV1d&dep=0&pre=0&sdd=%7B%7D&cri=xirdlJ8Mex&pto=2259&ver=48&gac=940653742.1667439765&mei=&ap=&duid=1.1667439765.AgtaN5YjsI85y3zF&suid=1.1667439765.1mR303ztUdF1j8SB&tuid=1.1667439765.6ZsqPIpPzfhI8Vdg&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C1872%2C269&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 03 Nov 2022 01:42:46 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=a902be743eccf1ae68973fb965d0adf8; Max-Age=29030400; Path=/; Expires=Thu, 05 Oct 2023 01:42:46 GMT; HttpOnly; Secure; SameSite=None
content-length: 895
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7a5cc4e92004aeefe8955f725d432d78
0ff269e207dc7ae68d0eb6fbd0f5fc2fdd36ab20
67a981e880b307efd49d75fb40ec1c774cea9441b274557d17832f9d7eadf3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 241
Cache-Control: max-age=119752
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "63624c6d-138"
Expires: Fri, 04 Nov 2022 10:58:38 GMT
Last-Modified: Wed, 02 Nov 2022 10:54:37 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7a5cc4e92004aeefe8955f725d432d78
0ff269e207dc7ae68d0eb6fbd0f5fc2fdd36ab20
67a981e880b307efd49d75fb40ec1c774cea9441b274557d17832f9d7eadf3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2749
Cache-Control: max-age=122260
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "63624c6d-138"
Expires: Fri, 04 Nov 2022 11:40:26 GMT
Last-Modified: Wed, 02 Nov 2022 10:54:37 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3af3e30831669a44d8ccbd33e84e49c4
4960ff6336bb1c89013e7a5417e3c8b9b20310ed
29a0248ca18a0967a20b3ee636df7a0bc30799b754bf65e2cd38624b99f3bd3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&gjid=1588647802&_gid=922497944.1667439766&_u=YADAAEAAAAAAACAEK~&z=1190452831
173.194.221.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&gjid=1588647802&_gid=922497944.1667439766&_u=YADAAEAAAAAAACAEK~&z=1190452831
IP 173.194.221.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&gjid=1588647802&_gid=922497944.1667439766&_u=YADAAEAAAAAAACAEK~&z=1190452831 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.etoro.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeb20&_p=1794703892&_gaz=1&ul=NA&cid=940653742.1667439765&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667439765&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeb20&_p=1794703892&_gaz=1&ul=NA&cid=940653742.1667439765&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667439765&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V>m=2oeb20&_p=1794703892&_gaz=1&ul=NA&cid=940653742.1667439765&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667439765&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1
173.194.221.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1
IP 173.194.221.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V&cid=940653742.1667439765>m=2oeb20&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
one.pointlessplay.com/tracker/tc_imp.gif?e=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&cri=xirdlJ8Mex&ts=493&cb=1667439765916
52.45.196.192200 OK 43 B URL HTTP/2 one.pointlessplay.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136ce9c336e3408c9b9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f11846f2e17071a10acf9f29f67188b838b5579381ffd2d2457d13a8e37c10c390220c500095930505f97ea3d4777be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c2c4c770f0bf48628637401adff497edaa2f02b98e359744e24acf4f191ca21efcfc248b5038e523961caf488f0b46882d6f033d3774e92f3d6335f51b07f3aeccf563bf08ba4299014e354e6d10ac84ed7dd3d916976c9c735d26691d1f4e1dcfde90b54893daaa9a83b5b36a0c126c1a648b7595443820b0fc79284d881a4c570866ad194f5d038ae323b38876c20919787452adca82beb0da7dd0d93748e73494c58da1db94d8487f529ead36f9649b1df908833da0c123ca60b40043e073ec3ac42ba4ed3c0910fa3de3dbddf6c94c2f9f03dd789b60c3730c7bd0c1695f8580e54cba2a232e163cef856fde130b37aa6369150dd13d1ad22b64d63b5d0970f657c190b2f425f5ddcf3907e9147ee115c493bf9aa4ed99e1f08fdb1d8bcb972c3b086ff86fbe5b52e1b4afa1d8ed52b7c9f51215e8e374f7b7ef765ae701fc5efc26a8d66d23b8dc16f8cd874d91b4577787b7475c897f6c72e3915cc0a4ffebec5a9f28e0a1794b0a16fcf8c0a3baa8e4d6f32a0cf8e442be176d91cca57&cri=xirdlJ8Mex&ts=493&cb=1667439765916
