www.exness.com/intl/fr/
45.60.78.64301 Moved Permanently 0 B IP 45.60.78.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /intl/fr/ HTTP/1.1
Host: www.exness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.exness.com/intl/fr/
Content-Length: 0
Connection: close
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 11:12:19 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pyq-uIRDu6cpGAz7R0UQzUwfp1zK7NJv9Mkj0z7h0gcZiZa9ShR64Q==
Age: 358
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14163
Expires: Fri, 23 Sep 2022 15:14:20 GMT
Date: Fri, 23 Sep 2022 11:18:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -j8-k8gsHmY6_h3VqMBilr6j9Y75Rij5Ligur8_XmO_pN5_pWsqpTA==
age: 24183
X-Firefox-Spdy: h2
www.exness.com/intl/fr/
45.60.78.64302 Found 0 B IP 45.60.78.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /intl/fr/ HTTP/1.1
Host: www.exness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
cache-control: no-cache
content-length: 0
location: https://www.exness.uk/intl/fr/
set-cookie: visid_incap_961876=qsYqotYQRpev1S4ywesTgPiVLWMAAAAAQUIPAAAAAAAFjXEGsKShz9JHPeAI946v; expires=Sat, 23 Sep 2023 03:23:11 GMT; HttpOnly; path=/; Domain=.exness.com
nlbi_961876=Acy9KyruIzqbV3+0zTYrKwAAAAB5Mfqavk5hn8GL06wqSdBj; path=/; Domain=.exness.com
incap_ses_631_961876=f9UqUnTG7WRemm5a/sPBCPiVLWMAAAAAvspFbZXwH38BZfGKWpS8dA==; path=/; Domain=.exness.com
x-cdn: Imperva
x-iinfo: 2-4408123-4408126 NNNN CT(25 26 0) RT(1663931896797 23) q(0 0 0 0) r(0 0) U11
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 11:18:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.exness.uk/media/o9uqivq4bpuc/3NxFOkvXnWzKDBB7VFNUt/fb667958ecc0d74d095b0922fdb4b899/ExnessLogoWhite.svg
45.60.78.64200 OK 1.7 kB URL HTTP/2 www.exness.uk/media/o9uqivq4bpuc/3NxFOkvXnWzKDBB7VFNUt/fb667958ecc0d74d095b0922fdb4b899/ExnessLogoWhite.svg
IP 45.60.78.64:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3007)
Hash f48045e80ca85baa2a283fc0b155a372
f9ae2598b756985a0a1f0d90bba7897d8a545f18
3db5f603c15915a11e5969195ff79e8b155e14101ec1486293087da2638ef1d2
Analyzer Verdict Alert fortinet Phishing
GET /media/o9uqivq4bpuc/3NxFOkvXnWzKDBB7VFNUt/fb667958ecc0d74d095b0922fdb4b899/ExnessLogoWhite.svg HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "225abfaf"
content-type: image/svg+xml
content-length: 1739
content-encoding: gzip
cache-control: max-age=1155, public
expires: Fri, 23 Sep 2022 11:37:32 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 157) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.exness.uk/assets/peace.png
45.60.78.64200 OK 7.0 kB URL HTTP/2 www.exness.uk/assets/peace.png
IP 45.60.78.64:0
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 67294a8640c64ea007b0c278b111df95
05863f8930cfc25e6ebe9d6b7a51de4e75b23a1b
75cfb57b4260cf3a61b8de63202932bc6a208605e1f9da418e05dbac5e4ba6cf
GET /assets/peace.png HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f9a4-1b7f"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: image/png
content-length: 6984
cache-control: max-age=27541, public
expires: Fri, 23 Sep 2022 18:57:18 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 159) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.exness.uk/media/o9uqivq4bpuc/zTLxGb34ELLbf9BgSL0l8/cc06ed92d55ade5c1609351af79e4490/ExnessLogoBlack.svg
45.60.78.64200 OK 1.7 kB URL HTTP/2 www.exness.uk/media/o9uqivq4bpuc/zTLxGb34ELLbf9BgSL0l8/cc06ed92d55ade5c1609351af79e4490/ExnessLogoBlack.svg
IP 45.60.78.64:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3009)
Hash df1d303b8649ee1f45eeb6725a37f4f1
f3d836667c143eeec9a03aa0be6bf8725287c65f
5be6a92f9ed8a37f893b063bd94ed964dc1b87f8114c4410dc183e9c5631a592
Analyzer Verdict Alert fortinet Phishing
GET /media/o9uqivq4bpuc/zTLxGb34ELLbf9BgSL0l8/cc06ed92d55ade5c1609351af79e4490/ExnessLogoBlack.svg HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "0308d393"
content-type: image/svg+xml
content-length: 1737
content-encoding: gzip
cache-control: max-age=1155, public
expires: Fri, 23 Sep 2022 11:37:32 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 163) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.exness.uk/framework-503975f2ecca4dec5b9e.js
45.60.78.64200 OK 47 kB URL HTTP/2 www.exness.uk/framework-503975f2ecca4dec5b9e.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (65448)
Hash d8e464889b2d9b712baf0f46b3e5da72
f4e96e32f09883b17d218a4cf3065594b1e1295f
aaf08748daa9ad3b20cdc76fe90aa59d66c46f813860132971d2bba2f0998771
Analyzer Verdict Alert fortinet Phishing
