Overview

URL sublime2.site/pk/bx/nl/
IP79.98.28.128
ASNUAB Interneto vizija
Location Lithuania
Report completed2022-07-06 09:59:10 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-06 2 whampamp.com/4/5087048?var=backlink1 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Added / Verified Severity Host Comment
2022-07-06 2 whampamp.com Sinkholed
2022-07-06 2 whampamp.com Sinkholed
2022-07-06 2 whampamp.com Sinkholed


Files

No files detected



Passive DNS (69)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] ocsp.sca1b.amazontrust.com (1) 1015 No data No data 54.230.245.110
[Mnemonic Passive DNS] 9944765.fls.doubleclick.net (2) 125024 2020-03-16 13:56:12 UTC 2022-07-05 16:04:10 UTC 142.250.74.70
[Mnemonic Passive DNS] snap.licdn.com (1) 1044 2017-01-30 04:54:22 UTC 2022-07-06 04:42:03 UTC 23.36.76.210
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] region1.google-analytics.com (1) 0 No data No data 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
[Mnemonic Passive DNS] script.hotjar.com (1) 887 2016-01-27 16:53:15 UTC 2020-11-05 09:54:15 UTC 54.230.111.44
[Mnemonic Passive DNS] vars.hotjar.com (1) 1014 2017-01-04 05:00:38 UTC 2020-11-05 10:01:04 UTC 54.230.111.75
[Mnemonic Passive DNS] www.googletagmanager.com (1) 75 2017-01-30 05:00:47 UTC 2022-07-06 04:42:41 UTC 142.250.74.72
[Mnemonic Passive DNS] tr.outbrain.com (2) 2017 2017-04-12 07:58:35 UTC 2022-07-06 06:05:52 UTC 70.42.32.255
[Mnemonic Passive DNS] trc-events.taboola.com (1) 1779 2021-01-14 11:54:37 UTC 2022-07-06 04:03:56 UTC 141.226.228.48
[Mnemonic Passive DNS] c0.adalyser.com (2) 26110 2017-01-31 12:50:28 UTC 2022-07-06 06:59:29 UTC 54.220.190.57
[Mnemonic Passive DNS] amplify.outbrain.com (1) 2255 2017-04-12 07:58:35 UTC 2022-07-06 04:49:00 UTC 23.38.201.81
[Mnemonic Passive DNS] px.steelhousemedia.com (1) 7685 2015-06-04 23:07:48 UTC 2021-02-20 00:24:55 UTC 44.233.136.7
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] marketing.etorostatic.com (22) 82505 2015-08-11 01:55:33 UTC 2022-07-05 23:59:36 UTC 23.38.201.117
[Mnemonic Passive DNS] sc-static.net (1) 1183 No data No data 54.230.82.240
[Mnemonic Passive DNS] bam.nr-data.net (2) 630 2022-05-18 16:30:58 UTC 2022-07-05 21:19:29 UTC 162.247.241.14
[Mnemonic Passive DNS] analytics.twitter.com (2) 526 2017-01-30 05:01:11 UTC 2022-07-06 05:07:40 UTC 104.244.42.195
[Mnemonic Passive DNS] whampamp.com (3) 30947 No data No data 139.45.197.236
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 52.89.15.44
[Mnemonic Passive DNS] med.etoro.com (1) 45781 2020-11-04 13:13:58 UTC 2022-07-05 22:18:39 UTC 23.32.86.79
[Mnemonic Passive DNS] etorologsapi.etoro.com (3) 54636 2015-02-05 06:25:55 UTC 2022-07-06 04:29:01 UTC 20.54.24.199
[Mnemonic Passive DNS] ocsp.sectigo.com (3) 487 2018-12-17 11:31:55 UTC 2022-07-06 08:02:31 UTC 104.18.32.68
[Mnemonic Passive DNS] my.rtmark.net (1) 9054 No data No data 139.45.195.8
[Mnemonic Passive DNS] etoro-cdn.etorostatic.com (27) 49022 2015-08-30 18:44:25 UTC 2022-07-06 06:00:33 UTC 23.38.201.117
[Mnemonic Passive DNS] status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-07-06 05:06:55 UTC 93.184.220.29
[Mnemonic Passive DNS] tr.snapchat.com (2) 978 2022-05-17 22:06:59 UTC 2022-07-06 05:01:20 UTC 35.190.43.134
[Mnemonic Passive DNS] www.googleoptimize.com (1) 1604 No data No data 142.250.74.46
[Mnemonic Passive DNS] js.adsrvr.org (1) 1664 2020-10-28 04:38:34 UTC 2022-07-05 21:58:27 UTC 54.230.241.118
[Mnemonic Passive DNS] adservice.google.com (1) 76 2017-09-26 14:24:07 UTC 2021-02-23 08:52:19 UTC 142.250.74.130
[Mnemonic Passive DNS] www.facebook.com (1) 99 2012-05-28 23:09:18 UTC 2022-07-06 04:04:28 UTC 157.240.200.35
[Mnemonic Passive DNS] ocsp.pki.goog (21) 175 2017-06-14 07:23:31 UTC 2022-07-06 04:42:12 UTC 142.250.74.3
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 04:16:26 UTC 34.120.237.76
[Mnemonic Passive DNS] www.google-analytics.com (1) 40 2017-01-30 05:00:06 UTC 2022-07-06 06:00:56 UTC 142.250.74.174
[Mnemonic Passive DNS] cdn.taboola.com (1) 1040 2013-12-11 01:13:52 UTC 2022-07-06 04:51:45 UTC 151.101.85.44
[Mnemonic Passive DNS] js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-07-06 04:19:35 UTC 151.101.86.137
[Mnemonic Passive DNS] connect.facebook.net (1) 139 2013-09-20 12:03:21 UTC 2022-07-06 04:16:33 UTC 157.240.200.14
[Mnemonic Passive DNS] region1.analytics.google.com (1) 0 No data No data 216.239.34.36 Domain (google.com) ranked at: 1
[Mnemonic Passive DNS] r3.o.lencr.org (3) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.76.226
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.99
[Mnemonic Passive DNS] etoro.com (1) 7928 2012-05-29 12:18:15 UTC 2012-07-12 01:31:46 UTC 104.110.24.102
[Mnemonic Passive DNS] static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-07-06 04:42:41 UTC 54.230.111.113
[Mnemonic Passive DNS] bat.bing.com (3) 387 2017-01-30 04:52:25 UTC 2022-07-06 04:17:13 UTC 13.107.21.200
[Mnemonic Passive DNS] www.etoro.com (1) 18613 2012-05-29 12:18:15 UTC 2022-07-06 04:16:00 UTC 172.64.152.107
[Mnemonic Passive DNS] cdn.acsbapp.com (2) 5589 2020-11-09 00:18:11 UTC 2022-07-06 04:13:54 UTC 104.238.215.8
[Mnemonic Passive DNS] sublime2.site (1) 0 No data No data 79.98.28.128 Unknown ranking
[Mnemonic Passive DNS] cdn.fonts.net (1) 62966 No data No data 104.17.224.78
[Mnemonic Passive DNS] fonts.gstatic.com (3) 0 2017-01-30 04:59:51 UTC 2022-07-06 04:41:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] one.pointlessplay.com (5) 0 No data No data 50.16.211.97 Unknown ranking
[Mnemonic Passive DNS] in.hotjar.com (1) 1746 2018-07-03 09:33:18 UTC 2022-07-06 04:42:41 UTC 52.30.157.40
[Mnemonic Passive DNS] zero.pointlessplay.com (1) 0 No data No data 54.230.111.77 Unknown ranking
[Mnemonic Passive DNS] t.co (2) 569 2018-08-08 20:35:10 UTC 2022-06-04 21:33:00 UTC 104.244.42.5
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-05 15:41:59 UTC 142.250.74.164
[Mnemonic Passive DNS] ww.steelhousemedia.com (1) 16192 No data No data 44.238.130.186
[Mnemonic Passive DNS] static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-07-06 04:14:55 UTC 151.101.84.157
[Mnemonic Passive DNS] www.linkedin.com (1) 608 2012-07-31 06:29:59 UTC 2022-07-06 05:32:19 UTC 13.107.42.14
[Mnemonic Passive DNS] cdn.mxpnl.com (1) 2824 2012-08-22 19:52:57 UTC 2018-02-21 23:46:11 UTC 130.211.5.208
[Mnemonic Passive DNS] cdn.cookielaw.org (8) 502 2013-12-28 13:20:36 UTC 2020-08-08 02:06:05 UTC 104.16.148.64
[Mnemonic Passive DNS] sp.analytics.yahoo.com (2) 816 2014-01-31 20:48:24 UTC 2022-07-06 04:30:06 UTC 212.82.100.181
[Mnemonic Passive DNS] www.google.no (1) 25607 2012-05-21 14:04:11 UTC 2014-08-11 22:10:14 UTC 142.250.74.3
[Mnemonic Passive DNS] px.ads.linkedin.com (2) 522 2017-08-08 16:28:50 UTC 2022-07-06 04:42:03 UTC 13.107.42.14
[Mnemonic Passive DNS] ocsp.godaddy.com (1) 698 2017-01-30 05:00:35 UTC 2022-07-06 05:00:39 UTC 192.124.249.22
[Mnemonic Passive DNS] match.adsrvr.org (1) 349 2012-05-21 08:27:04 UTC 2022-07-06 05:45:23 UTC 52.223.40.198
[Mnemonic Passive DNS] stats.g.doubleclick.net (2) 96 2017-01-30 04:59:59 UTC 2022-07-06 04:42:45 UTC 173.194.222.155
[Mnemonic Passive DNS] ocsp.digicert.com (13) 86 2012-11-29 12:49:49 UTC 2022-07-06 08:25:08 UTC 93.184.220.29
[Mnemonic Passive DNS] buzzonclick.com (1) 0 2017-01-29 11:22:22 UTC 2020-06-20 06:30:52 UTC 35.186.243.67 Unknown ranking
[Mnemonic Passive DNS] acsbapp.com (1) 5220 2020-11-09 00:18:11 UTC 2022-06-08 16:23:09 UTC 138.128.247.123
[Mnemonic Passive DNS] adservice.google.no (2) 96969 2017-09-26 14:23:08 UTC 2022-07-06 04:42:40 UTC 216.58.207.194
[Mnemonic Passive DNS] s.yimg.com (2) 375 2012-05-20 22:45:00 UTC 2022-07-06 04:16:22 UTC 188.125.94.204


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 79.98.28.128

Date UQ / IDS / BL URL IP
2022-07-11 18:07:43 +0000
0 - 0 - 3 sublime2.site/norton/ 79.98.28.128
2022-07-11 01:03:55 +0000
0 - 0 - 6 sublime2.site/mz/env/movitel 79.98.28.128
2022-07-10 12:07:03 +0000
0 - 0 - 3 sublime2.site/mz/bx/movitel 79.98.28.128
2022-07-07 17:59:47 +0000
0 - 0 - 4 sublime2.site/pk/bx/nl/ 79.98.28.128
2022-07-07 08:40:55 +0000
0 - 0 - 4 sublime2.site/mz/movitel 79.98.28.128
2022-07-06 00:06:11 +0000
0 - 0 - 4 sublime2.site/pk/env/nl/ 79.98.28.128
2022-07-05 03:58:11 +0000
0 - 0 - 3 sublime2.site/mz/bx/movitel 79.98.28.128
2022-07-04 19:58:34 +0000
0 - 0 - 4 sublime2.site/pk/bx/nl/ 79.98.28.128
2022-06-29 03:57:50 +0000
0 - 0 - 1 sublime2.site/pk/env/nl/ 79.98.28.128
2022-06-26 20:59:24 +0000
0 - 0 - 4 sublime2.site/mz/env/movitel 79.98.28.128