IP 52.45.196.192:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=xirdlJ8Mex&ts=493&cb=1667439765916 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=a902be743eccf1ae68973fb965d0adf8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 03 Nov 2022 01:42:46 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=92ef2296-4bdc-4466-918a-bfd637fc5520; Max-Age=63072000; Expires=Sat, 02 Nov 2024 01:42:46 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: dea8bf26d445012f
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 0ab73d05542149dd55c334a30f2d17f22ef270928c4dcf929077e97ef8c4b3ff
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:46 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=8ca9569c-7a64-45e4-a654-a1c0eedc5ee7; Max-Age=63072000; Expires=Sat, 02 Nov 2024 01:42:46 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: b47837e3122d9967
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: 0ab73d05542149dd55c334a30f2d17f22ef270928c4dcf929077e97ef8c4b3ff
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 669803648d696629fd7774c0497b64b3
0204f05098700f095ea91631f2ae91a37212b15c
b4e9fff78a612f0a7ed4ea6cda8577101951bbc1b88b7bc61a0301a3fd5e5880
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 02 Nov 2022 20:14:11 GMT
Expires: Thu, 03 Nov 2022 20:14:11 GMT
ETag: "0204f05098700f095ea91631f2ae91a37212b15c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
snap.licdn.com/li.lms-analytics/insight.old.min.js
23.36.76.112200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.old.min.js
IP 23.36.76.112:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.old.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:02:26 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=70208
date: Thu, 03 Nov 2022 01:42:46 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=3582ff1a-5160-4488-bd2b-bbfbec5b41a1&sid=d0c71da05b1811ed8b4d431d43d9bd2e&vid=d0c73f005b1811ed94229ddfc51043bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1597&evt=pageLoad&sv=1&rn=284282
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=3582ff1a-5160-4488-bd2b-bbfbec5b41a1&sid=d0c71da05b1811ed8b4d431d43d9bd2e&vid=d0c73f005b1811ed94229ddfc51043bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1597&evt=pageLoad&sv=1&rn=284282
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=19002254&tm=gtm002&Ver=2&mid=3582ff1a-5160-4488-bd2b-bbfbec5b41a1&sid=d0c71da05b1811ed8b4d431d43d9bd2e&vid=d0c73f005b1811ed94229ddfc51043bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1597&evt=pageLoad&sv=1&rn=284282 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=230A8013C3F36F700FFB9242C2066EBC; domain=.bing.com; expires=Tue, 28-Nov-2023 01:42:46 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C9541AF157CD45D4A560A1C74632B890 Ref B: OSL30EDGE0219 Ref C: 2022-11-03T01:42:46Z
date: Thu, 03 Nov 2022 01:42:45 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/19002254.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/19002254.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/19002254.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=053C9BAB70C465D40A6D89FA7131647A; domain=.bing.com; expires=Tue, 28-Nov-2023 01:42:46 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9AD6BF834DF942999BB85F18EF9B50F8 Ref B: OSL30EDGE0219 Ref C: 2022-11-03T01:42:46Z
date: Thu, 03 Nov 2022 01:42:45 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac157ecc7d51bf3c8cb8c85ab22bd334
544508a840a558aec67d7375582971c695b44169
74c26136e2ca5ea8b417d9bafd73b18c9276db8dd33657f671dacf8283cfe468
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5228
Cache-Control: max-age=162931
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "6362e19d-1d7"
Expires: Fri, 04 Nov 2022 22:58:17 GMT
Last-Modified: Wed, 02 Nov 2022 21:31:09 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 89685bab62bbea15308bbeadafd21e77
dfa59c391b1fe4985c018e8a96897fe06a8ff20d
93326694b57c9251ad143020103f5c40c24e52d710676424fad84704894624e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ffc02eed8960efd411521703ccc6e2ba