GET /framework-503975f2ecca4dec5b9e.js HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f98f-24934"
last-modified: Thu, 15 Sep 2022 10:08:15 GMT
content-type: application/javascript
content-length: 47041
content-encoding: gzip
cache-control: max-age=31248903, public
expires: Wed, 20 Sep 2023 03:33:20 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 167) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.exness.uk/intl/fr/
45.60.78.64404 Not Found 174 kB IP 45.60.78.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24772)
Size 174 kB (174328 bytes)
Hash 5f478d7c0f4c45ff18e75bad79f5a4c9
78f6dbe1c958b43c02efa5a32cd99ac88728094f
a8e7839dfdb4dcfc2cba67c9ec837c4336e33748e4b387ae3d224737bf56a35a
Analyzer Verdict Alert fortinet Phishing
GET /intl/fr/ HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
date: Fri, 23 Sep 2022 11:18:17 GMT
content-type: text/html
etag: W/"6322f9a7-9eea"
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: private
x-content-type-options: nosniff
set-cookie: language=en;Path=/;Max-Age=2628000
nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; path=/; Domain=.exness.uk
visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; expires=Fri, 22 Sep 2023 23:24:41 GMT; HttpOnly; path=/; Domain=.exness.uk
incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==; path=/; Domain=.exness.uk
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-12565159-12553724 pNYN RT(1663931896991 16) q(0 0 0 11) r(0 0) U11
X-Firefox-Spdy: h2
www.exness.uk/webpack-runtime-8ed8ac7d895a39c079c7.js
45.60.78.64200 OK 2.1 kB URL HTTP/2 www.exness.uk/webpack-runtime-8ed8ac7d895a39c079c7.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (4441), with no line terminators
Hash 11ac77e1ea0036cf6b22486381cec133
5fdee73effcc53242d29552e4aa0edf728fbf478
e602e85125039e70c7f41fe1ef6f85f71b5d1fd059220d33bd0fb4180d051b49
Analyzer Verdict Alert fortinet Phishing
GET /webpack-runtime-8ed8ac7d895a39c079c7.js HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f98f-1159"
last-modified: Thu, 15 Sep 2022 10:08:15 GMT
content-type: application/javascript
content-length: 2129
content-encoding: gzip
cache-control: max-age=31248901, public
expires: Wed, 20 Sep 2023 03:33:18 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 170) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1bc08a7bd911326a5096f5d23db5ecaf
dd94420e31354268247636bef34938d74b88b7dd
4972f6bc216380d9c55451947c636a8e47ac106f6ef8e7976191c7cb7157aa6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4866
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:17 GMT
Last-Modified: Fri, 23 Sep 2022 09:57:11 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5e136317c0c71275860fcce48a860311
ea873b454c69b6bed9c6bfb32ca8b3d500c8cf3a
8280ba5f21730cd6cde3d0a3581bbdc319b5d707e268bc50f3b59d2846350830
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3375
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:17 GMT
Last-Modified: Fri, 23 Sep 2022 10:22:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash ec12a4ed6414d59f440cc6667f54fa56
dc045fd45a736db97db94c22d5b4d3a29aa10ea6
1a4fd42ea4ea00d7762d0a273e6094ac7967db784c736280fe77328025427373
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:17 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: 7BKk7WQU1Z9EDMZmf1T6Vg==
last-modified: Fri, 23 Sep 2022 06:42:23 GMT
etag: 0x8DA9D2EC58B2EA3
x-ms-request-id: 8747b20a-301e-00bb-1e1b-cf3912000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5755
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0f9fb6cb523-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WFFFJ4B
142.250.74.72200 OK 51 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WFFFJ4B
IP 142.250.74.72:0
File type ASCII text, with very long lines (23608)
Hash baeaf5e06be8550a3b008113dfb2f175
63d89b729e812ec30b4c538a4e7da95bf7f5009f
c3fae4bea2a79a47ea394d331ed11ee8449980cfa46553e9c99cabfec254c02b
GET /gtm.js?id=GTM-WFFFJ4B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 11:18:17 GMT
expires: Fri, 23 Sep 2022 11:18:17 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50655
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/8f8704d2-8807-494e-91c9-b7af072efb26/8f8704d2-8807-494e-91c9-b7af072efb26.json
104.16.148.64200 OK 1.4 kB URL HTTP/2 cdn.cookielaw.org/consent/8f8704d2-8807-494e-91c9-b7af072efb26/8f8704d2-8807-494e-91c9-b7af072efb26.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (3104), with no line terminators
