r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Tue, 01 Nov 2022 23:34:08 GMT
Date: Tue, 01 Nov 2022 22:52:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8d024a7496f85cabcc9adc118bd9fbec
a1146d4bf5c3e21619777259206bec6cad36e7ea
247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1529
Cache-Control: max-age=126256
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:14 GMT
Etag: "6360e755-1d7"
Expires: Thu, 03 Nov 2022 09:56:30 GMT
Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 44ee7bbc64b0396b20a28944ea4ec4d2
dbb18d4238fa3a980e5c254ff25d3b39590b0159
2cc72ff87dcdabcb0a67d8dda7a7c440f8650ffe77f71602954a3076762be50a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC72FF87DCDABCB0A67D8DDA7A7C440F8650FFE77F71602954A3076762BE50A"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7109
Expires: Wed, 02 Nov 2022 00:50:43 GMT
Date: Tue, 01 Nov 2022 22:52:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6xbCQsVOEfqFNslCuLmJECcaMYn0zhcsCjZUyqXcR3o3hf0uW/wb0iMssSdzt5+KlEhYUkLL/UY=
x-amz-request-id: 18RMSK6RC0515XHQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 01 Nov 2022 22:08:30 GMT
age: 2624
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 22:52:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
139.59.49.76/34363?click=pubf77a73270fb6471792ceefa611b4d22e&pubid=af806aa9
139.59.49.76302 Found 226 B URL HTTP/1.1 139.59.49.76/34363?click=pubf77a73270fb6471792ceefa611b4d22e&pubid=af806aa9
IP 139.59.49.76:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with no line terminators
Hash 3005b4f136f1f00e48c03a74a274fa85
0f8e68d34e8809983fb083a32731cbee5f615eb2
bd1e71b192193c32a36b29a657176e74f0258d77dbb0f33b71c4d6edfc195c2b
GET /34363?click=pubf77a73270fb6471792ceefa611b4d22e&pubid=af806aa9 HTTP/1.1
Host: 139.59.49.76
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
x-powered-by: Express
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
location: https://surf.ueive.com/rc/736006a179?affclick=22K02042214A034363012829ObBmx&pubid=34363
vary: Accept, Accept-Encoding
content-type: text/html; charset=utf-8
content-length: 226
date: Tue, 01 Nov 2022 22:52:14 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f9303161ce04577a7bcd56ce42831a56
690bf1468d25898db3ab46e03639946854ab25f0
40c380dba92d637574e7699ae184a089c090bab6f7215dc0178dadd8b23da43c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6002
Cache-Control: max-age=125673
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:15 GMT
Etag: "6360d396-1d7"
Expires: Thu, 03 Nov 2022 09:46:48 GMT
Last-Modified: Tue, 01 Nov 2022 08:06:46 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash dba6387faeae28ebd7f46d7b68399639
ef5a1806583f7a649c4b8ce89a7a8f35ae9c3b75
3e84b48ce64198ea2ec44bc399d9e79ef3ed20ec11274ed944671a6b54d411c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5599
Cache-Control: max-age=91832
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:15 GMT
Etag: "636050f9-13a"
Expires: Thu, 03 Nov 2022 00:22:47 GMT
Last-Modified: Mon, 31 Oct 2022 22:49:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 314