07a9d609977c5406b634af5745acba71f08cf355
04d2e3cdf2e3cd5d747e3d1c45a5b617bb2c39c3b80034052dd748db2baf25a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 700
Cache-Control: max-age=161246
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "6362ecb8-139"
Expires: Fri, 04 Nov 2022 22:30:12 GMT
Last-Modified: Wed, 02 Nov 2022 22:18:32 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&_u=YADAAEAAAAAAACAEK~&z=882036448
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&_u=YADAAEAAAAAAACAEK~&z=882036448
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=940653742.1667439765&jid=1285917290&_u=YADAAEAAAAAAACAEK~&z=882036448 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32b032454aa9a688fb91a589140ae152
f9c583002e296a75f1746bf181902948dba02542
3d272334a2923d5288765bc1183157fd127bd8f2928003760878feaca83eece2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32b032454aa9a688fb91a589140ae152
f9c583002e296a75f1746bf181902948dba02542
3d272334a2923d5288765bc1183157fd127bd8f2928003760878feaca83eece2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ffc02eed8960efd411521703ccc6e2ba
07a9d609977c5406b634af5745acba71f08cf355
04d2e3cdf2e3cd5d747e3d1c45a5b617bb2c39c3b80034052dd748db2baf25a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 700
Cache-Control: max-age=161246
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "6362ecb8-139"
Expires: Fri, 04 Nov 2022 22:30:12 GMT
Last-Modified: Wed, 02 Nov 2022 22:18:32 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
www.google.com/pagead/1p-conversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adspredictiv.com/jump/next.php?stamat=m%257Ca7oiOmY2aQdHkAH0dEdHP3xP.1c9%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWwcCi0NNE_ffU70yQBUwObw0XKxusfMn-yauoev7SEdDKs4C7lBuzD3QNVjot_qr1wyFMsEq1-aY6QXtsDFVasg%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z&cbur=0.2202846660551101&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F
35.190.38.40302 Found 6.0 kB URL HTTP/2 adspredictiv.com/jump/next.php?stamat=m%257Ca7oiOmY2aQdHkAH0dEdHP3xP.1c9%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWwcCi0NNE_ffU70yQBUwObw0XKxusfMn-yauoev7SEdDKs4C7lBuzD3QNVjot_qr1wyFMsEq1-aY6QXtsDFVasg%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z&cbur=0.2202846660551101&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F
IP 35.190.38.40:0
Hash ff79b0c42ba5f0555accab2532ae12ce
d608f5989f47886190c0f7c29ff9ac80a136f238
f767d205d07b7d2810b54e4ba991373d4d60efd6bd83aa7dc75b05c0bc9cb048
GET /jump/next.php?stamat=m%257Ca7oiOmY2aQdHkAH0dEdHP3xP.1c9%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWwcCi0NNE_ffU70yQBUwObw0XKxusfMn-yauoev7SEdDKs4C7lBuzD3QNVjot_qr1wyFMsEq1-aY6QXtsDFVasg%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6399926&sub1=vitellary-lion&sub2=whiskey-ria-ss9gkru3z&cbur=0.2202846660551101&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 03 Nov 2022 01:42:42 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://adspredictiv.com/script/i.php?stamat=m%257C%252C%252CQhNqtiKuoGU3B0-GH0dEdHP3xP.645%252C1xiXI3Ajt2k-yEg2q0Uf9X-7ofbYCn32qzmv7RvlKxp1LGw0Pwl1oKmCbU7F3INm_u5yydwBS76L7qLOVhFru7WBPQxzBt1hVoh56zwPPFyPLJ3X-MpJCWqQeHesvfcOC78uFGRPLhR5z-iil4J-QSp-PjXXD-SNsxrqILrNdUJbFdZCUfNxXSuN5g27pSoz-Z3Byjhz5w_SESTCJyUby0rN0_oiKLLfkb246M-fNrX2QJm7h6jGqcT2vmb3zSCfAbsc3GQn5cqDMez69lgi51UheR_occ10yWO9GQ1D2WcdmjRGkeMMh_ou9pdmqjlOEGwG78H3FawIXbM5KqmWHKTFPaVs8an0stKpCHyeD4SBuryPuhAU8QZNP78Gb_styrlippmJgKnMMhWLoY2xZjsZYQM5Pgt9_fox-gvX5r-uewzmt4X8Lw-2P45HPrZQZIi5S1QZr75rDiJezroiMPU859AB69JCDHP7gnG0X7oO-lgpRwF6xPnpNtE3rAC1x1AzMpFcdK4m6stu8KjepEjUNjj5CKf9sZWvQ_vb3APxdDXMTMpPhYCBgGOwIruAaijZsFe8TUj40mi5efaZqs9HYBsRwRrUa8FCOuFNMl0%252C
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1667439766025&cv=11&fst=1667439766025&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&auid=577046546.1667439765&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 997 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1667439766025&cv=11&fst=1667439766025&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&auid=577046546.1667439765&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1971), with no line terminators