Hash e3e32254fcf78161da0a3de49afcba5f
067671a81268884c7c40a8c4d35d4fe3900f9644
ca68e018d2ebe02464208fdff5e901c65de58d6a4cedbdcb472941e9f20bee78
GET /consent/8f8704d2-8807-494e-91c9-b7af072efb26/8f8704d2-8807-494e-91c9-b7af072efb26.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.uk
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/x-javascript
content-length: 1354
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 4+MiVPz3gWHaCj3kmvy6Xw==
last-modified: Wed, 18 May 2022 01:26:36 GMT
etag: 0x8DA386D73ADEB53
x-ms-request-id: 8e3e44da-301e-0038-3f66-6a99bf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Fri, 23 Sep 2022 15:18:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fa4de6b515-OSL
X-Firefox-Spdy: h2
static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364
54.230.111.14200 OK 1 B URL HTTP/1.1 static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364
IP 54.230.111.14:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364 HTTP/1.1
Host: static.site24x7rum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=ISO-8859-1
Content-Length: 1
Connection: keep-alive
Date: Fri, 23 Sep 2022 11:18:03 GMT
Access-Control-Allow-Origin: *
Server: ZGS
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zpYMsvoU3eiicCpBM3XLmp6Ws6s-a_2oRPuWKmVhAez2oovf3GJFsg==
Age: 15
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 11:03:22 GMT
Expires: Fri, 23 Sep 2022 11:24:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FoO4l5Cl9L0i2vFGZwumXjJAJN9b6KQB3TouWj3zUlZuMhvrcfOxmQ==
Age: 896
www.exness.uk/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 27 kB URL HTTP/2 www.exness.uk/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 873c9d477160f023b96935a42cbe1b9d
2548af0afd95326b592f2c5691bfdbec6b34a18f
29bfcc236697e92eb74f16ca38c0d18fc911e2f49152d6ef79d92eea0c5fa337
Analyzer Verdict Alert fortinet Phishing
GET /icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f971-6e99"
last-modified: Thu, 15 Sep 2022 10:07:45 GMT
content-type: image/png
content-length: 26712
cache-control: max-age=16578, public
expires: Fri, 23 Sep 2022 15:54:35 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12562185 2CNN RT(1663931896991 406) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
www.exness.uk/favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 1.5 kB URL HTTP/2 www.exness.uk/favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 02f0db74dac5e0b417763513f0299f99
4fd218c117ba80c07525534f004fb5e71061f6fe
49ffe637116fd9a3bd5b458bfa98713efa868322b509f026fbe2c64e73fd3a22
Analyzer Verdict Alert fortinet Phishing
GET /favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f971-620"
last-modified: Thu, 15 Sep 2022 10:07:45 GMT
content-type: image/png
content-length: 1535
cache-control: max-age=28553, public
expires: Fri, 23 Sep 2022 19:14:10 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12562185 2CNN RT(1663931896991 409) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
104.16.148.64200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 523e98a35ea92fd6e6d32d6728a8c98e
e0951a7bfa0700679aa41a03394286723e697d93
a746202b022948dfc0461cf24b3be5b01d0c08b924b23545f3cba6e2d15b41a9
GET /scripttemplates/6.22.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/javascript
content-length: 75930
content-encoding: gzip
content-md5: Uj6Yo16pL9bm0y1nKKjJjg==
last-modified: Thu, 19 Aug 2021 02:39:18 GMT
etag: 0x8D962BA8ADAEF03
x-ms-request-id: 18163f5d-b01e-0083-086c-c4784b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 29329833
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fbedd3b523-OSL
X-Firefox-Spdy: h2
www.exness.uk/page-data/404/page-data.json
45.60.78.64200 OK 2.8 kB URL HTTP/2 www.exness.uk/page-data/404/page-data.json
IP 45.60.78.64:0
File type ASCII text, with very long lines (8979), with no line terminators
Hash a82dccee93b9ec024af1d17251c6c11e
fcfefcc5aa00a206a10fb708b7f41aa3dcd5a75e
a7667e3ed0d3b311b870c16aa5461709a7f94f68b58908dc07ab959f7246010a
Analyzer Verdict Alert fortinet Phishing
GET /page-data/404/page-data.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-2313"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 2834
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12564488 2VNN RT(1663931896991 444) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
www.exness.uk/page-data/app-data.json
45.60.78.64200 OK 70 B URL HTTP/2 www.exness.uk/page-data/app-data.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text