aditmedia.g2afse.com/click?pid=930&offer_id=18720&sub1=pubacde5e88bcc04199afd0b497fa3582fc&sub2=f0fc7601_34363
34.91.234.242302 Found 0 B URL HTTP/2 aditmedia.g2afse.com/click?pid=930&offer_id=18720&sub1=pubacde5e88bcc04199afd0b497fa3582fc&sub2=f0fc7601_34363
IP 34.91.234.242:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=930&offer_id=18720&sub1=pubacde5e88bcc04199afd0b497fa3582fc&sub2=f0fc7601_34363 HTTP/1.1
Host: aditmedia.g2afse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://surf.ueive.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 01 Nov 2022 22:52:15 GMT
content-length: 0
location: https://t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=6361a31f5a03df00013dbe1b&s=930_f0fc7601_34363
set-cookie: afclick=6361a31f5a03df00013dbe1b; expires=Wed, 01 Nov 2023 22:52:15 GMT; secure; SameSite=None
afoffers={"18720":1667343135}; expires=Wed, 01 Nov 2023 22:52:15 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.217.237.91101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.217.237.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Sp9vxcU+AnjK7h0a63gziw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G0FycyaRaUOPeCsbUuMmXrV7Ty4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac12f77802e55a522822b46c4be2782b
cda2f592b69fb3841638f3b5b82c7017fc154690
a2cc8a58bb01d114378ca7be57e039a70e25f0ab0a3bb64f952a9d564bfcb0b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2CC8A58BB01D114378CA7BE57E039A70E25F0AB0A3BB64F952A9D564BFCB0B2"
Last-Modified: Mon, 31 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9993
Expires: Wed, 02 Nov 2022 01:38:48 GMT
Date: Tue, 01 Nov 2022 22:52:15 GMT
Connection: keep-alive
t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=6361a31f5a03df00013dbe1b&s=930_f0fc7601_34363
51.161.115.163302 Found 0 B URL HTTP/1.1 t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=6361a31f5a03df00013dbe1b&s=930_f0fc7601_34363
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=6361a31f5a03df00013dbe1b&s=930_f0fc7601_34363 HTTP/1.1
Host: t3.blowingwnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://surf.ueive.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 22:52:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: xi
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d6497453fa448d686f5e7c2d7f4a20
f6a219bac5b221fc38a16049005b346d71911333
3bcad33d44663ac3287cb74b0429b32bf0e62b33f00b2d06814b868b78f61d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BCAD33D44663AC3287CB74B0429B32BF0E62B33F00B2D06814B868B78F61D48"
Last-Modified: Sun, 30 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16164
Expires: Wed, 02 Nov 2022 03:21:40 GMT
Date: Tue, 01 Nov 2022 22:52:16 GMT
Connection: keep-alive
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363
51.83.143.92200 OK 504 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363
IP 51.83.143.92:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (552)
Hash 5a21c189108f9b3fbe7259b819750b97
b9cbaa8eb8926696e59504301187062c7319e811
1c58e679b77df86a75dce147da7a0db8a8218fd364c42e3236d5455e9ef26065