Hash ad9688c14abe045d8f9885af3a2fc014
3a4cb11e1601292b274ab1dff03b2ab51ae4a093
2658674df84bd6db1a107ef403c26434d26f092925550f0d0abec61dcde6b5d4
GET /pagead/viewthroughconversion/745546367/?random=1667439766025&cv=11&fst=1667439766025&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&auid=577046546.1667439765&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 997
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 03-Nov-2022 01:57:46 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&fmt=3&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&ct_cookie_present=1
142.250.74.130200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&fmt=3&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&ct_cookie_present=1
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/745546367/?random=1667439766034&cv=11&fst=1667439766034&fmt=3&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=577046546.1667439765&data=event%3Dconversion&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 03-Nov-2022 01:57:46 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 741bd3f1ae63760ab46ae978e338cd68
fb7076b807574a5228038c0125031ac90714bbb3
539c6d94af9de8dc4d472e7df8f6c0fce915a9f741de985776f127852d20fbbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:46 GMT
expires: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBJYcY2MCEIrOFJIrqMLpF04UyfRonsYFEgEBAQFuZGNsYwAAAAAA_eMAAA&S=AQAAAreccroJvVIBWTRJyhWApzQ; Expires=Fri, 3 Nov 2023 07:42:46 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32b032454aa9a688fb91a589140ae152
f9c583002e296a75f1746bf181902948dba02542
3d272334a2923d5288765bc1183157fd127bd8f2928003760878feaca83eece2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2003%20Nov%202022%2001%3A42%3A45%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2003%20Nov%202022%2001%3A42%3A45%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Thu%2C%2003%20Nov%202022%2001%3A42%3A45%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:46 GMT
expires: Thu, 03 Nov 2022 01:42:46 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBJYcY2MCEIrklCLpPTF26wEYnDhfpOQFEgEBAQFuZGNsYwAAAAAA_eMAAA&S=AQAAAuUAvrB7Or4d-FQ176UpLw8; Expires=Fri, 3 Nov 2023 07:42:46 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad0035008a960853a76f80b51c498931
b276441d302b43005e9eb5b148f64cfc54246d96
acf253f72705687c7b3ff0efa59a9e5fd591c20da0debe744f51558fc19e3b9c
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4597
Cache-Control: max-age=124128
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "63624c81-1d7"
Expires: Fri, 04 Nov 2022 12:11:34 GMT
Last-Modified: Wed, 02 Nov 2022 10:54:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad0035008a960853a76f80b51c498931
b276441d302b43005e9eb5b148f64cfc54246d96
acf253f72705687c7b3ff0efa59a9e5fd591c20da0debe744f51558fc19e3b9c
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5020
Cache-Control: max-age=124551
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:46 GMT
Etag: "63624c81-1d7"
Expires: Fri, 04 Nov 2022 12:18:37 GMT
Last-Modified: Wed, 02 Nov 2022 10:54:57 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2563&ck=1&ref=https://www.etoro.com/&ap=9&be=295&fe=1596&dc=635&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667439763165,%22n%22:0,%22f%22:107,%22dn%22:108,%22dne%22:149,%22c%22:149,%22s%22:153,%22ce%22:159,%22rq%22:159,%22rp%22:278,%22rpe%22:278,%22dl%22:284,%22di%22:588,%22ds%22:635,%22de%22:639,%22dc%22:1594,%22l%22:1594,%22le%22:1597%7D,%22navigation%22:%7B%7D%7D&fcp=462&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2563&ck=1&ref=https://www.etoro.com/&ap=9&be=295&fe=1596&dc=635&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667439763165,%22n%22:0,%22f%22:107,%22dn%22:108,%22dne%22:149,%22c%22:149,%22s%22:153,%22ce%22:159,%22rq%22:159,%22rp%22:278,%22rpe%22:278,%22dl%22:284,%22di%22:588,%22ds%22:635,%22de%22:639,%22dc%22:1594,%22l%22:1594,%22le%22:1597%7D,%22navigation%22:%7B%7D%7D&fcp=462&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2563&ck=1&ref=https://