Hash 0ff03880b1fbc9ee291151594c6bd31e
e9c84a2a5f448cc8ce5a8e41f82746b9732d9ada
4a3ad0f41590476d4212b996f7566e0828204d7def69f7358971b6189638797b
Analyzer Verdict Alert fortinet Phishing
GET /page-data/app-data.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-32"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 70
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12564124 2VNN RT(1663931896991 443) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6073
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Last-Modified: Fri, 23 Sep 2022 09:37:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.exness.uk/component---src-templates-page-error-js-0126ad3e70166ce79144.js
45.60.78.64200 OK 841 B URL HTTP/2 www.exness.uk/component---src-templates-page-error-js-0126ad3e70166ce79144.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (1799), with no line terminators
Hash e8a78976dcda7ebee91b12ec4676fb4b
7f2455e899ddeefdea51b9fa7600761b28bf0f2d
362f99499f1e2b807999e50616564d4db1b37d95c1c502d06f0b11cd2a4a0179
Analyzer Verdict Alert fortinet Phishing
GET /component---src-templates-page-error-js-0126ad3e70166ce79144.js HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "6322f98f-707"
last-modified: Thu, 15 Sep 2022 10:08:15 GMT
content-type: application/javascript
content-length: 841
content-encoding: gzip
cache-control: max-age=31253276, public
expires: Wed, 20 Sep 2023 04:46:13 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-0 0CNN RT(1663931896991 607) q(0 -1 -1 -1) r(1 -1)
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Fri, 23 Sep 2022 10:41:09 GMT
expires: Fri, 23 Sep 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 2229
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.exness.uk/page-data/sq/d/1067236220.json
45.60.78.64200 OK 71 B URL HTTP/2 www.exness.uk/page-data/sq/d/1067236220.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a35c94843e13c91273829da5b0642212
4b4bae0b8197f29f5ebb7837a095c7621c6ea33e
849b229864b5dcf94188cb2608ba802277686bb5c8698c4e3cfd054fe020889a
Analyzer Verdict Alert fortinet Phishing
GET /page-data/sq/d/1067236220.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-35"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 71
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12564124 2VNN RT(1663931896991 609) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
www.exness.uk/page-data/sq/d/3137483302.json
45.60.78.64200 OK 71 B URL HTTP/2 www.exness.uk/page-data/sq/d/3137483302.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a35c94843e13c91273829da5b0642212
4b4bae0b8197f29f5ebb7837a095c7621c6ea33e
849b229864b5dcf94188cb2608ba802277686bb5c8698c4e3cfd054fe020889a
Analyzer Verdict Alert fortinet Phishing
GET /page-data/sq/d/3137483302.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-35"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 71
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12564488 2VNN RT(1663931896991 613) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/8f8704d2-8807-494e-91c9-b7af072efb26/523a24ee-dcb0-4350-89bf-0a9487eff332/en.json
104.16.148.64200 OK 7.6 kB URL HTTP/2 cdn.cookielaw.org/consent/8f8704d2-8807-494e-91c9-b7af072efb26/523a24ee-dcb0-4350-89bf-0a9487eff332/en.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (28512), with no line terminators
Hash 4f7e5b8a33000e624fcf9a8b5b5cb4f0
a41d671b5396de132e71d3b6cf15337e5e2373de
4f0e4f8d4488ea194897d428fe4a61c411f6cf1eb5f4e506426f8f7cbd76bd9a
GET /consent/8f8704d2-8807-494e-91c9-b7af072efb26/523a24ee-dcb0-4350-89bf-0a9487eff332/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.uk/
Origin: https://www.exness.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/x-javascript
content-length: 7627
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: T35bijMADmJPz5qLW1y08A==
last-modified: Wed, 18 May 2022 01:26:37 GMT
etag: 0x8DA386D740F377A
x-ms-request-id: 7a8e0de1-301e-00ff-2a66-6ae57e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Fri, 23 Sep 2022 15:18:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fc699cb515-OSL
X-Firefox-Spdy: h2
www.exness.uk/page-data/sq/d/3167757750.json
45.60.78.64200 OK 289 B URL HTTP/2 www.exness.uk/page-data/sq/d/3167757750.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash c66d7bc66d4957a8ced848d41ac86135
bed5a46884cd76e5e2b47408183ed39dea32ac58
47e00caff8b9daf926dad26b7472b3bec9a3aeac6c36e003efca664e992c7454
Analyzer Verdict Alert fortinet Phishing