Last 10 reports on ASN: UAB Interneto vizija

Date UQ / IDS / BL URL IP
2022-08-18 22:58:00 +0000
0 - 0 - 3 telego.online/co/lot2/nl/13/ 109.235.66.99
2022-08-18 21:59:08 +0000
0 - 0 - 3 telego.online/mx/bx/telmex 109.235.66.99
2022-08-18 21:59:07 +0000
0 - 0 - 3 telego.online/mx/bx/telmex 109.235.66.99
2022-08-18 21:02:06 +0000
0 - 0 - 2 telego.online/th/bx/ais/ 109.235.66.99
2022-08-18 19:58:58 +0000
0 - 0 - 3 telego.online/dz/bx/nl 109.235.66.99
2022-08-18 18:58:00 +0000
0 - 0 - 3 tele2022.online/mx/bx/telmex 79.98.26.18
2022-08-18 11:10:06 +0000
0 - 0 - 3 telego.online/dz/env/nl/ 109.235.66.99
2022-08-18 03:56:16 +0000
0 - 0 - 3 tele2022.online/id/env/tokopedia/ 79.98.26.18
2022-08-18 01:58:40 +0000
9 - 0 - 0 telego.online/mx/lot2/nl/7/?key=eyJ0aW1lc3Rhb (...) 109.235.66.99
2022-08-18 01:57:46 +0000
0 - 0 - 3 tele2022.online/ph/lot2/globe/7 79.98.26.18

Last 10 reports on domain: sublime2.site

Date UQ / IDS / BL URL IP
2022-07-11 18:07:43 +0000
0 - 0 - 3 sublime2.site/norton/ 79.98.28.128
2022-07-11 01:03:55 +0000
0 - 0 - 6 sublime2.site/mz/env/movitel 79.98.28.128
2022-07-10 12:07:03 +0000
0 - 0 - 3 sublime2.site/mz/bx/movitel 79.98.28.128
2022-07-07 17:59:47 +0000
0 - 0 - 4 sublime2.site/pk/bx/nl/ 79.98.28.128
2022-07-07 08:40:55 +0000
0 - 0 - 4 sublime2.site/mz/movitel 79.98.28.128
2022-07-06 00:06:11 +0000
0 - 0 - 4 sublime2.site/pk/env/nl/ 79.98.28.128
2022-07-05 03:58:11 +0000
0 - 0 - 3 sublime2.site/mz/bx/movitel 79.98.28.128
2022-07-04 19:58:34 +0000
0 - 0 - 4 sublime2.site/pk/bx/nl/ 79.98.28.128
2022-06-29 03:57:50 +0000
0 - 0 - 1 sublime2.site/pk/env/nl/ 79.98.28.128
2022-06-26 20:59:24 +0000
0 - 0 - 4 sublime2.site/mz/env/movitel 79.98.28.128


JavaScript

Executed Scripts (69)


Executed Evals (10)

#1 JavaScript::Eval (size: 4, repeated: 1) - SHA256: b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

                                        true
                                    

#2 JavaScript::Eval (size: 25, repeated: 1) - SHA256: b62262aeb7ee1694f40152af828f0d72a6ac6572f9db8ffa1ab16784c7532878

                                        (function() {
    return !0
})();
                                    

#3 JavaScript::Eval (size: 2273, repeated: 1) - SHA256: 6812356d8b5d8aae74c59d18dba083c9d15f6e3d489e7c9518fceb19ad9ab707

                                        �
(function() {�
    var s = '9a74f8b353780f2fbe59d8dc1d9cd901437be0b823f8ee60d0ab36210d3d1bca685bcbcaa6475176b5fa338766f5a69186ce2876a206a2725c3a6b75b0b09094fcad1de743fb8d54967d359e598987ed1dd72a67df5c5c7f7c9d61e7763d3c785275acddf16bdc846941d8172a9e21bbe6906863a0cc13860a742e735d1893';�
    function setCookie(cname, cvalue, domain, exdays) {�
        var d = new Date();�
        d.setTime(d.getTime() + (60 * exdays * 1000 * 24 * 60));�
        var expires = "expires=" + d.toUTCString();�
        var cookie = cname + "=" + cvalue;�
        if (domain) {�
            cookie += ";" + "domain=" + domain;�
        }�
        cookie += ";" + expires + ";path=/";�
        document.cookie = cookie;�
    }�
    function deleteCookie(cname, domain) {�
        setCookie(cname, "", domain, 0);�
    }�
    var ta = ["window.__nightmare", "window.__webdriver_script_fn", "window.callPhantom", "document.$cdc_asdjflasutopfhvcZLmcfl_", "window._phantom", "navigator.webdriver"];�
    var re;�
    try {�
        re = [!!window.__nightmare, !!window.__webdriver_script_fn, !!window.callPhantom, !!document.$cdc_asdjflasutopfhvcZLmcfl_, !!window._phantom, !!navigator.webdriver];�
    }�
    catch (err) {��}�
    if (re && re.indexOf(true) == -1) {�
        setCookie("TMIS2", s, ".etoro.com", 14);�
    }�
    else {�
        var resultsObj = {};�
        for (var i = 0; i < ta.length; i++) {�
            resultsObj[ta[i]] = re[i];�
        }�
        var img = new Image();�
        img.src = 'https://etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=JSCClient&LogEvents=' + encodeURIComponent(JSON.stringify([{�
            ApplicationIdentifier: 'JSCClient',
            �ApplicationVersion: '0.0.11',
            �Level: "error",
            �Message: "ClientSel",
            �Results: resultsObj,
            �Type: 'log'�
        }]));�
    }�
})();��
                                    

#4 JavaScript::Eval (size: 241, repeated: 1) - SHA256: 5e42725853d4f78ab1d6a6b018854dd636744c9394cc5a58c0e826e47c1eea11

                                        let run_conversion_block = (...urls) => {
    let block = "sh_conversion=SHBLOCK";
    let url = window.location.href;
    for (let x of urls) {
        if (url.indexOf(x) > -1) {
            block = null;
            break;
        }
    };
    return block
};
run_conversion_block("https://www.etoro.com");
                                    

#5 JavaScript::Eval (size: 792, repeated: 1) - SHA256: be95c8d79151c70258c07974285ecbec353f917fa5054c668968d1e81295a6f0

                                        let searchForTags = (...compTags) => {
    let data = {};
    let scriptNodes = document.getElementsByTagName("script");
    let imageNodes = document.getElementsByTagName("img");
    let nodesArray = [...scriptNodes, ...imageNodes];
    for (let node of nodesArray) {
        for (let i = 0; i < compTags.length; i++) {
            if (node.src && node.src.indexOf(compTags[i].id) > -1) {
                data[compTags[i].id] = compTags[i].name;
            }
        }
    };
    return Object.values(data).join(",");
};
searchForTags({
    id: "criteo",
    name: "criteo=true"
}, {
    id: "shopify",
    name: "shopify=true"
}, {
    id: "adroll",
    name: "adroll=true"
}, {
    id: "adnxs.com",
    name: "appnexus=true"
}, {
    id: "googletagmanager",
    name: "googletagmanager=true"
}, {
    id: "googletagmanager.com/gtag/js?id=G-",
    name: "ga4=true"
}, {
    id: "pixel.mathtag.com",
    name: "mediamath=true"
});
                                    

#6 JavaScript::Eval (size: 289, repeated: 1) - SHA256: 1cad8b2a926db8ee19fc2e109e7a900061f1cf9bfd240cd0272c8b72fb9a64e1

                                        let map_order_id = () => {
    let oid = null;
    for (let x of dataLayer) {
        if (x.GAEventAction && x.GAEventAction === "Registration - Success") {
            oid = x.cID;
            break;
        };
        if (x.GAEventAction && x.GAEventAction === "Deposit - Success") {
            oid = x.transactionID;
            break;
        }
    };
    return oid;
};
map_order_id();
                                    

#7 JavaScript::Eval (size: 2224, repeated: 1) - SHA256: 816cbb1bc5f70047e1a1329d209131b3ba69b4b6c940193f5c652160fc2006cf

                                        (function() {
    if (typeof irongate == 'undefined') irongate = {};
    irongate.gr = function(callback) {
        if (typeof irongate.g != 'undefined') {
            callback()
        } else {
            if (typeof irongate.gcb == 'undefined') {
                irongate.gcb = []
            }
            irongate.gcb.push(callback)
        }
    };
    irongate.gsl = function() {
        var st = document.createElement("script");
        st.type = "text/javascript";
        st.src = "https://ww.steelhousemedia.com/gs";
        var list = document.getElementsByTagName("script");
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName("script")[last];
        scpt.parentNode.insertBefore(st, scpt);
        irongate.timeout = setInterval(irongate.dl, 2000)
    };
    irongate.dl = function() {
        if (typeof irongate.g != 'undefined') {
            clearInterval(irongate.timeout)
        }
        while (irongate.gcb.length > 0) {
            var callback = irongate.gcb.pop();
            callback()
        }
    };
    var request = function() {
        var st = document.createElement('script');
        st.type = 'text/javascript';
        var g = (typeof irongate.g != 'undefined' ? irongate.g() : 'null');
        var gt = (typeof irongate.gt != 'undefined' ? irongate.gt() : 'null');
        var sturl = 'px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=1586381221.1657101540&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%221586381221.1657101540%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221657101540.1%22%2C%22dcm_gid%22%3A%221865255145.1657101541%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getTrackingIdByGA%22%3A%22FAILED%22%2C%22getTrackingIdByOther1%22%3A%22FAILED%22%2C%22getTrackingIdByOther2%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1657101540.1&dcm_gid=1865255145.1657101541&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1657101542063390&shguid=' + g + '&shgts=' + gt;
        st.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + sturl;
        var list = document.getElementsByTagName('script');
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName('script')[last];
        scpt.parentNode.insertBefore(st, scpt)
    };
    irongate.gr(request);
    irongate.gsl()
})();
                                    

#8 JavaScript::Eval (size: 83, repeated: 1) - SHA256: 16546b79ed36a9ca2495b23fbef53975fd6d324b4b03a379a09a22cf788ba32c

                                        (function() {
    var b = 3;
    return function(a) {
        a.set("dimension" + b, a.get("clientId"))
    }
})();
                                    

#9 JavaScript::Eval (size: 62, repeated: 1) - SHA256: 6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8

                                        typeof 1 n === "bigint" && BigInt(1) === 1 n && Number(1 n) === 1
                                    

#10 JavaScript::Eval (size: 7, repeated: 1) - SHA256: 53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148

                                        () => !!1
                                    

Executed Writes (0)



HTTP Transactions (190)


Request Response
                                        
                                            GET /pk/bx/nl/ HTTP/1.1 
Host: sublime2.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         79.98.28.128
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Date: Wed, 06 Jul 2022 09:58:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Location: //whampamp.com/4/5087048?var=backlink1
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 09:49:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QlydJwyqZZ8WVZGnv5Im_3dHqR2KNDLEVL5CO0USdLpy9jK3yigG6g==
Age: 583


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3203
Expires: Wed, 06 Jul 2022 10:52:19 GMT
Date: Wed, 06 Jul 2022 09:58:56 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 581nzfCHyTwZqKU9qUo08_tzb-ZWv7LIt92H6rHv-6-a37wzRRrmdA==
age: 23531
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /4/5087048?var=backlink1 HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         139.45.197.236
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
                                        
Server: nginx
Date: Wed, 06 Jul 2022 09:58:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 69ae357a828c7f6ffea95f8af70f6ece
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=78eb9b25b74148a98f43bbb60e08a06a; expires=Thu, 06 Jul 2023 09:58:56 GMT; path=/ oaidts=1657101536; expires=Thu, 06 Jul 2023 09:58:56 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5402)
Size:   2935
Md5:    7afeb7f1bb61b700e6262314ae77c299
Sha1:   1e397ac7ef63040c64a8b4ff6fa8dd42abbc3ccf
Sha256: 9ded76c7f7560bd204717d76e58ca5593972d82a1439ef71ab337d4f95a70f00

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 09:58:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://whampamp.com/4/5087048?var=backlink1
Cookie: OAID=78eb9b25b74148a98f43bbb60e08a06a; oaidts=1657101536

                                         
                                         139.45.197.236
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Wed, 06 Jul 2022 09:58:56 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:56 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 04 Jul 2022 06:25:25 GMT
Expires: Mon, 11 Jul 2022 06:25:25 GMT
ETag: E490F8D0991A671A79E0B63008A7A93D1443E857
Cache-Control: max-age=418588,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp3
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 72677c1d2a4eb517-OSL

                                        
                                            GET /img.gif?f=merge&userId=78eb9b25b74148a98f43bbb60e08a06a HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://whampamp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 09:58:57 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=78eb9b25b74148a98f43bbb60e08a06a; expires=Thu, 06 Jul 2023 09:58:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 06 Jul 2022 09:34:56 GMT
Cache-Control: max-age=3600
Expires: Wed, 06 Jul 2022 10:00:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DI10eVvyhc0AE5QtNtkPmDSueZAEZqa77-zxLbRrjXGhk7ml64GdHg==
Age: 1441