www.etoro.com/&ap=9&be=295&fe=1596&dc=635&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667439763165,%22n%22:0,%22f%22:107,%22dn%22:108,%22dne%22:149,%22c%22:149,%22s%22:153,%22ce%22:159,%22rq%22:159,%22rp%22:278,%22rpe%22:278,%22dl%22:284,%22di%22:588,%22ds%22:635,%22de%22:639,%22dc%22:1594,%22l%22:1594,%22le%22:1597%7D,%22navigation%22:%7B%7D%7D&fcp=462&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76416a4d0c2eb518-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=791a65e4633c0c61; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=432d9f3f-075a-4d39-a526-7316f498a3ee&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:46 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_NMoDouS56cMz+QWHE/rFXw=="; Max-Age=63072000; Expires=Sat, 02 Nov 2024 01:42:46 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 09a3567d8d7751a9
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 6133cb8f49b018c6579e57655676a31feb2ed5710e7c4fbebc0839aae52e24dd
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f6a33c94-e6df-49bd-826d-f31107c734df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=4462615b-de86-4278-a36c-32f7bf22bd21&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:46 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_hYgERqH1tL++SKWmQvLU9A=="; Max-Age=63072000; Expires=Sat, 02 Nov 2024 01:42:46 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 554cc14846e4f9be
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 6133cb8f49b018c6579e57655676a31feb2ed5710e7c4fbebc0839aae52e24dd
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3240&ck=1&ref=https://www.etoro.com/
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3240&ck=1&ref=https://www.etoro.com/
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3240&ck=1&ref=https://www.etoro.com/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1049
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 76416a4e1cabb518-OSL
Access-Control-Allow-Origin: https://www.etoro.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
tr.outbrain.com/cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575
70.42.32.95200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575
IP 70.42.32.95:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 38d30c968e8599b78164ab8da8e30af2
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=02407307019560575&referrer=
70.42.32.95200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=02407307019560575&referrer=
IP 70.42.32.95:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=02407307019560575&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:46 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: fbc71cfb4bd8aadb5c060ea226698e28
content-encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 41e7d450f0768b9f001ab45e623882ee
6fde267876eef4d132b0873956e69c869dec3573
382b42c1db7fa5757d34cae0b1f85c6777d215b7bca3caccefd573b51057d092
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 03 Nov 2022 01:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 02:54:24 GMT
Expires: Wed, 09 Nov 2022 02:54:23 GMT
Etag: "6fde267876eef4d132b0873956e69c869dec3573"
Cache-Control: max-age=522095,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76416a4fbf50b512-OSL
www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667439766214&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667439766211.874740250&it=1667439765851&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667439766214&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667439766211.874740250&it=1667439765851&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667439766214&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667439766211.874740250&it=1667439765851&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 03 Nov 2022 01:42:47 GMT