GET /page-data/sq/d/3167757750.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-190"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 289
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12562185 2VNN RT(1663931896991 614) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.uk/
Origin: https://www.exness.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 60b1c243-501e-014a-3f44-caaed4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fcca0fb515-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37295)
Hash 18547e97b06ab94df47f203505e4250f
c3fb390706da22139963e285865cf4af77e374cf
35c3b153e612b2809fd668d85c67b873887773d1c13d8cb4f796544c0f7a4141
GET /scripttemplates/6.22.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.uk/
Origin: https://www.exness.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/json
content-length: 11387
content-encoding: gzip
content-md5: GFR+l7BquU30fyA1BeQlDw==
last-modified: Thu, 19 Aug 2021 02:39:12 GMT
etag: 0x8D962BA87864242
x-ms-request-id: 3f572759-901e-0058-386f-c4dc9d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fcca11b515-OSL
X-Firefox-Spdy: h2
www.exness.uk/page-data/sq/d/2834441798.json
45.60.78.64200 OK 299 B URL HTTP/2 www.exness.uk/page-data/sq/d/2834441798.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with very long lines (417), with no line terminators
Hash 1d9f01aff5798f3305a6153dc4874dc0
87b2c4b718988311453c12062e15f27fb1439f72
f0f2b582a42c16008519b0c8df3f901d5d65dd82236ff475ffd9b0ccdba640be
Analyzer Verdict Alert fortinet Phishing
GET /page-data/sq/d/2834441798.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-1a1"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 299
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12536613 2VNN RT(1663931896991 612) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
www.exness.uk/page-data/sq/d/3672685860.json
45.60.78.64200 OK 95 B URL HTTP/2 www.exness.uk/page-data/sq/d/3672685860.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cf5bda543c5d508a371d06335e6bcd4c
d606514e8b608ccbe87642c807bf112586ccc65a
1faf27cb2552dd5e842133812b4f569c16c3f1e583264e440b37efef28ef8783
Analyzer Verdict Alert fortinet Phishing
GET /page-data/sq/d/3672685860.json HTTP/1.1
Host: www.exness.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/intl/fr/
Cookie: language=en; nlbi_1243376=pp6tYmNBq26XJDnAhB7R3QAAAADm7PM+O0K7kG+hLP/KDpEz; visid_incap_1243376=vN35xxt1Rmm0lBfFAhyv9PmVLWMAAAAAQUIPAAAAAAB4Sfi/tvnbkX0kfSIrTiB/; incap_ses_631_1243376=2TuAC0C7XRZpmm5a/sPBCPmVLWMAAAAAHIZ6phoTPyk513nilVGvRQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"6322f9a4-5e"
last-modified: Thu, 15 Sep 2022 10:08:36 GMT
content-type: application/json
content-length: 95
content-encoding: gzip
cache-control: max-age=60, public
expires: Fri, 23 Sep 2022 11:19:17 GMT
date: Fri, 23 Sep 2022 11:18:17 GMT
x-cdn: Imperva
x-iinfo: 4-12565159-12520927 2VNN RT(1663931896991 614) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
104.16.148.64200 OK 6.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP 104.16.148.64:0
Hash 8bc5e823d81163289c49ae66b20382ed
479c386ca2264ff85ce578b13b84acb9d9e306ad
476b7a2b5d208bc176bb95886a9c6166d319b51cde52c3d649d5257d209cd989
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.uk/
Origin: https://www.exness.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 5c82fd4b-d01e-0150-766f-c481bb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fcca15b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&gjid=127298878&_gid=1224409270.1663931898&_u=YGBAgAABAAAAAE~&z=770935456
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&gjid=127298878&_gid=1224409270.1663931898&_u=YGBAgAABAAAAAE~&z=770935456
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&gjid=127298878&_gid=1224409270.1663931898&_u=YGBAgAABAAAAAE~&z=770935456 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.exness.uk
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.exness.uk
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 23 Sep 2022 11:18:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unpkg.com/pwacompat
104.16.126.175302 Found 39 B IP 104.16.126.175:0
File type ASCII text, with no line terminators
Hash ff6816f742ed61940e86dbdbb722fa8a
d7f78a724f767ce3f84c6c60b8bc007e20db84db
13c4029d812199699e32c99a082a24dd34ee6ddbdbfe9e0ee677b74e177cfa62
GET /pwacompat HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.uk
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 23 Sep 2022 11:18:17 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /pwacompat@2.0.17