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://surf.ueive.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Nov 2022 22:52:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=6361a3208a7cfb02ca230150; expires=Fri, 04-Nov-2022 22:52:16 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363&bv=1
51.83.143.92302 Found 0 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363&bv=1
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-930_f0fc7601_34363
Cookie: bt-603611c5b7eaf46891533240=6361a3208a7cfb02ca230150
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 22:52:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 11kgq037yu
Raund: 2g2
Location: https://popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e54eca82197c769b4da6e6993da1a2b7
babca44795e941d79b092a317558b1d18c654518
4fe50e5251c88f11fe770cb62252bdc442b39825e02dbcf04a15f022171aeff0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3660
Cache-Control: max-age=115772
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:16 GMT
Etag: "6360b610-118"
Expires: Thu, 03 Nov 2022 07:01:48 GMT
Last-Modified: Tue, 01 Nov 2022 06:00:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e54eca82197c769b4da6e6993da1a2b7
babca44795e941d79b092a317558b1d18c654518
4fe50e5251c88f11fe770cb62252bdc442b39825e02dbcf04a15f022171aeff0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3660
Cache-Control: max-age=115772
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:16 GMT
Etag: "6360b610-118"
Expires: Thu, 03 Nov 2022 07:01:48 GMT
Last-Modified: Tue, 01 Nov 2022 06:00:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100
35.186.193.41200 OK 2.7 kB URL HTTP/1.1 www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100
IP 35.186.193.41:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 25fecec5d50ce001cd00a9a1d8cba490
42db68c91519a5317f07e82f5f19d354cdee06d6
1edb790bce20288993dd74f2c665f504e87c2f7973bd943887fff9a4b0eb01ed
GET /jump/next.php?r=1041905&sub1=0646614100 HTTP/1.1
Host: www.linkonclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 01 Nov 2022 22:52:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 google
www.linkonclick.com/jump/next.php?stamat=m%257C%252Coo2djdjarB1dQO0dEdHP3xP.681%252CS0kXXHXf2ck-DOZ9HRvwuM9aL_G46JdZU-2oa3bmXM8JUm5HksBtX5-SSJ8vLRk6bFmvq_XsOZ11dNi5wjwW8w%252C%252C&cbpage=http://www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100&cbur=0.7082410917765184&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=
35.186.193.41302 Moved Temporarily 1 B URL HTTP/1.1 www.linkonclick.com/jump/next.php?stamat=m%257C%252Coo2djdjarB1dQO0dEdHP3xP.681%252CS0kXXHXf2ck-DOZ9HRvwuM9aL_G46JdZU-2oa3bmXM8JUm5HksBtX5-SSJ8vLRk6bFmvq_XsOZ11dNi5wjwW8w%252C%252C&cbpage=http://www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100&cbur=0.7082410917765184&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=
IP 35.186.193.41:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /jump/next.php?stamat=m%257C%252Coo2djdjarB1dQO0dEdHP3xP.681%252CS0kXXHXf2ck-DOZ9HRvwuM9aL_G46JdZU-2oa3bmXM8JUm5HksBtX5-SSJ8vLRk6bFmvq_XsOZ11dNi5wjwW8w%252C%252C&cbpage=http://www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100&cbur=0.7082410917765184&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref= HTTP/1.1