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667439766173%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJVKt-IxRJcrAAAAYQ7J66WgAJqHWr5hp3q0dqpr6mCofN01gEKM5fWwCsiwluO80w9NP0EjZ1dHQ; Max-Age=2592000; Expires=Sat, 03 Dec 2022 01:42:47 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJkFS2TD33v7AAAAYQ7J66WmoQPZsN6l_Cmnj5R3yj07x0cStMygdHr55eClgEPl2wHPUF8Gx2pid_K12N3Mg; Max-Age=2592000; Expires=Sat, 03 Dec 2022 01:42:47 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&43ab3359-da08-470b-8599-2aa73a4f818b"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 03-Nov-2023 01:42:47 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2368:u=1:x=1:i=1667439767:t=1667526167:v=2:sig=AQEoVx1JKfWlgb8ASxE3d2mg9z-w6xdQ"; Expires=Fri, 04 Nov 2022 01:42:47 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXshxMB2uuyscHyhV46Bw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CE05E29F491942C9B5DA5A72D4AD793B Ref B: OSL30EDGE0211 Ref C: 2022-11-03T01:42:47Z
date: Thu, 03 Nov 2022 01:42:47 GMT
content-length: 0
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
52.45.196.192200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1412
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=a902be743eccf1ae68973fb965d0adf8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Thu, 03 Nov 2022 01:42:47 GMT
content-length: 0
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
52.45.196.192200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1407
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=a902be743eccf1ae68973fb965d0adf8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Thu, 03 Nov 2022 01:42:47 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667439766173%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667439766173%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667439766173%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&a5a102c7-7081-49f6-8180-b85bb5eaaaa5"; Domain=.linkedin.com; Expires=Fri, 03-Nov-2023 01:42:47 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022110301424715981eee-ad92-47eb-8073-66f0051fc9dfAQGCSHYP6twbHFrAQtbsrDFkiCdX3Agw"; Domain=.www.linkedin.com; Expires=Fri, 03-Nov-2023 01:42:47 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njc0Mzk3Njc7MjswMjGC+w/YLW/UT/UN8W6bKmDqoM/gHNdL6amOzMPikWVdLw==; Domain=.linkedin.com; Expires=Tue, 02 May 2023 01:42:47 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2410:u=1:x=1:i=1667439767:t=1667526167:v=2:sig=AQGRxvSdr1KkDxjNRjaoj5481JuaVXL6"; Expires=Fri, 04 Nov 2022 01:42:47 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com *.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXshxMG3coW+pIBfiZL2A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F1C2AFF6C8F24208BD06A540F346E9EE Ref B: OSL30EDGE0211 Ref C: 2022-11-03T01:42:47Z
date: Thu, 03 Nov 2022 01:42:47 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1667439766173&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a6e340fa-63df-4636-82fe-b23278ada30d"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 03-Nov-2023 01:42:47 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2410:u=1:x=1:i=1667439767:t=1667526167:v=2:sig=AQGRxvSdr1KkDxjNRjaoj5481JuaVXL6"; Expires=Fri, 04 Nov 2022 01:42:47 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXshxMJdg0d7JCKc3F5Vw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BC69184FC76843148E513E8B1D02BFED Ref B: OSL30EDGE0211 Ref C: 2022-11-03T01:42:47Z
date: Thu, 03 Nov 2022 01:42:47 GMT
content-length: 0
X-Firefox-Spdy: h2
trc-events.taboola.com/1005612/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=13&ssd=1&est=1667439765823&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667439767378&vi=1667439765821&ri=039bc94957a6580bb6a9652774e1dfcb&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1005612/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=13&ssd=1&est=1667439765823&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667439767378&vi=1667439765821&ri=039bc94957a6580bb6a9652774e1dfcb&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1005612/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=13&ssd=1&est=1667439765823&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667439767378&vi=1667439765821&ri=039bc94957a6580bb6a9652774e1dfcb&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 03 Nov 2022 01:42:47 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.etoro.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8f7cdcf01805b3a47d87a46c0a527d0e