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /?z=5087048&syncedCookie=true&rhd=false HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 456
Origin: http://whampamp.com
Connection: keep-alive
Referer: http://whampamp.com/afu.php?zoneid=5087048&var=5087048&rid=uZkGuFtJfk-T2gq_XdzZSg%3D%3D&rhd=false
Cookie: OAID=78eb9b25b74148a98f43bbb60e08a06a; oaidts=1657101536
Upgrade-Insecure-Requests: 1

                                         
                                         139.45.197.236
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 06 Jul 2022 09:58:57 GMT
Content-Length: 0
Connection: keep-alive
X-Trace-Id: 66f0e359d3b664f60f039a9f4a6d8fe7
Link: <https://buzzonclick.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://buzzonclick.com/jump/next.php?r=5623198&sub1=5087048
Access-Control-Allow-Origin: http://whampamp.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=78eb9b25b74148a98f43bbb60e08a06a; expires=Thu, 06 Jul 2023 09:58:57 GMT; path=/ oaidts=1657101536; expires=Thu, 06 Jul 2023 09:58:57 GMT; path=/ syncedCookie=true; expires=Wed, 13 Jul 2022 09:58:57 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 03 Jul 2022 14:30:42 GMT
Expires: Sun, 10 Jul 2022 14:30:42 GMT
ETag: 17E6DCFC86AC898D8E3BE8FD3156512C4E3848D5
Cache-Control: max-age=361304,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp3
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 72677c209889b517-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2154
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 09:58:57 GMT
Last-Modified: Wed, 06 Jul 2022 09:23:03 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 03 Jul 2022 14:30:42 GMT
Expires: Sun, 10 Jul 2022 14:30:42 GMT
ETag: 17E6DCFC86AC898D8E3BE8FD3156512C4E3848D5
Cache-Control: max-age=361304,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp4
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 72677c225aceb517-OSL

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6JUqCQoSUnXzJqyRmRIzNA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.89.15.44
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CxWERKu5wCBDlO8PATHlYQe2CNQ=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /jump/next.php?stamat=m%257C%252CQY2JmYhfrB1dQO0dEdHP3xP.a4e%252CS0kXXHXf2ck-DOZ9HRvwuJT99mPrzcjyKLEH6rCCDo3YYabNfRPa93XyTQv0L3qCETl_xQGMlQtc51LBpyRp_Q%252C%252C&cbpage=https://buzzonclick.com/jump/next.php?r=5623198&sub1=5087048&cbur=0.7592887858240797&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=1024&cbdescription=&cbkeywords=&cbref= HTTP/1.1 
Host: buzzonclick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         35.186.243.67
HTTP/2 302 Found
                                        
server: openresty
date: Wed, 06 Jul 2022 09:58:57 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://buzzonclick.com/script/i.php?stamat=m%257C%252C%252CgjO-NjentGU3Bk-GH0dEdHP3xP.0e7%252CLJF3XwxY_TMICuTEHYBrzdjXsc8gjcjULO468nYAFaaGnkduArbrTVMiQjGqvc1u-bNnciITqiHK8TZE4I1VG7CnFaVNQ5syZ_nzptNiDapSMjXiUUW5cUD8nRAesgcgFj9cFMwdBGM0kbJV6Lg2DCYlOtE8LvwWRfFFYfxHIG77gw4Oghtj5MQr3bz-XqSyqv5OwMzEPaS1PUMqntPD0zTVkSsCrWwRrwFxZjXz1sVyDDg5TPVJprtrbR9E7_PCiK0Y0Dzs7to376bFOASy5cexiGDdG0uUQCuPTMtrDr-QKLLzReIFfaJ0U21d-LugO0mc8pawycr-1ZEmLVlzZlJ_EuHxbFtkq9h9aR0A1TA5iTJkeGZftQKuGEjZU8qWhOPrXcJ-DylMdzNmJIs5K8vpjIZGaVHtSPzLtMwGk0rqiSkh5YdPSYzQlYzQoCp1P8GQh07oeatNNYWbZeX30qCfGyWXB6qafO-xLnD47KFqvMB7D1Hl68lCktL3skyUCpTG_YJshHHV0NW-rX1T3Zb1YaKonaEy6cuL3lUAMCU%252C
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   70542
Md5:    c1f88093538cfaa1afe3efe690117e5f
Sha1:   ed415a83b2b9e446edc14e4467aa628bd16eac67
Sha256: 6dece8f7a2ad4384ef8038da600191e2aa63a7ffc72379ceda6513e3e4eed996
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /B12616_A89099_TSlick_S16571015371532635802277324906788854.aspx HTTP/1.1 
Host: med.etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         23.32.86.79
HTTP/1.1 301 Moved Permanently
                                        
Server: AkamaiGHost
Content-Length: 0
Location: https://etoro.com/
Date: Wed, 06 Jul 2022 09:58:58 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.110.24.102
HTTP/1.1 301 Moved Permanently
                                        
Server: AkamaiGHost
Content-Length: 0
Location: https://www.etoro.com/
Date: Wed, 06 Jul 2022 09:58:58 GMT
Connection: keep-alive

                                        
                                            GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:58 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2181
expires: Wed, 06 Jul 2022 13:58:58 GMT
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c292f631c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2829)
Size:   2072
Md5:    b9eadb6d05b9bafe419aa99f68097df2
Sha1:   d850dc819264475c6d1cbe6e8419a1016a659db2
Sha256: a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:58 GMT
content-type: application/javascript
content-length: 6922
content-encoding: gzip
content-md5: 4m3LBpuQ5au3un+sbdTm6g==
last-modified: Mon, 04 Jul 2022 02:38:02 GMT
etag: 0x8DA5D66372E5D82
x-ms-request-id: 75a9b1d0-a01e-0097-1652-8fbb2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1659
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c292f711c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20894)
Size:   6922
Md5:    e26dcb069b90e5abb7ba7fac6dd4e6ea
Sha1:   85bb9094dda5dc09030d2b6f9eaebc44816d4052
Sha256: 8909a24a3d0fe6f96b4da93d15708784623855aa079874a9fa61e6d2e968684f
                                        
                                            GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1 
Host: cdn.fonts.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.224.78
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:58 GMT
content-type: text/css
content-length: 0
x-amz-id-2: NWM2gS3hlnBKH4w7cigQxlEDQpYYG02gcXfjtipF61xRuC5so7gz1gmjKaDr+bmGfftLsRplIOU=
x-amz-request-id: TTBRC98M5DXW10AD
last-modified: Wed, 25 Aug 2021 10:52:51 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: IEQwO4JZTIywaIzd4PkNEq8SV90U7sak
cf-cache-status: HIT
age: 1662
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
set-cookie: __cf_bm=Mho03_KoDNNTutNOoAY3pLOoC0_TYAo3o48A5kdYN94-1657101538-0-ATHyG7jwOKvYwTJM3ahd+Xu9RJ1HXSNnNHvsqTHjrGPg+0x0Wic49F7mddwBL6vfXslZ/ShsPcEMw4DqlWH5E8o=; path=/; expires=Wed, 06-Jul-22 10:28:58 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 72677c293e890b69-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /optimize.js?id=GTM-55ZB4XN HTTP/1.1 
Host: www.googleoptimize.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Jul 2022 09:58:58 GMT
expires: Wed, 06 Jul 2022 09:58:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44778
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15522)
Size:   44778
Md5:    763fc782d611c08669947650872ca275
Sha1:   ad19f69ef2a2c914e4f33cd298b0937e68781860
Sha256: 20f9a6fbad72fdbba5a2eceaf9f968862894002bab1ebe9eaec8714348234d5a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: www.etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.64.152.107
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:58 GMT
content-type: text/html
vary: Accept-Encoding
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
set-cookie: TS01047baf=01d53e58187f9195dc32f6d2fe864ccd12566c6d63a464d01cfa0f49ce48a096b3b5b3a2775f3c1499f16ef1364872842d10c09f9f; Path=/ __cf_bm=SyaqvOlj8L0NqVTQ8ic1hGWBkz9OcKaqSNPLBW5c5XA-1657101538-0-AXjJpNmCSfBZhb0VlIfZ5B0ZIiZYsIDBvziHa7ruStKEa6Yyczdeqz/V9IJ4qD5OckWH6SJnxf1l7zTFHGBusPDp9wcSQHrKcF3xBj9fvweU; path=/; expires=Wed, 06-Jul-22 10:28:58 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None __cflb=02DiuEAg8LPSYevHEYkaxA3gcDJTcgwA1qELQ8mCcf5E4; SameSite=None; Secure; path=/; expires=Thu, 07-Jul-22 08:58:58 GMT; HttpOnly
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c282d8f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30995)
Size:   43646
Md5:    1e852f041b89684ffec6be1a10037953
Sha1:   20a99ddd2c5e4a0cbcaa645ec52691e0af66006a
Sha256: f3d51a12fb97537a54c7599aa3bc2d0644581e03b57e950b132e005ff39f8e80
                                        
                                            GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:58 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2085
expires: Wed, 06 Jul 2022 13:58:58 GMT
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c2a28b61c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Size:   1490
Md5:    6439835da3e85cb6917ac06b2dab2b37
Sha1:   b65ad002a7c48559e9124256295c1c688e8f3084
Sha256: bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
                                        
                                            GET /market-avatars/100042/100042_006AE3_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: KX6uLMXdeRrpKs7zMmt3jjSW1W3rmyjs79drsgmrXCBLejYDASz0V3kElK/wENwfLFzvnBUJ7Bw=
x-amz-request-id: G8HH46BSS6KM3W0C
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:34 GMT
etag: "73f583570570c12917192e26150f4d9d"
x-amz-meta-sha256: 45ebbf12c987bc49156e0d699f829ec167a018554c1a73d9d4e5d14244788fbd
x-amz-meta-s3b-last-modified: 20210607T133940Z
x-amz-version-id: wAIKH7Dd9Xs9YvoFmgwyLeylJrfmx_rX
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 694
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (560)
Size:   694
Md5:    bb2c11132179cbde13bd4bbe15d68ad2
Sha1:   3e449d9f54e4f9762f67cad4e25300abd1f1d0e6
Sha256: e1418c6edc15fc73a4c3d66f805568f51afc6e7d0ec69c389f601f4b449dac63
                                        
                                            GET /market-avatars/3022/3022_4EBA3A_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: n+aPLZ2cETIXh74hWEhMyaha/l9LsFKOOfFyBYZFpbKjGImLrvCABxLouu00/a3CdEo9vil6Na4=
x-amz-request-id: 3E82E67Z8035GDTG
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:16:20 GMT
etag: "e474d226d6fa83f2819459c9332bb6ce"
x-amz-meta-sha256: fd19066c54e2e6643409ef378db9d0940fdf1367981026c8e7bd8d45ee86f1f9
x-amz-meta-s3b-last-modified: 20210514T174138Z
x-amz-version-id: fu12pVsfppdDnzS7HyYFvdsrLHiGPNDy
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1469
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (722)
Size:   1469
Md5:    42baba1f7eb946e30885bb8ff7c6d7c4
Sha1:   2dc53c8897bc5099c1336316753eff46345c2754
Sha256: 89cb1691e728ae213347193c66e979d8322573c82892d47e8930ba7ca7f3f8b2
                                        
                                            GET /others/logger/logger.js HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 06 Jul 2022 10:03:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2285
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5055), with no line terminators
Size:   2285
Md5:    f620bec033fe844135374191b331937d
Sha1:   ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
Sha256: c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
                                        
                                            GET /market-avatars/3029/3029_4EBA3A_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: YPZrMlfvR3ujAUEwb82O1B57RYKFF1PGZcqM24Yt1ZkxQK9No81LfmC/1qn4AHdBWT0gfiIhvoE=
x-amz-request-id: 8QNPRM259CBBNYHV
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:16:24 GMT
etag: "36c1bc61bf82b1177958af1b1735e82f"
x-amz-meta-sha256: c23cabda9648d66dea8e61308ab39d54def327c53f2569cb746cd5da3b537737
x-amz-meta-s3b-last-modified: 20210514T180220Z
x-amz-version-id: XzeYk4SF2ASN07t3pcb5YaE93.ojeP7B
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1507
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (789)
Size:   1507
Md5:    84f2f352c53b290f75427b41e6ff3624
Sha1:   ac6e54d492b7ddd9d5a0b23a7ccf7cf5e17067a4
Sha256: 215ecf52d658d2a29d0c2b3ded763ea9540669b27bfc88e34ee84c355f0d42fe
                                        