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GDN13B9VQYC1878CBESRT3R9-fra
cf-cache-status: HIT
age: 8
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0f9fbb90b31-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 75a6c13f18620214e5e013385d752044
174c34759a1e50884846a2505f0be16c285d75cc
fe6fcbbe324ceefc1e833208faedaeae6934b34f868690e5ad4676b02c0b3bf0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 11:18:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-93099055-1&cid=1060415830.1663931898&jid=176352668&_u=YGBAgAABAAAAAE~&z=1154671355 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.exness.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 11:18:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 11:18:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4498
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 11:18:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4498
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 11:18:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b877ead4a15221fdd278ef27f281a7ec
48c10714503e8dfdd3e3c3d39b919ef2792f0d15
f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gWZNsIn_FEbYwMeR1JArmPEgyuHEGgWsfb-wB6P_NrmoHhNgvGWoPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:07:28 GMT
age: 47451
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 48597
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 47213
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z0uCxl-5L4gijwJsCjssxmgnJr4yhzvtiZdcX4wOXzgiuh8-Yj92vg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 04:32:56 GMT
age: 24323
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 308978c4-679f-4bb6-bfd7-a81dc00ec3db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoKcMG-kIAMFZKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63265781-03f94c0a385ed28408de81c8;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 23:25:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9fh_DJXLHRaerYmgTGoVX3LRsMIgzf46bn48yzXp8Xdp8WippJExcg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 11:03:55 GMT
age: 864
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F256647b7-64d8-4f7e-9d77-276811e8e1b1.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F256647b7-64d8-4f7e-9d77-276811e8e1b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae63806537bc1795029ac9e522b4abb1
47c7e2fd6f0ea1bd6c9f494137b7ce53a91cf781
369fe0af9bba20526bb10c7240a7571e72726fa653bbb70d8e56fabb13cf9358
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F256647b7-64d8-4f7e-9d77-276811e8e1b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9484
x-amzn-requestid: ac493b06-28bc-4a84-ad7a-060617233da8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4ZDRHHiIAMFnow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd547-7944659e3cb7134b58da757f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:36:07 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OzTpgbr1HluiZtdiVUrQjTV1KMWuynatd1A8L8excXJDJsnM45A3Hg==
via: 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:53:16 GMT
age: 48303
etag: "47c7e2fd6f0ea1bd6c9f494137b7ce53a91cf781"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
unpkg.com/pwacompat@2.0.17
104.16.126.175302 Found 0 B URL HTTP/2 unpkg.com/pwacompat@2.0.17
IP 104.16.126.175:0
GET /pwacompat@2.0.17 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.uk
Referer: https://www.exness.uk/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 23 Sep 2022 11:18:17 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /pwacompat@2.0.17/pwacompat.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01G4XKWX33QFXTA5NC3NSAW46S-fra
cf-cache-status: HIT
age: 9375642
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fa1bea0b31-OSL
X-Firefox-Spdy: h2
unpkg.com/pwacompat@2.0.17/pwacompat.min.js
104.16.126.175200 OK 0 B URL HTTP/2 unpkg.com/pwacompat@2.0.17/pwacompat.min.js
IP 104.16.126.175:0
GET /pwacompat@2.0.17/pwacompat.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.uk
Referer: https://www.exness.uk/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 11:18:18 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Thu, 27 Aug 2020 08:32:40 GMT
etag: W/"180a-4Z0I9COL/LWHBqDazLIh3caZrIw"
via: 1.1 fly.io
fly-request-id: 01F52A0M2V9SQ4TXET5YCST9RX
cf-cache-status: HIT
age: 12041812
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f2e0fafd0f0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2