9e34e7892ba54846ce92aea0f8437ff8a1a6c291
af5a93e6af88c48978bbc98e7d8e984985ad56614f752ec92275c121df06c978
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3635
Cache-Control: max-age=162038
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:48 GMT
Etag: "6362e45b-2d7"
Expires: Fri, 04 Nov 2022 22:43:26 GMT
Last-Modified: Wed, 02 Nov 2022 21:42:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 727
px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term%3Dvalue
54.244.159.189200 OK 18 kB URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term%3Dvalue
IP 54.244.159.189:0
File type ASCII text, with very long lines (2120)
Hash a946cd84a5602f30f722573513ddd213
3092fa142a85e60150661942c9b1fd1da2c58ecb
4f94147e7088028f7402b0614131a7d25ab5d6de7e6a6c078894b93c66018e9e
GET /st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term%3Dvalue HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 03 Nov 2022 01:42:48 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=d213f804-5b18-11ed-b270-39e7b3ad3533;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8f7cdcf01805b3a47d87a46c0a527d0e
9e34e7892ba54846ce92aea0f8437ff8a1a6c291
af5a93e6af88c48978bbc98e7d8e984985ad56614f752ec92275c121df06c978
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3635
Cache-Control: max-age=162038
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:48 GMT
Etag: "6362e45b-2d7"
Expires: Fri, 04 Nov 2022 22:43:26 GMT
Last-Modified: Wed, 02 Nov 2022 21:42:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 727
ww.steelhousemedia.com/gs
44.238.130.186200 OK 144 B URL HTTP/1.1 ww.steelhousemedia.com/gs
IP 44.238.130.186:0
File type ASCII text, with no line terminators
Hash bc5b869fc817238d8eb7ca09cbc8a670
6db462fe83c731bd3d34a44d142469bd7d7730ad
f01d38beea901ae210fd40eff9a7c089a197def16d0014e77d4ffc65fcd2a23a
GET /gs HTTP/1.1
Host: ww.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 03 Nov 2022 01:42:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
one.pointlessplay.com/mon
52.45.196.192200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1407
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=a902be743eccf1ae68973fb965d0adf8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Thu, 03 Nov 2022 01:42:49 GMT
content-length: 0
X-Firefox-Spdy: h2
px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=1667439768022105&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1667439768828
54.244.159.189200 OK 1.3 kB URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=1667439768022105&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1667439768828
IP 54.244.159.189:0
Hash f19a14a6d1a8951b9c86b6c8cb5dadae
41f627e319ce34b443d85598d6e6116e787ede66
7415533fb62704ea05cd3fa83388b1997f682d7844b680b87bc4ea7ff051c813
GET /st?ga_tracking_id=UA-2056847-65&ga_client_id=940653742.1667439765&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22940653742.1667439765%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667439765.1%22%2C%22dcm_gid%22%3A%22922497944.1667439766%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667439765.1&dcm_gid=922497944.1667439766&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=1667439768022105&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1667439768828 HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 03 Nov 2022 01:42:49 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: rt=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;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=35b0bce9-d250-329d-b012-c0426f88d0bd;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17f73065-97ce-4f81-b633-9e742a41de58.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17f73065-97ce-4f81-b633-9e742a41de58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3a9487bef5302f3cb3c970eadb86675
d7b5b8be2e6f0a6496c7da03cbb99617b2533dd9
269c36d0739152a86f31c3640b1d48a0eb0c76414435f95656477bfb4f72f502
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17f73065-97ce-4f81-b633-9e742a41de58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8840