                                            GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Size:   31960
Md5:    4a61fe67108ddbb01a2ceaf3687ba30e
Sha1:   3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
Sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6910
Expires: Wed, 06 Jul 2022 11:54:08 GMT
Date: Wed, 06 Jul 2022 09:58:58 GMT
Connection: keep-alive

                                        
                                            GET /market-avatars/3142/3142_429B54_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: FxdsdtN0ctjYg9UgKqbfJDqJwmTduz26bKR8e4Vjvcx/AIHsRlvuEi2Xi3W1jnzUciaeoC87bWo=
x-amz-request-id: SBRHECN8SX9GVSPH
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:15 GMT
etag: "b789c478ffef07ab644cfd24a7fe768e"
x-amz-meta-sha256: 3376b9c274746043c27304940aad02c9e020464948f30cb4c716591887c11853
x-amz-meta-s3b-last-modified: 20210515T061848Z
x-amz-version-id: ucC06TsMLvFexzBQZ1efLCzwWCkV98U0
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2284
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3448)
Size:   2284
Md5:    6d9300e179def263fafeb50a043329f6
Sha1:   4f2c5b08a4d8b2c8773f77b378144b07d2fa3e70
Sha256: 58316d727e84c215c596f88d18ea714f036aaf86aaed2efa56101b828bcbd2b4
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6910
Expires: Wed, 06 Jul 2022 11:54:08 GMT
Date: Wed, 06 Jul 2022 09:58:58 GMT
Connection: keep-alive

                                        
                                            GET /market-avatars/3152/3152_429B54_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: H2XoLhwcgVxDuQmAgiX/mwy8bV7b1YqArO+RbkLbD3tWZQh1qikuNXl4NpPeLzpPs/lXkcrbdoE=
x-amz-request-id: KB8MKRV2SRPFNPEM
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:22 GMT
etag: "80db8513578bd35199696767dd20f159"
x-amz-meta-sha256: a1b9e7109ffc8986a15a12b8d47bc2c67416b944c92fd5ec40836cbf2e9eaf73
x-amz-meta-s3b-last-modified: 20210515T062426Z
x-amz-version-id: JvnkHNA7PhVbrWG_9Od6eg7GJ1W8eAxe
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2997
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3448)
Size:   2997
Md5:    28dcdb9d0d8a2b97e5f6f799c5c6efbc
Sha1:   cd94542dcbaea2627a8a5ad80d29a03db4bece3f
Sha256: 997799c7da52e9cf2a50b752a85a6ee9b180196fa8cf58c3e13950e8d5661396
                                        
                                            GET /market-avatars/3179/3179_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: K5jCU6Pue3IZY2oEj/blbMgR28NjGQEFWIcMVHQ7CnW0jJWLbDKrVkf6oSsySG++y/YkHQp6GgE=
x-amz-request-id: 5DPPQKDW27EVV23X
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:39 GMT
etag: "0166499f8232799e9d155e25574e31cb"
x-amz-meta-sha256: 5f3e6879f712a69962c3bd7b347721d93a258ebef2b9a49fba94356bb554780d
x-amz-meta-s3b-last-modified: 20210515T072320Z
x-amz-version-id: BWienIlESMaIaPv5JS.xPWgrmHdHQrwW
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 4417
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2207)
Size:   4417
Md5:    fb35567b71e9caca0688a37e670814c3
Sha1:   145cff38b19ec60cc64845ccb5f868c772f479fc
Sha256: c8620e18369e9bd1092829605e634cfcc36ea98cd318fc9a6265723f9b9354b2
                                        
                                            GET /market-avatars/100032/100032_3579F7_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: FSVFeOJc1A1yKTC9ke5P/rv1lG+rYwwaIo1xrZEdBQZD1nPJAh3snwMiabgHqIPcim2RJyIiwmk=
x-amz-request-id: 4BN64ZFXVVCDVKZA
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:27 GMT
etag: "dadfed9c903ebe88d46276e30d2a5d5e"
x-amz-meta-sha256: f3760f1edcaa3573a0bed2ae403fec89dd15f5c8be18957d2f92fcfb1dd86a36
x-amz-meta-s3b-last-modified: 20210607T133026Z
x-amz-version-id: EUGhqA.1xlm24u_w8Hi62uSL3WH20l7d
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1186
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2181)
Size:   1186
Md5:    a1863b76df450bab094ae9ce24a33532
Sha1:   80bc79647e0aeff792f5a606554f475b175cb07f
Sha256: 5f761354cf7391338bf999227c9b6e1b2ac0814551c94283a1920845ed7f8eac
                                        
                                            GET /market-avatars/3105/3105_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: Q6ZfbBFxQk4v98mYkyJT7V6YqXz9j8onDBLQ1hSJOaFTDL0Zk8ndPYbjgVLNswko3RLu5xgQ4ZI=
x-amz-request-id: P75ZRN35K9HNQ5MA
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:16:51 GMT
etag: "eabdd71af0ab6498817d0b64a8303a57"
x-amz-meta-sha256: b5735e9a515e90ed11098ca1c0c0fc09c9686a7fe6b4570b7a8a33b6c3837bf3
x-amz-meta-s3b-last-modified: 20210514T193858Z
x-amz-version-id: _d4KkQGQDkOt389R5c_3zeKF8wvhMqCf
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2926
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1473)
Size:   2926
Md5:    cdc4996bff713a203a36ceea7f71539e
Sha1:   6f662a8715c9bb146430d529b9369635b5b65102
Sha256: 3667b8e8ee6adca64d45d622378dc3762456f696e832c0173b8d33055a90e5ec
                                        
                                            GET /market-avatars/3140/3140_429B54_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: dOyz9QaMbyWp7LeZhWGQ4U3gqXwVPt9hSAECa4kgpaUHHZVK+tjvKmiCUKCyA6uXe3bDN17LopY=
x-amz-request-id: CJTDK0JG8R8E4D2H
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:14 GMT
etag: "655eb8cd2615c209ef28bd5d0e9ccc3e"
x-amz-meta-sha256: 8ea92c785642857751b41f59644281409478b1bac43ad7c870b2f52603136df3
x-amz-meta-s3b-last-modified: 20210515T061736Z
x-amz-version-id: IAtsKz3WOg0W0Igpkmwiob6upTahp9U4
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2769
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3448)
Size:   2769
Md5:    ef7263268396a6eb322c8dbd28db1925
Sha1:   27a5f97a469571a91152de353784f4b84de553fe
Sha256: 538688f811bdae28b83d4d3d09fdefb71a3bdef2ec470edad01bb7f040a6e51a
                                        
                                            GET /market-avatars/100023/100023_8ACE2D_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: //yfx4znC/s7Lj0Fl7mXleeXrSoCNf519rzW/oytoo/YHVR9voq221wAsz5y7mXVJjmj/NeeGi4=
x-amz-request-id: ER1WZ7MWHFGNBKRW
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:20 GMT
etag: "42155b5cd506c13c3c3b654557ef67b6"
x-amz-meta-sha256: 771a27fb3db264329e37393425e99857275176c9d073abb23fdde23a457ac3aa
x-amz-meta-s3b-last-modified: 20210607T132506Z
x-amz-version-id: NJ5jM7CRhKtbOqODJlNFAgF__hD6oNOK
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 492
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   492
Md5:    25a594535882d6a9a3492a37aa47244e
Sha1:   59caa37b7079385db8a11b921bfcc00db74f3254
Sha256: 11b19db9b2fa79b2ad99d59c7028f8b9587cdedf7e89ae6dab844425a033a2c4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb43d6c1-9277-41c7-a6a2-7ed481cb6008.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6262
x-amzn-requestid: 22aedc9c-1363-4dad-921c-d1d9abc9b47a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BWNE7QoAMFtkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5a-3d6ba96b447d35f50209d4e2;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1-Ua3C7qW9jiOyHc18DVoXl5IXJY8x5BRoZIpQmAW80sm8D6NvOkWQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:51:05 GMT
etag: "516324380a247cd6fd356168b23603d2e63da2f2"
content-type: image/jpeg
age: 43673
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6262
Md5:    405e2c36af93466ec54a46cc09c98a34
Sha1:   516324380a247cd6fd356168b23603d2e63da2f2
Sha256: ab63d378c66b22b900a4c853c124e91273a730df53e0e6b7868c3f9102993b55
                                        
                                            GET /market-avatars/100020/100020_2C2C2C_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: hDuLbOJQGdWmUWQwkRcCUevIrrr/D5ealk6ZigFGvw3F+M2zW1sLL9XyAE+gPEboQQ9Se+qIMb8=
x-amz-request-id: CJ0B7JRQG89EWP82
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:48 GMT
etag: "49642006f12ff0d7e10ffaa2065e175f"
x-amz-meta-sha256: fcec4b9d8166cab4b3eda00cdec86c6157f66f25909ba5a49096946d01a7c5df
x-amz-meta-s3b-last-modified: 20210607T132320Z
x-amz-version-id: kxawrSb1iXvVfyCFV14PV3OVXaP2bzTr
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 705
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1135)
Size:   705
Md5:    ab3eda153f7d877863bcd6d46e466ce0
Sha1:   2b734feeff0b3d60370b5b19f1d6164a7ae2948f
Sha256: faa305389088a06c0ef351930a2ed3452acbcddbbf79092fddb757e7b88619bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc072e61d-3b9b-4f2d-acc8-d26a8adf968d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12165
x-amzn-requestid: 796ca673-2ab5-4bd9-b4f1-d2c250c34e3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BWXH-HoAMFhkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5b-51c7abd54a523a1f479a7d5b;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:35 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _-zkK-6DIfDVDzXmTOTigF2tM4pfh19MReGO_X26eRhLNFGL3Jc9Aw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:29 GMT
age: 43709
etag: "604b4cc5d50ca494df1de2ab8baa486da20d1e4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12165
Md5:    29949330f4dc3b69747d5534e745fde3
Sha1:   604b4cc5d50ca494df1de2ab8baa486da20d1e4e
Sha256: b98faa2080573124f84254a2f87df3631f257e9a040cf34ebe267a1784d4b954
                                        
                                            GET /market-avatars/3146/3146_429B54_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: m7kJSUdZdEUZH6MmV//hfWsMGD3pv/2qBuoBwDX3wFTRd0Zk8+BaFiKuNot8n1LGJqLw8ijQFEs=
x-amz-request-id: JB57T9FWBF26C5XE
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:18 GMT
etag: "1ea92a8a6cfc595b464cf3a502935458"
x-amz-meta-sha256: 9636f958562c0216029a0df62526f96c7dd58888eb8a0e99532ae652f3c904ff
x-amz-meta-s3b-last-modified: 20210515T062102Z
x-amz-version-id: mG_Mw1j3qW61lvEEsakAXBsXd3aoXjIA
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2382
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3448)
Size:   2382
Md5:    f8dfff84fcd7932dbfb5cb2ac15062d8
Sha1:   854dcfbb31b3db810ea7da2b6e709d7188d44360
Sha256: c51764dd0a0fe26f1868cf409c1a6f82025bdb98b046f88380876553c6c7b2c8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7117
x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BW8HnbIAMFkrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:52:41 GMT
age: 43577
etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7117
Md5:    b4ead2bdcbc998a5685d65a26e40ce1a
Sha1:   01efbdf6b2ab79332bf6a22d36472e294732aa17
Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48
                                        
                                            GET /market-avatars/3178/3178_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: lhrQ5ZIYAb+yXOgUXEAypb5nDaW+LXpGg8p6pMn/Rskrm8LaYbFdnRQYAgcOwQ8B4HOXgSHOq1g=
x-amz-request-id: 2H2RQXEC4AZ07S8X
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:39 GMT
etag: "633363d4fa656b4fe7bc193e0e5f6dcc"
x-amz-meta-sha256: fba4968a3b8443da258491f010cb785d865dc556136c78cb64aba31ee0bb3e78
x-amz-meta-s3b-last-modified: 20210515T072250Z
x-amz-version-id: UZSQlsD6B1CGoc7XMuxzuoUZnqD1fJM4
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 4076
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1420)
Size:   4076
Md5:    843b2e62de3fc8ad32e585156fad157a
Sha1:   54012ea3daafedb870daff665656eba3172f212c
Sha256: 15a783f2da544f9dde5d43aee7b7480f9166a16f96546c6bac00c614eda5afd9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3138a2a5-6ce8-4465-8dff-7307ebdd802f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 13276
x-amzn-requestid: 33881d12-a991-437c-90a2-4c00d31642b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UUXHsFwoIAMFqkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b80564-15ff67dd1eee173c5730daf4;Sampled=0
x-amzn-remapped-date: Sun, 26 Jun 2022 07:06:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jqKUpQrSzmKObwwVi8gqnNdDGPhy70oWIIQ8xtK_1BXQIBhTdB1mow==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 04:37:49 GMT
age: 19269
etag: "7e5a550bbbac49269cae75ce9bb92e8fdf77b086"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13276
Md5:    95aa230a6b516a252f3815c586803c15
Sha1:   7e5a550bbbac49269cae75ce9bb92e8fdf77b086
Sha256: fc3c49de063a4e13c64e799664fa6c7ccf6e42aac5973aaf1af2b7689338f3b9
                                        
                                            GET /market-avatars/1108/1108_2360A5_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: FYouZy28QyfJSVQhLOfoNPFGQ3nYbf2i5fkmSVJZpqKG0U1Va0wBZDunSf3hB5Ej8z9B9BKsjKQ=
x-amz-request-id: 3KK5HNHSKT1K1RTE
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:39:49 GMT
etag: "ad2ad9c182cc0ea5a6113d323b1a8aa5"
x-amz-meta-sha256: c837058bdc93388a97662a9b431caa6939f81c2002bed7bd7c9581d97b26149e
x-amz-meta-s3b-last-modified: 20210518T103336Z
x-amz-version-id: DzLYU4EEKKwUuYo400h5c0bp0j3Mwuj8
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 666
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (327)
Size:   666
Md5:    ad2ad9c182cc0ea5a6113d323b1a8aa5
Sha1:   346b0d711f476bf9377e4764d11b020916808756
Sha256: c837058bdc93388a97662a9b431caa6939f81c2002bed7bd7c9581d97b26149e
                                        
                                            GET /market-avatars/3181/3181_429B54_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: bDsIGkmrJMbJJVxjiQJWbyhnW+aOR4IgKaacpQVAjPN7S0jAIh2jYfqFN+iUkWgwypi2r39SC8Q=
x-amz-request-id: QF7XC8M5FSYQJ8VP
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:17:41 GMT
etag: "67cf7d5584f80d17f8ce8d11f73e3a63"
x-amz-meta-sha256: e5898222a25129660ca6335c36081e48fd4fae6dc48a9c42b5a33ff8b391b8e6
x-amz-meta-s3b-last-modified: 20210515T072524Z
x-amz-version-id: 6wypUiYkdoVnZIVcJDzKpzLzawEZp28k
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 5666
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3181)
Size:   5666
Md5:    fd93e1ad84d169d57e066adcd0ad201a
Sha1:   4d52d44278d32febd49294ec2f838b0cc4ce74f7
Sha256: 63c56a4a3d2e0d1ea71f302f723f3989599d27426ac0bf5ec70f20e6c0b0625c
                                        
                                            GET /market-avatars/1048/1048_22B6F0_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: AoPscdwXMC4h999Rh9oDPsG4Uc4ptLJRWQZnMCvYc+HQZGio3yHCgNuYSSFhrdQX9GCOcBNvD/U=
x-amz-request-id: EEM0YX60QA55TZJ0
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:52:33 GMT
etag: "76f31940886e6640cdfd185cdc1148fe"
x-amz-meta-sha256: 60d169aa7d804c46b9d45e22a0be8e8b21a1996db15170f7c6eb37c880edf11b
x-amz-meta-s3b-last-modified: 20210518T103902Z
x-amz-version-id: h6k2mHO4I.Oz4E07WhMVjYpxQlZ.6Jot
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 901
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693)
Size:   901
Md5:    29e34aa752ad76a5d2dc73b8940bd152
Sha1:   4c2e78b0904e5154b7d157970b36917a9d92c803
Sha256: 8a69e76ad07e14b44bf368ffa5f297c8022b3dfc3320332b6d039bf9bb52db08
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb82ec83-887b-4050-91d9-57a545edfc43.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6527
x-amzn-requestid: 391d747d-26bd-4303-bccb-fb510b7788e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BHqGLpoAMF8Cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4aefd-49710428275253eb6c36832f;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:37:01 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uL6YaW91qzBRv40cuvLT4QVncM9UT8NDM1XDDSLIJohj4uqqvwlmPA==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:37:02 GMT
etag: "5320ab2d511bcf3b66328f71d2cecf6beecd8139"
content-type: image/jpeg
age: 44516
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6527
Md5:    c74b2cd74c712ef13e74569a07f963ef
Sha1:   5320ab2d511bcf3b66328f71d2cecf6beecd8139
Sha256: 90498a0e0e346788001a46a6b505805ba91861505fd69cab53486fa66c50eadb
                                        
                                            GET /market-avatars/1123/1123_34E0A1_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: R188c3kyZstNAkBBytd9NukM7p68v2GiymytpwvKYtkYNodpACzvzAMHg+IJjkAI8MGJ6HMuIGU=
x-amz-request-id: H4V4CSX76NFQ129W
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:39:51 GMT
etag: "3e5d96ecd697b6a59d0cd57f6e37cf41"
x-amz-meta-sha256: 6b79130ae1afc6cd4e31c2929bd4b105649fe127a98b5e54874e123251466e03
x-amz-meta-s3b-last-modified: 20210518T103332Z
x-amz-version-id: pf1ie6j1huC.KsTIYg98iTc0Yrlgh83Z
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1042
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1119)
Size:   1042
Md5:    f21da0b65b9581797ccf8d636a5f01cb
Sha1:   280cd54c57cc00ac1aa8bdce806a234fce0177e7
Sha256: d45b00b6ad213cc2dce94888e7a1c95f9b4e8a7fcc6ba0c07e8032039d8b3aab
                                        
                                            GET /market-avatars/100005/100005_366099_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: g+xDiSgBpqwodPxunermakVGR79bqhgM+9cb2/itvRph62OaBVhoDmgdP1bEJ75sC+gjhZv+itw=
x-amz-request-id: Z8G6E4TJ26V3MEAT
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:44 GMT
etag: "0db0c7636580cf4c17b2f4e43212c4b5"
x-amz-meta-sha256: 030b7465f8080d2012aac2a6f54a5dde3e6055b419694693d70e00b61420b799
x-amz-meta-s3b-last-modified: 20210607T131836Z
x-amz-version-id: GkM0a36_OLX9lNnBll1I5kHGyRs6uUyh
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 431
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   431
Md5:    0db0c7636580cf4c17b2f4e43212c4b5
Sha1:   5154f429ad8e181ef59f9f166ae50916a8dc7376
Sha256: 030b7465f8080d2012aac2a6f54a5dde3e6055b419694693d70e00b61420b799
                                        
                                            GET /market-avatars/1478/1478_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: 9gzJ+o4lYre5KKzrr20k9/uth4rXS29cqSOhuRfZiK6xcRexg0WPj68655BOl2O+kSnYmIvxrKuJNjbzMFtGSg==
x-amz-request-id: 0P8JMN8A6BKKC9A8
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:53:48 GMT
etag: "8271874a1a3212ff020f5e570ab21094"
x-amz-meta-sha256: 718e9d99667da8653a9c5c6b042743abeb2404e15c3bde7cc10e8bc8c683bf60
x-amz-meta-s3b-last-modified: 20210518T103902Z
x-amz-version-id: xHwDNzSY96HGHNrhKm7rm2SH9H0I_QuZ
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 943
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (655)
Size:   943
Md5:    e2d6123f1c39c944534ee7bf6018890c
Sha1:   81634884846cd4950cb3dd1ff79945d7b6e92991
Sha256: aabe9397a82046b5bc3b3cdea288ee58636cda8a1c5d74499774425e3a33f2ec
                                        
                                            GET /market-avatars/1133/1133_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: IPlon62mhcnfunDRWiC57/25aHBwEY8Kjgq564XrT6vsaITt4COvlinueUwYYnLGXHvsBXwBStA=
x-amz-request-id: RE38FYC8R8APZWCX
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:39:56 GMT
etag: "8a52132757fa58934ec88f14def25e8c"
x-amz-meta-sha256: 7d0a9a4e45c06711dec86b51a8aa41b0e31139f8c29c8c37fba1bcccd67a13e5
x-amz-meta-s3b-last-modified: 20210518T103438Z
x-amz-version-id: VtTI4H_Klr0x_gMmN77lKYsShlnsKBvK
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1855
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (756)
Size:   1855
Md5:    f3de72f833d739d3be68d9c4c07772d9
Sha1:   af45894092b6ab2c5d0d4bcd41dbdd73c6773f5b
Sha256: 04ef7721adce35db60b2a3dcb07e881d364ca48a28cc00353f4be53fabd801d0
                                        
                                            GET /cache1/hp/v_248/js/waypoints.min.js HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: OckOkHKZoBobumYEJm2trhUTBa4Wp0maUM2+NnGZcrD0JW/sdZ+JztmOeWEER0D2egTYYx7SwsM=
x-amz-request-id: 2YEB4TBQCX5M544P
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:05 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: dUsK87zvhW_..3lgzpqtaH1lP.ubIUm_
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 2635
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8887), with no line terminators
Size:   2635
Md5:    1d2137aea2d4a9fca68a7b135e2cb9f3
Sha1:   e97ca29d385352fc286f1711bbdc45584161a316
Sha256: ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
                                        
                                            GET /market-avatars/1377/1377_E20000_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: 1wBQMcvD/8reVwwD6gqso44O7eowJuaZtECSuWG6v2kkTPxIZdzQicL5L11/mGrCUG2K7fUb9rE=
x-amz-request-id: K8R93QJPAXTN34VA
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:40:14 GMT
etag: "fa9435e0fb53b52fda05bf157f7294c1"
x-amz-meta-sha256: a07f229c1d1953c2ffd01a9cdc187f22d9bbb472f4ebb55ac66028b3f7b6a36c
x-amz-meta-s3b-last-modified: 20210518T103430Z
x-amz-version-id: nTFZVLDW1F0oQyK.PhZtIwWszqEFGeDJ
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1214
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2072)
Size:   1214
Md5:    14ae9792806342146ac517552d11ae14
Sha1:   f74e1ab1a6052405da5ef5d8e1e3984dae9a4442
Sha256: 3e5aa493941f19f357332890889b107442eff2493dd44d9d2b4f137f0676c23c
                                        
                                            GET /cache1/hp/v_248/js/slick.min.js HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: GY+a8G/q/oFYQGUfWLrVk7HbBL/thrwi6Z6eKKUlSrsADwa36loa8MBDkA1N0qQSkcuGGNhV+Kk=
x-amz-request-id: 2YED1P1ZCAV5QW8X
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:02 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: BgFKRo7i3GBqVsUVKs7hUP3qCTHEb78H
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 9568
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32034), with CRLF line terminators
Size:   9568
Md5:    17232e2fe3e81d95e6f1cb7c4d5b9e57
Sha1:   510e1569ab0187ef5712a7630d673536e8c519ac
Sha256: 4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
                                        
                                            GET /market-avatars/100038/100038_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: dU3Q9sIqGzAGSfsjDqtWuunVwFebqFdOjlpUAoT7cYTS1PULs3PcEFT/5VvgyFVXQviLdLZJzBA=
x-amz-request-id: TY0PGRHV53ATEWRB
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:31 GMT
etag: "06fb87babd0cee2a432a7c4f4c31c362"
x-amz-meta-sha256: 3fa27a9f9c5a8e77580a542bd36c66e972127fd7133b12b4173dfc83dbea4e70
x-amz-meta-s3b-last-modified: 20210607T133458Z
x-amz-version-id: XEdhPMRTpGy7QZOf92i81gjKI2a0aq1W
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 534
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   534
Md5:    06fb87babd0cee2a432a7c4f4c31c362
Sha1:   0e7f74e62668974a73680d410edc23ffe128bfe4
Sha256: 3fa27a9f9c5a8e77580a542bd36c66e972127fd7133b12b4173dfc83dbea4e70
                                        