x-amzn-requestid: 3df7faf9-e7bd-464b-906c-b066139aeb04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_1wVGXLIAMFx7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63630335-7fa05f072f3cd8d92cacc25e;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 23:54:29 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IQVzf021MCE6B6912mEI6j-7BT5uStAu8gcn-6UykKL3zZkmMNUyyg==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 00:27:28 GMT
age: 4521
etag: "d7b5b8be2e6f0a6496c7da03cbb99617b2533dd9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 60141c5065dfbd2d4b9c6b2b58cb5e31
563976d02b86f7082a6e975859c676e299ea5b2f
a3535fdf83e385aeb99306e1c51794b391afd2e73bc2637a29f6169a682e5e61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5490
Cache-Control: max-age=171807
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 01:42:50 GMT
Etag: "63630347-117"
Expires: Sat, 05 Nov 2022 01:26:17 GMT
Last-Modified: Wed, 02 Nov 2022 23:54:47 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
IP 35.190.43.134:0
GET /collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:45 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=bm058hk&ct=0:mu6d391&fmt=3
52.223.40.198200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=bm058hk&ct=0:mu6d391&fmt=3
IP 52.223.40.198:0
GET /track/evnt/?adv=bm058hk&ct=0:mu6d391&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:49 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term=value
54.69.84.146200 0 B URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term=value
IP 54.69.84.146:0
GET /spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=38274515182789560term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Thu, 03 Nov 2022 01:42:45 GMT
connection: close
trc.taboola.com/1005612/trc/3/json?tim=1667439765828&data=%7B%22id%22%3A976%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667439765821%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667439765827%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1005612/trc/3/json?tim=1667439765828&data=%7B%22id%22%3A976%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667439765821%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667439765827%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1005612/trc/3/json?tim=1667439765828&data=%7B%22id%22%3A976%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667439765821%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667439765827%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 03 Nov 2022 01:42:46 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1667439767.502357,VS0,VE95
vary: Accept-Encoding
x-vcl-time-ms: 95
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
23.38.201.117200 OK 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
IP 23.38.201.117:0
GET /cache1/hp/v_250/js/script.min.js?v=1666613359 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UstjKmYHGN8WYkG4pmB/h9V8h19OUGh2i1FjFliBykUGT8I/5sV5tTJfxJJZrQoeJnxvynArGRo=
x-amz-request-id: F7QGAR8H44KYKRW6
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 12:51:07 GMT
etag: "57f5dcf3502cfebc456129a3dda31b0e"
x-amz-meta-sha256: 569eb69f141bb73e2a8a26b17eac9225b107485d936601eaf2571740898714a6
x-amz-meta-s3b-last-modified: 20220928T124714Z
x-amz-version-id: PgqNRpUIgU8eF2OAyi4TWyrPd9U26uVw
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 01:42:44 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76416a3f5ff6b523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Fri, 03 Nov 2023 01:42:44 GMT
date: Thu, 03 Nov 2022 01:42:44 GMT
content-range: bytes 0-2625182/2625183
content-length: 2625183
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
52.223.40.198302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
IP 52.223.40.198:0
GET /track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 03 Nov 2022 01:42:45 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=5ccfe3c1-45b7-49d4-8a48-52d0cd0a4a22; domain=.adsrvr.org; expires=Fri, 03-Nov-2023 01:42:45 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2