                                            GET /cache1/hp/v_248/js/jquery-3.5.1.min.js HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: NSI1N7djj4AQuPCOBbNEMNvnbIZEPyXhCTQkUrXksbIx7OgodNA+s6Ze1iAhPx3kNLqj+q9YZis=
x-amz-request-id: 2YE55EPGE7HFWRWC
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:55:52 GMT
etag: "dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-meta-sha256: f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: 1syhxQkm0Fj4EcSG9xnkwvIFOGlO3mKR
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 30950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30950
Md5:    e96fc85ce0a9070920b87b1072dd9e1d
Sha1:   afd9871c95caf6a26ae56e8c661789d00c510162
Sha256: 43e3ac1190912814c4b67ca3512c14745d1b41ce4740d3df73ead62561ca31dd
                                        
                                            GET /market-avatars/100001/100001_2C2C2C_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: hR1WVKzUaQuFhwxSwzys4uYj21Fesk9L5RVj6aZcZ6NuDyrN5AerS8yATulGECWI0+5nushgXG0=
x-amz-request-id: 6WV9KXSXGR9DWQST
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Jun 2021 06:53:38 GMT
etag: "735e3e526d53434d484e332b04a8c20b"
x-amz-meta-sha256: 0abd00fc9764b5e19fcfe74a5cfe32d3395977b9fb516c7cc9269adde8052263
x-amz-meta-s3b-last-modified: 20210621T123856Z
x-amz-version-id: bnJZlGaMZvToUQbUMpXO_5rIC4a_tl6r
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 394
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   394
Md5:    89252c6accf1452292c50032e83516f6
Sha1:   0f35a4495b9fc46fc072b0116d96dc743624e1ea
Sha256: 0d13ceccec49459dfb7933315c3e0f05c08692ce2157db758aa5aa3fdb437432
                                        
                                            GET /market-avatars/100002/100002_F1B033_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: dbcO/1RiOaqQN/XzaOmPx95Cc3mT1oQUYmpTKZqOzPTdJg9wdh5YUWSn0wXNXjK2YxWflxFNySM=
x-amz-request-id: B9WS954ABHTVCFFQ
x-amz-replication-status: COMPLETED
last-modified: Thu, 25 Nov 2021 12:49:47 GMT
etag: "e373d88961c9758d156149c89fb31b93"
x-amz-meta-sha256: 8ab38ba04e986d9a551381470099eed38135e13a8407d77429e2486e4a511d60
x-amz-meta-s3b-last-modified: 20211125T124715Z
x-amz-version-id: mJQZzvKwqJlfLuZc9.FKHoUlq_.aJVvN
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 1129
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1645)
Size:   1129
Md5:    3cfa1ff17faa0f24912e3fb502bb58f2
Sha1:   54a24f0ac74f27d9894a1853d6194d03ba23576d
Sha256: 5039999caa8d8ceca75140dd045f67fe08df6862684e4ab819c641695859c9e0
                                        
                                            GET /market-avatars/100028/100028_8F71D0_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: x0SKM2fEpHQsR4kp0BPNn/SyFq234oX6eQWq+y/u02rfvH6VIPGPVr8Sjg8s1NoldOs9xHTgJ7U=
x-amz-request-id: 0PPBQRH4PP1KGA5P
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Jun 2021 06:53:40 GMT
etag: "55eb1d577d7713b0a76869b30deb50e4"
x-amz-meta-sha256: 3a0ed8ad8676836f6a41f5b42e67e7b76e50808d1b706e3d4f33fd6c5522f917
x-amz-meta-s3b-last-modified: 20210621T123836Z
x-amz-version-id: pZRpAEkJ_VFnbR1f8aP8m5QrWrl.MGjk
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 706
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (523)
Size:   706
Md5:    a1f66548ccc506f4bb555eb07f877fd1
Sha1:   c27a2c838e66855dc9af18b8749ce43bd5536d81
Sha256: 8d9bbd2efaf478179dd99dd29b0f83dee675601f767a11291f75f51ab7d9923d
                                        
                                            GET /market-avatars/1483/1483_F7F7F7_2C2C2C.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: Jzy0J3HgGISwxEahDT95SGd2o0eIRgjQyTlXjIUzvGcsH7Aj1iXP0l9XtPT+EcFSCt5CBQYrC0I=
x-amz-request-id: 4D8B1M1A44WXH28Z
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:53:51 GMT
etag: "cf100a2639d3520bc6cd852d7358e0d4"
x-amz-meta-sha256: 9d4712d3ef749499f8794dbeaefad16b7049bdee2c17ceb34ab883536d71f731
x-amz-meta-s3b-last-modified: 20210518T103900Z
x-amz-version-id: aj2yzN6F27bBMqC_V_K48yngAip0VYYP
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
content-length: 2421
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (873)
Size:   2421
Md5:    25c75fdba97be4608d1e9c201449a310
Sha1:   1d53217a9b6442fafb4dbc5b409efdbce03820aa
Sha256: 4040f7ad8fb5e4c8fb2b05f4a1f7e3b299497f8479a3d836dbbd2d7670695c25
                                        
                                            GET /market-avatars/100040/100040_2A5ADA_F7F7F7.svg HTTP/1.1 
Host: etoro-cdn.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: X6FRvtQiY9Qavuz/7f7M6kPMjOamMv1xQ2TBr9MYqjEbdOdbMiKNjWby1XjpyE7QOQLfVlX/5Ic=
x-amz-request-id: Z67B3C7F1PMD1JSG
x-amz-replication-status: COMPLETED
last-modified: Tue, 08 Jun 2021 07:08:33 GMT
etag: "8a840090c74f0a5dcabe296fecb7d32b"
x-amz-meta-sha256: 46bb9866679c7bbd69c713d3c9cb766072dec6d6beb3ba6c9b6f272d981fa95f
x-amz-meta-s3b-last-modified: 20210607T133706Z
x-amz-version-id: IENE7vv38g0icaAAWXTS6RBT6gE733H1
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 489
cache-control: max-age=86400
expires: Thu, 07 Jul 2022 09:58:58 GMT
date: Wed, 06 Jul 2022 09:58:58 GMT
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (381)
Size:   489
Md5:    8a840090c74f0a5dcabe296fecb7d32b
Sha1:   69f7d1d3dfb66ab2e747859853e62e4d49f6251e
Sha256: 46bb9866679c7bbd69c713d3c9cb766072dec6d6beb3ba6c9b6f272d981fa95f
                                        
                                            GET /cache1/hp/v_248/images/flags-hd.png HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: ocuTcE5NaQBgx64fZiPFSkqK+pQy8A2aeDgJrImVQeowWLs1Ly20QRpgRMxizwFai8IymSNsFaA=
x-amz-request-id: 2YE7BMAW7JKGAB7X
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:51:55 GMT
etag: "226cfdeda019a405efdd10a635cf7ad4"
x-amz-meta-sha256: a68648205eb965777a06a762aca576462cb50091a8e3c5e87f6bdfe75e3e0367
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: P7B4tvuckoHMrJpxJQGl0sWrNMxT_.8T
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 13807
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 792 x 26, 8-bit/color RGB, non-interlaced\012- data
Size:   13807
Md5:    226cfdeda019a405efdd10a635cf7ad4
Sha1:   3bb451d83f9f7c8a43c1ddef201559fc94a7e4b8
Sha256: a68648205eb965777a06a762aca576462cb50091a8e3c5e87f6bdfe75e3e0367
                                        
                                            POST /g/collect?v=2&tid=G-E9QBCJNBNS&gtm=2oe6t0&_p=346503234&_z=ccd.v9B&cid=1145701221.1657101538&ul=en-us&sr=1280x1024&_s=1&sid=1657101538&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D16571015371532635802277324906788854&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
                                        
access-control-allow-origin: null
date: Wed, 06 Jul 2022 09:58:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb156bf40-83c5-4d7e-a04a-93f719d05ead.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8607
x-amzn-requestid: b3b8af2d-9d05-463e-a72d-86f349bca2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UwukvER9IAMFViA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c35e1e-7e4ea25c0c2e8e3230690009;Sampled=0
x-amzn-remapped-date: Mon, 04 Jul 2022 21:39:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I2frUxaNWiIM6DVT8IlYiA9u7zqOTiEQjQ3kgzL_nn0VX6-PR6iTzQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 22:04:44 GMT
age: 42854
etag: "00c409c96837ba3e01a486f245fef579df2ef290"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12028, version 1.0\012- data
Size:   12028
Md5:    ee570da55652b90a2222880a1ece7323
Sha1:   d9a81b65239041b42c6aed22f5809797f0574c1e
Sha256: 26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
                                        
                                            GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Size:   31636
Md5:    e20f6e1c0681c07f69d37c428c0684d3
Sha1:   4aa36ecd12f2e7d3592807a0a3879914252faeb5
Sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
                                        
                                            GET /cache1/hp/v_248/js/script.min.js?v=1656494057 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: STYDgRxZjojcGgt7+nW8OG3lMcMXf0l2Z4f6ONPe0C1dhq0XuuVVMXBTY+IJ7u5rR7CTMz9zeCY=
x-amz-request-id: 2YE03S84BGMRNHKP
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:00 GMT
etag: "1170746a60355c92a26961bc21ac73d3"
x-amz-meta-sha256: 91e0461f022cee62b929fdc21529a10d9a20cb8dfce1b16f2e368ea47366ffbe
x-amz-meta-s3b-last-modified: 20220620T151045Z
x-amz-version-id: nwoVopxPh0sug44ToLSwQfAUjnUJgC5.
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   85047
Md5:    a49593727f7a4e428bb5292a001419a2
Sha1:   d49854414d36b0bd0f9fca24584a295980459d36
Sha256: 9998b4e756283f59c123ea23dc6d53a093d49a5f61bffd4bc7d887e2048301bf
                                        
                                            GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Size:   11992
Md5:    1f385d1ea2e1c06cda506bafc17a4a94
Sha1:   0dc0ebf0502018976383091908379054b5a3cfed
Sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
                                        
                                            GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Size:   31920
Md5:    db85a0ddc6f6973df4bc98a1b2ed9d65
Sha1:   c6bba41edc8501b76aed9bff58597edef1c2502f
Sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3679
Cache-Control: max-age=89612
Date: Wed, 06 Jul 2022 09:58:59 GMT
Etag: "62c40991-1d7"
Expires: Thu, 07 Jul 2022 10:52:31 GMT
Last-Modified: Tue, 05 Jul 2022 09:51:13 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /cache1/hp/v_248/videos/sb-mobile.mp4 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 206 Partial Content
                                        
x-amz-id-2: Bzft3pOQfykAQVF0aPBRLI42kWiczSCKRcjypX2uYPnAMe2TA/gNtBHb+RilnsnvBs0chgBTarU=
x-amz-request-id: 2YE15YJ9D4F61T71
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:14 GMT
etag: "d9161967408842c4d0f3b37ddde3b093"
x-amz-meta-sha256: 0b27cf405b4cf29f64b7de3d3a6f2061b79949149c2b52492ccc0807343b8eef
x-amz-meta-s3b-last-modified: 20220312T200401Z
x-amz-version-id: 1I_gUzCke9Cx7spTazqcKAJ1xd8n1mXc
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-range: bytes 0-593672/593673
content-length: 593673
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   593673
Md5:    d9161967408842c4d0f3b37ddde3b093
Sha1:   6859d1d8d8756923e2d754602aeddc8a65b2efe2
Sha256: 0b27cf405b4cf29f64b7de3d3a6f2061b79949149c2b52492ccc0807343b8eef
                                        
                                            GET /cache1/hp/v_248/videos/sb-desktop.mp4 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 206 Partial Content
                                        
x-amz-id-2: 314V6JLdIjF1up7J5tRF7wlu7BGGZgwPcMyZ0WjY3bcZ2aIKwszemLZcq8xwcOe3EaXbfHe1qt8=
x-amz-request-id: 2YEBZ1TN320C8XCW
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:14 GMT
etag: "b573a279a9387937697eb9cfe053b82f"
x-amz-meta-sha256: a939c81b227373efe80c273375f44e64d2d416ec7dd14efbb79ee0e04b7109fb
x-amz-meta-s3b-last-modified: 20220312T200401Z
x-amz-version-id: or2uTdjHNxaWgy3_2D.xiMlmKQSq0nK.
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-range: bytes 0-2271887/2271888
content-length: 2271888
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   2271888
Md5:    b573a279a9387937697eb9cfe053b82f
Sha1:   0dcd487d9decc4a13090884af1fded4810f0c0e4
Sha256: a939c81b227373efe80c273375f44e64d2d416ec7dd14efbb79ee0e04b7109fb
                                        
                                            GET /cache1/hp/v_248/videos/sb-desktop.mp4 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2260992-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 206 Partial Content
                                        
x-amz-id-2: 314V6JLdIjF1up7J5tRF7wlu7BGGZgwPcMyZ0WjY3bcZ2aIKwszemLZcq8xwcOe3EaXbfHe1qt8=
x-amz-request-id: 2YEBZ1TN320C8XCW
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:56:14 GMT
etag: "b573a279a9387937697eb9cfe053b82f"
x-amz-meta-sha256: a939c81b227373efe80c273375f44e64d2d416ec7dd14efbb79ee0e04b7109fb
x-amz-meta-s3b-last-modified: 20220312T200401Z
x-amz-version-id: or2uTdjHNxaWgy3_2D.xiMlmKQSq0nK.
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-range: bytes 2260992-2271887/2271888
content-length: 10896
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10896
Md5:    914039ebaa3dacf0148070e960d1d75d
Sha1:   1d3989be5df1d876ce6e5e8fe9a9a75fd799c061
Sha256: 2e267ca3560079bdba2ce3c37af9eabf348d46865ef7feefd3f7817819430f84
                                        
                                            GET /cache1/hp/v_248/css/style-newhp.min.css?v=1656320639 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: jC5g98lhqn6FWu2xQbU9jR+VASVYHDqkpQyG6emrls6WbHpDK0G7x5f3Zo3n1tPEAuC/ylsozYM=
x-amz-request-id: 2YE1D6RN8DKEH7MN
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:46:07 GMT
etag: "597825a44f69fe19e87c75a8288dccfb"
x-amz-meta-sha256: 8005c5cec1c45add53262cc0fdf21b55d1f75ac9be57af0283c1cb68e18d65cb
x-amz-meta-s3b-last-modified: 20220620T124124Z
x-amz-version-id: ng4nAdhYCYZhMHQyCqIs_MbVYFyVsgIe
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 7955
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (54039)
Size:   7955
Md5:    0a1836745e21232eedc3a7bd01f506db
Sha1:   c29dca884c0a1b65f08194833601054890648953
Sha256: 710a4eaf19e90ea99e5b6c3da2d78259be7678efea4c98c556f3f66eae78434e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cache1/hp/v_248/images/hp-2022/superbowl-desktop.jpg HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: 9COeitYZtlzezaEKCjjcoaAbPAddsHEfCtT+x8toO0G/6l+tTZoW1WYxzJhbNhLcoo7K6dKsapI=
x-amz-request-id: 21DKBYZ30MWKXH1V
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:53:10 GMT
etag: "03c970e7efc14f2cae3c07a6bb7053a7"
x-amz-meta-sha256: c385619db3bc903846e3586941d87793154c4aee7f2365e53302fbbcbe1571be
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: 8vCKuQhZ98FyvcOa1ziGP0W0W9Xu84i2
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 77980
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size:   77980
Md5:    03c970e7efc14f2cae3c07a6bb7053a7
Sha1:   4e47b7bb9772b1f2480ef9929fd4904d6d5db790
Sha256: c385619db3bc903846e3586941d87793154c4aee7f2365e53302fbbcbe1571be
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVIGxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:58:57 GMT
expires: Thu, 29 Jun 2023 19:58:57 GMT
cache-control: public, max-age=31536000
age: 568802
last-modified: Wed, 11 May 2022 19:25:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Size:   12956
Md5:    1909967d5e51895484f5c673a6f63e7c
Sha1:   96c29ffda44f77bb3e73312aa6569f93689168a4
Sha256: e3d26484862a274c11531b15e625eb52b36842c97f7376fef654372d69565978
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1 
Host: etorologsapi.etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 471
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.54.24.199
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2

                                        
                                            GET /cache1/hp/v_248/images/hp-2022/social-icon.svg HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_248/css/style-newhp.min.css?v=1656320639
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: g4qcX1qoCwES40eYFAi5DkgU978CXfXZahHdmCS2PwMu4ALtHZwfbaNdTcKY0OL4PrUwI5Aa7pU=
x-amz-request-id: CTFFZ4N5EE4BZ170
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:53:07 GMT
etag: "750fadde7ed0d8a59cb37992f69df5b7"
x-amz-meta-sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: DkdRs2xO0EM9xeiR0iwa7QopDLl31LVt
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 5136
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2125)
Size:   5136
Md5:    750fadde7ed0d8a59cb37992f69df5b7
Sha1:   c59d2044108d649ce3c10e1ae1084f20eaa7b6b4
Sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
                                        
                                            GET /cache1/hp/v_248/images/hp-2022/reliability-icon.svg HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_248/css/style-newhp.min.css?v=1656320639
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: q9Qmb4TbSwP6G2T7vNhkNeJa8AZXVoUqq0Wz/pvXNawwpzbk/QDwtbO2FOf73GOtL7nMTma8Lp4=
x-amz-request-id: CTF46JN9GSY9QG3K
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:53:05 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: qOPl99KCw.CdSgRkuMuJL1qYACn8q7bj
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (450)
Size:   2891
Md5:    0a6e20a299b321b57e48a9c83871cc0c
Sha1:   b3474e03f92a55d42c5ee4032fb1f7b38bd5fd80
Sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
                                        
                                            GET /cache1/hp/v_248/images/hp-2022/reputation-icon.svg HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_248/css/style-newhp.min.css?v=1656320639
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: MFLzuATWZh2a+Kgw2RFUUCZv5efJMh0yLeUhlsxF1cO6JWWhYnZ9mAOxAOZeip/rsyF3QGVhZPQ=
x-amz-request-id: CTFFRMSJ1Q61W377
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:53:07 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: 3Gm00qJMSvmeH2DXuOTA71CopqeesXUQ
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Size:   3894
Md5:    7dc0a2667b5de60ff9a96c6ebcca9a7b
Sha1:   cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
Sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
                                        
                                            POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1 
Host: etorologsapi.etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 388
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.54.24.199
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2

                                        
                                            GET /cache1/hp/v_248/images/hp-2022/globe-icon.svg HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_248/css/style-newhp.min.css?v=1656320639
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: 1343TPj+MrZUVMDi6viE4mhcqDBzVUhz4S3F9w4eTFhyRchBcxt1J2oOk1Y4JWSGODcH2NXcpBI=
x-amz-request-id: CTFDP81ZGT3AS11S
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:52:49 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: kjHrES.OJxBNPE1GBWR52OOJ8LDdlYf1
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Size:   3405
Md5:    d8016306372e33ba7354032b4de316ac
Sha1:   7caeb070e9f95ab00ca267ad95c37530d3be361e
Sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
                                        
                                            POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1 
Host: etorologsapi.etoro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 470
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.54.24.199
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2

                                        
                                            GET /cache1/fonts/socials/socials.ttf?qtqow1 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: VqG8Xoz+PNUpc5ek0EHqjuCErGzCqKx3w2Mb/U3IRKb02qkQEhEC1dsBPpa357J3lamLhU00/dI=
x-amz-request-id: ABP0NYTQMK8XRN5V
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "379e2da7fbcf7192af131dab8664fa44"
x-amz-meta-sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: 64DCSoh81dgHS5BU7pf3T55ups5kO3ge
accept-ranges: bytes
content-type: application/x-font-ttf
server: AmazonS3
content-length: 2232
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socials \012- data
Size:   2232
Md5:    379e2da7fbcf7192af131dab8664fa44
Sha1:   191a7c64f76a91ab3ac7418ef12e16155ffe916b
Sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:34:58 GMT
expires: Thu, 29 Jun 2023 19:34:58 GMT
cache-control: public, max-age=31536000
age: 570241
last-modified: Wed, 11 May 2022 19:25:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289
                                        
                                            GET /apps/app/dist/js/app.js HTTP/1.1 
Host: acsbapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         138.128.247.123
HTTP/2 200 OK
                                        
cache-control: max-age=432000 public
expires: Thu, 07 Jul 2022 09:58:59 GMT
content-type: application/x-javascript
last-modified: Mon, 04 Jul 2022 13:07:35 GMT
etag: "6a7df-62c2e617-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142052
date: Wed, 06 Jul 2022 09:58:59 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (58384), with no line terminators
Size:   142052
Md5:    aa46378342c298c63d0b204b928b7bd4
Sha1:   6e42c3e0a443ce2da566b62e0da21876a029a398
Sha256: c9aed6d7ae3dfd702542ae4bb3979daaed0b526647e334fe6b3e6ec8210d5848
                                        
                                            GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Size:   2308
Md5:    b63c50623057857a66071527d3d19e34
Sha1:   60a97e3734cf76a48f1605076590257bfd370f5e
Sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
                                        
                                            GET /cache1/hp/v_248/images/favicon/apple-touch-icon.png HTTP/1.1 
Host: marketing.etorostatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.117
HTTP/2 200 OK
                                        
x-amz-id-2: Dru6hIjKsBVUI3szu0xFgklLVB2l8v+w+cF6ONyksJ3M6ICDpo3YiCR+J89K5VFsIw/6VAn/LyM=
x-amz-request-id: 2DBT3JKY6WB9B99T
x-amz-replication-status: COMPLETED
last-modified: Tue, 21 Jun 2022 10:51:02 GMT
etag: "8d34d8eb122958024d6319988331e68a"
x-amz-meta-sha256: f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: yuIQ61kF9PP0FhChsCsOOI0pPhzVo0Ya
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4959
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 09:58:59 GMT
date: Wed, 06 Jul 2022 09:58:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size:   4959
Md5:    8d34d8eb122958024d6319988331e68a
Sha1:   e79ac403f17e240360be6f5540b8e7dd4a5bb9a6
Sha256: f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
                                        
                                            GET /c/hotjar-1871831.js?sv=6 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.113
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=86400; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 06 Jul 2022 09:58:59 GMT
cache-control: max-age=60
etag: W/60ede9a1a56f4c519c7ad9bce19df600
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hkzPqHyrct-yGJa0-xLQPOwpmK_QWwzudR-PZNpYxMSTv47Pn_h5ww==
age: 4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (15701)
Size:   4231
Md5:    c38cd1c087e54601de0aae70736c0962
Sha1:   2178234f356524b353f9ae2c64384ba497c762db
Sha256: f5406583a62aeb30835d5585282c9a88552c7330a88b294a81468dfcfc180f95
                                        
                                            GET /modules.eaa59710f7e60ac1d235.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.44
HTTP/2 200 OK
                                        
content-type: application/javascript
content-length: 64077
date: Mon, 04 Jul 2022 08:42:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "db52ab3b370d0f21f8ed961bf7934556"
last-modified: Mon, 04 Jul 2022 08:41:34 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Edj8E-6TJ02Jx4AZdfyxUqTjaWDRTS1qkgZnoXlr26f2GLg5alwNQg==
age: 177413
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43638)
Size:   64077
Md5:    db52ab3b370d0f21f8ed961bf7934556
Sha1:   66b073a60e15827946b447963529391e3f5935d7
Sha256: 06ff10ae8a6ea677132edd9b0165e10ba549d18f6ad9e6edc8368ec7c4185b47
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:35:18 GMT
expires: Thu, 29 Jun 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 570221
last-modified: Wed, 11 May 2022 19:25:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16796, version 1.0\012- data
Size:   16796
Md5:    f39b602d1b08fc398343e5c11cf8cd87
Sha1:   944ea7b3ca302c92a6414f203ab47803da20948b
Sha256: 511b67b07a90c30bed95a6e3b1a7708d978d53f01e5fad89403590aaf22fb134
                                        
                                            GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2040
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c2fff811c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65455)
Size:   78056
Md5:    f1e687b418a03f55376f8dabb88831b1
Sha1:   59e7de3f39b2bd1d3cff8b1286f317d913a03fac
Sha256: a8f0ed59befb0dc3da4e194382166d61584fc77442140cdbe734a761ca07ded2
                                        
                                            GET /box-63c3a81830bf549dafe40b369003f751.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.75
HTTP/2 200 OK
                                        
content-type: text/html
content-length: 1044
date: Fri, 01 Jul 2022 07:39:59 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e6fb1304cb60a0dea0f76f7077cb13c6"
last-modified: Thu, 30 Jun 2022 14:48:22 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wL78WK2lZGahB56nyfAEUxVQN6WUwQT8eZiS6FnB3E4j2qaBHR88ew==
age: 440340
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size:   1044
Md5:    e6fb1304cb60a0dea0f76f7077cb13c6
Sha1:   7d79d7450af7d427239b2df03165f4f4537ee26e
Sha256: 65a619f495d1b8dae71d42a59bd52c7cb8bc16dc67c3cb9fc7cc07d004be4305
                                        
                                            GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-type: application/x-javascript
content-length: 14384
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: e00Dic0738NrYVoLBg7tPA==
last-modified: Tue, 14 Dec 2021 12:34:59 GMT
etag: 0x8D9BEFE24E4B72A
x-ms-request-id: 42befd17-e01e-00f6-6ee7-f0fff0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2086
expires: Wed, 06 Jul 2022 13:58:59 GMT
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c30580a1c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size:   14384
Md5:    7b4d0389cd3bdfc36b615a0b060eed3c
Sha1:   a13bee7f9604f7dc3b55ddbbad915fd605ab9a4b
Sha256: bd7cccf2a2ad2ff6c00b8fd8238da52e11e19f36d1e30447f7c4561576788a57
                                        
                                            GET /scripttemplates/6.27.0/assets/otFlat.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: VSHBUrwe+huqkxKbuHF+GQ==
last-modified: Mon, 29 Nov 2021 20:30:50 GMT
etag: 0x8D9B3772216FA2F
x-ms-request-id: 247cd6ec-501e-004e-2dec-ec1d03000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2086
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c3078291c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (10843)
Size:   2950
Md5:    5521c152bc1efa1baa93129bb8717e19
Sha1:   d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
Sha256: 10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
                                        
                                            GET /scripttemplates/6.27.0/assets/v2/otPcCenter.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-type: application/json
content-length: 11602
content-encoding: gzip
content-md5: ceOHHWNBgrF8GxXKPVj35A==
last-modified: Mon, 29 Nov 2021 20:30:52 GMT
etag: 0x8D9B377239B4147
x-ms-request-id: a3c3cc4e-901e-00f9-2cec-ec1206000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2086
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c3098441c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (37703)
Size:   11602
Md5:    71e3871d634182b17c1b15ca3d58f7e4
Sha1:   4063bf0afb25a8c96bdd33f6d24ca832067c7806
Sha256: c20f40887a2fdad6ea7070063acf1150881e18405c91338338e88be4195583b5
                                        
                                            GET /gtm.js?id=GTM-N7SQ5DP HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Jul 2022 09:59:00 GMT
expires: Wed, 06 Jul 2022 09:59:00 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Jul 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92902
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35497)
Size:   92902
Md5:    ef2d17d67742e8c972ef21bc33f2279a
Sha1:   922945af94d4f94fdd6aff5db27116092aa8d0fb
Sha256: 7573845c471fb7ceaff4b61e7828e5986d8a1886a54dc4278c62513788c160ec
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.110
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 09:59:00 GMT
Last-Modified: Wed, 06 Jul 2022 09:01:30 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vnL9vQilOgrg225WhF-juhYVt_DcQQcfbYvzBB_APdb0i46TfpsHDw==
Age: 3451

                                        
                                            GET /cache/app/etoro.com/config.json HTTP/1.1 
Host: cdn.acsbapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.238.215.8
HTTP/2 200 OK
                                        
cache-control: max-age=432000 public
expires: Thu, 07 Jul 2022 09:59:00 GMT
content-type: application/json
last-modified: Wed, 06 Jul 2022 09:58:12 GMT
etag: "9f-62c55cb4-1a211b5369b7bc90;;;"
accept-ranges: bytes
content-length: 159
date: Wed, 06 Jul 2022 09:59:00 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   159
Md5:    c9392d990fe79e66b30cc01b3d44b9a2
Sha1:   224e74b905d52b0648e5ed8b232e995c68673901
Sha256: 72f8938e232057bb0ed2c3d622bcd910c2fc84f395d56e900d4358001fb327a9
                                        
                                            GET /nr-spa-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
                                        
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 06 Jul 2022 09:59:00 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 1211
x-timer: S1657101540.146251,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   58990
Md5:    699ffea8e9ef6fb520b491cd5834e9d6
Sha1:   660f5d98a52cbcb5bf80dcf6fa44ac0c413b82b1
Sha256: 6306e85ce6ac47675a3db3f7f236feab3f2975830e97b19e9f1615b10f59bcfa
                                        
                                            GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.148.64
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:58:59 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2086
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 72677c3098451c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11123), with CRLF, LF line terminators
Size:   6355
Md5:    db01726cfa06fc5b93e032b901423616
Sha1:   8a2d0aa0ab9d60efe40fe86c1ca9a52554149f95
Sha256: a866931952ee89d4293b8692b97a8fbcec4e4aab9b60f421fd2546e0117a8daf
                                        
                                            GET /up_loader.1.1.0.js HTTP/1.1 
Host: js.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.241.118
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 06 Jul 2022 00:33:54 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YZ2Z3n6fOKIQadjORan6MJWaBrQScsRxatYOeKRggwuJ2PKAhIJ1yw==
Age: 50869


--- Additional Info ---
Magic:  ASCII text, with very long lines (4593), with no line terminators
Size:   1882
Md5:    8014ea74946aee77ef2f3b9a264be553
Sha1:   fda85fc27ac2f811e543c11436cf5623cbd46bb2
Sha256: 271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c
                                        
                                            GET /scevent.min.js HTTP/1.1 
Host: sc-static.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.82.240
HTTP/2 200 OK
                                        
content-type: application/javascript;charset=utf-8
content-length: 7852
server: CloudFront
date: Wed, 06 Jul 2022 09:59:00 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 07 Jul 2022 08:01:32 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L7aL5gvDDtDWJd67u0Ax5jP_w0Tm-T4ObYmfGHY0aP2BIflx2mLwHw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22408), with no line terminators
Size:   7852
Md5:    b2cfd3dfa170a86ea293cf3dee4fd978
Sha1:   6abef56691642f0768518b00c4a4dbea2b28731e
Sha256: 608af908f969147ec75cab9fd1e71ea04519da0acba06eb670032c14073eccd1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /api/v2/client/sites/1871831/visit-data?sv=6 HTTP/1.1 
Host: in.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 148
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.30.157.40
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:59:00 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   563
Md5:    74b811b58e40fe7b4a730c5f76d2b608
Sha1:   9b2e6f88367418b24e1ff2755fe9d766b7d9d29b
Sha256: 2868edb68fa68d1fa6e36efbf1dc805df7f28e16dcfe6fedd716c0cc3d573d36
                                        
                                            GET /i/3c2d8da22b7aa416fab4696fbd547cc9.js HTTP/1.1 
Host: zero.pointlessplay.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
                                        
content-type: text/javascript; charset=utf-8
content-length: 28343
content-encoding: gzip
server: Caddy
date: Wed, 06 Jul 2022 06:37:23 GMT
cache-control: max-age=43200
expires: Wed, 06 Jul 2022 18:36:43 GMT
etag: "13054-RGhpTDOI0kNKUEcCk5Qq/l/6eK4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xqZUd57fBuCeirep_tth-_MtZ_qJESDr2WkXGDMpca2pcEAcq7irEQ==
age: 12137
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   28343
Md5:    c037f473b2a80d9015a7f98329703288
Sha1:   8bfb6844ba01358a9b9c20ae032e9f17ddca1eea
Sha256: b2fec78ae7d21ec9e3f40c57eb66acac1264a3b08ccc87b7c33aa22fe21103fa
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3977
Cache-Control: max-age=99475
Date: Wed, 06 Jul 2022 09:59:00 GMT
Etag: "62c42eee-1d7"
Expires: Thu, 07 Jul 2022 13:36:55 GMT
Last-Modified: Tue, 05 Jul 2022 12:30:38 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /activityi;src=9944765;type=visit0;cat=visit0;ord=1;num=3171332362360;gtm=2wg6t0;auiddc=1777936767.1657101540;u8=undefined;u1=undefined;~oref=https%3A%2F%2Fwww.etoro.com%2F? HTTP/1.1 
Host: 9944765.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 06 Jul 2022 09:59:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 362
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 06-Jul-2022 10:14:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (476), with no line terminators
Size:   362
Md5:    d32567cbf2fa4b6d1e1e72763b2a4aa8
Sha1:   8fb4347c184bb2acfa504d7bde4a36ccb7f3e398
Sha256: 5ff47dfe36c09e0e684298e8d0a7a48f9d10145816787e0516e730abda6097af
                                        
                                            GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1 
Host: 9944765.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 06 Jul 2022 09:59:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 398
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 06-Jul-2022 10:14:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (562), with no line terminators
Size:   398
Md5:    5a9998dc3732f15d817b24017d169287
Sha1:   825636fb778c372628fbf3f119c26cd8002631db
Sha256: d5c63dc0ce384f7306f7e3fc43f893fd13e2a71fcfebdc6af26a039e976dc810
                                        
                                            GET /adalyser.js?cid=etoro HTTP/1.1 
Host: c0.adalyser.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.220.190.57
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:59:00 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31834)
Size:   12183
Md5:    5301983312500f1fa818e866832a8ede
Sha1:   96c054b07049abe3b764dbcf0f8189055de98e78
Sha256: 24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2984
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 09:59:00 GMT
Last-Modified: Wed, 06 Jul 2022 09:09:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2984
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 09:59:00 GMT
Last-Modified: Wed, 06 Jul 2022 09:09:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2984
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 09:59:00 GMT
Last-Modified: Wed, 06 Jul 2022 09:09:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&_scsid=634d7f4c-679b-4e42-a2b8-62391e87fe66&_sclid=069a9b7c-304c-4f2f-8e82-509b6cc67206 HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.190.43.134
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:59:00 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /tracking/track/v3/p?stm=1657101540403&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1657101540402%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22c0a91246-9c2e-43a9-be3f-01fe5dfd9c40%22%2C%22duid%22%3A%226fc77c06-96d7-4f97-b403-e20e08aa05f7%22%2C%22cw%22%3A1657101540402%7D&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&domain=www.etoro.com HTTP/1.1 
Host: c0.adalyser.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.220.190.57
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:59:00 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
etag: W/"2b-B//0C13UlayirE4cP7xgqg"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.130
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 06 Jul 2022 09:59:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (561), with no line terminators
Size:   399
Md5:    aafbe00c9237405a89209c023ecf0e9f
Sha1:   73cedd4fd162051ba33aa05103826a641e11b888
Sha256: 5c63f827ce3f4a9601091587fd7b5a85afdf1443a0b93fd06c4e8a226bc6b90c
                                        
                                            GET /cache/app/en.build.json HTTP/1.1 
Host: cdn.acsbapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.238.215.8
HTTP/2 200 OK
                                        
cache-control: max-age=432000 public
expires: Thu, 07 Jul 2022 09:59:00 GMT
content-type: application/json
last-modified: Mon, 04 Jul 2022 13:08:04 GMT
etag: "3ae1e-62c2e634-3d62932d55f97403;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25644
date: Wed, 06 Jul 2022 09:59:00 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (65462), with no line terminators
Size:   25644
Md5:    b9dd94715372f20f668e6467e78676b1
Sha1:   149b859ddce39a95e28b946928b03157dfbff8ea
Sha256: c8612101ea793625c877bdbab95154698c78449ab4c596ab85133998993d6555
                                        
                                            GET /collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
                                        
date: Wed, 06 Jul 2022 09:59:00 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (539), with no line terminators
Size:   451
Md5:    2d3db4873d7d4e771b43d63d98583203
Sha1:   c88ac45d0e9b11d6092de09ebcc67b3985fa565d
Sha256: 4c79750d1ce66defccae0e4b50da050542568556f152358feac5a05ea218e34b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 09:59:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content