Host: www.linkonclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 01 Nov 2022 22:52:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
Location: http://www.linkonclick.com/script/i.php?stamat=m%257C%252C%252CwjMyYjFqoGU3B_-GH0dEdHP3xP.e9d%252CKr4o9XdNxyeTHDokrSEPSUzidkvI5Mqdqa_tSHG9PCFfDZsxoyPfJ54uUCN3ELpg3EAxC2hhZKu9pVTAxP8q14Yd3FTZePI1XT1C9Xp46jRmkdVIRmaAy-dHGLvIDsym78L48Qg0gPmeTY78P2ybQGIxrWeY7DZmfie0VljvcWo-LoYISS8JVdyCzffFdH5d0YFV2AwLKUZzwQ5V0fWaHyQjAEKXCVNtlkRw0-8x0n8O4iav6kb4PbPI86BKUbsXbBrpNd6OiIFkRkFkV54mZNKf27BtPw8gjtvyFiCcPjdSyji1sCW1xehO80sMwuH4BgudnJVZPkWfMQ3NxLgGC_1W7ZOGbfSh6vFsO6rPpaOWbYMfI2go02uqH-YqMfR4uAkL89LzhDVjjUuUxwqtU82xIPwl6FJYFHPycYhd0WDuu28ki2W7qzV0FpWT6tf36KvTHByf4yISBfUqCtdcwfdJWeC7JCC7t5aAij1lu-kiKfrMPiw3Ap1HYVPhTKhm23w7-dPH2pHoLyCNeYIkgeW8zAuZL8EqAN4g3MFuA3dx-yBW05XC1GUmExJX5-5f
Via: 1.1 google
www.linkonclick.com/script/i.php?stamat=m%257C%252C%252CwjMyYjFqoGU3B_-GH0dEdHP3xP.e9d%252CKr4o9XdNxyeTHDokrSEPSUzidkvI5Mqdqa_tSHG9PCFfDZsxoyPfJ54uUCN3ELpg3EAxC2hhZKu9pVTAxP8q14Yd3FTZePI1XT1C9Xp46jRmkdVIRmaAy-dHGLvIDsym78L48Qg0gPmeTY78P2ybQGIxrWeY7DZmfie0VljvcWo-LoYISS8JVdyCzffFdH5d0YFV2AwLKUZzwQ5V0fWaHyQjAEKXCVNtlkRw0-8x0n8O4iav6kb4PbPI86BKUbsXbBrpNd6OiIFkRkFkV54mZNKf27BtPw8gjtvyFiCcPjdSyji1sCW1xehO80sMwuH4BgudnJVZPkWfMQ3NxLgGC_1W7ZOGbfSh6vFsO6rPpaOWbYMfI2go02uqH-YqMfR4uAkL89LzhDVjjUuUxwqtU82xIPwl6FJYFHPycYhd0WDuu28ki2W7qzV0FpWT6tf36KvTHByf4yISBfUqCtdcwfdJWeC7JCC7t5aAij1lu-kiKfrMPiw3Ap1HYVPhTKhm23w7-dPH2pHoLyCNeYIkgeW8zAuZL8EqAN4g3MFuA3dx-yBW05XC1GUmExJX5-5f
35.186.193.41302 Moved Temporarily 0 B URL HTTP/1.1 www.linkonclick.com/script/i.php?stamat=m%257C%252C%252CwjMyYjFqoGU3B_-GH0dEdHP3xP.e9d%252CKr4o9XdNxyeTHDokrSEPSUzidkvI5Mqdqa_tSHG9PCFfDZsxoyPfJ54uUCN3ELpg3EAxC2hhZKu9pVTAxP8q14Yd3FTZePI1XT1C9Xp46jRmkdVIRmaAy-dHGLvIDsym78L48Qg0gPmeTY78P2ybQGIxrWeY7DZmfie0VljvcWo-LoYISS8JVdyCzffFdH5d0YFV2AwLKUZzwQ5V0fWaHyQjAEKXCVNtlkRw0-8x0n8O4iav6kb4PbPI86BKUbsXbBrpNd6OiIFkRkFkV54mZNKf27BtPw8gjtvyFiCcPjdSyji1sCW1xehO80sMwuH4BgudnJVZPkWfMQ3NxLgGC_1W7ZOGbfSh6vFsO6rPpaOWbYMfI2go02uqH-YqMfR4uAkL89LzhDVjjUuUxwqtU82xIPwl6FJYFHPycYhd0WDuu28ki2W7qzV0FpWT6tf36KvTHByf4yISBfUqCtdcwfdJWeC7JCC7t5aAij1lu-kiKfrMPiw3Ap1HYVPhTKhm23w7-dPH2pHoLyCNeYIkgeW8zAuZL8EqAN4g3MFuA3dx-yBW05XC1GUmExJX5-5f
IP 35.186.193.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/i.php?stamat=m%257C%252C%252CwjMyYjFqoGU3B_-GH0dEdHP3xP.e9d%252CKr4o9XdNxyeTHDokrSEPSUzidkvI5Mqdqa_tSHG9PCFfDZsxoyPfJ54uUCN3ELpg3EAxC2hhZKu9pVTAxP8q14Yd3FTZePI1XT1C9Xp46jRmkdVIRmaAy-dHGLvIDsym78L48Qg0gPmeTY78P2ybQGIxrWeY7DZmfie0VljvcWo-LoYISS8JVdyCzffFdH5d0YFV2AwLKUZzwQ5V0fWaHyQjAEKXCVNtlkRw0-8x0n8O4iav6kb4PbPI86BKUbsXbBrpNd6OiIFkRkFkV54mZNKf27BtPw8gjtvyFiCcPjdSyji1sCW1xehO80sMwuH4BgudnJVZPkWfMQ3NxLgGC_1W7ZOGbfSh6vFsO6rPpaOWbYMfI2go02uqH-YqMfR4uAkL89LzhDVjjUuUxwqtU82xIPwl6FJYFHPycYhd0WDuu28ki2W7qzV0FpWT6tf36KvTHByf4yISBfUqCtdcwfdJWeC7JCC7t5aAij1lu-kiKfrMPiw3Ap1HYVPhTKhm23w7-dPH2pHoLyCNeYIkgeW8zAuZL8EqAN4g3MFuA3dx-yBW05XC1GUmExJX5-5f HTTP/1.1
Host: www.linkonclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 01 Nov 2022 22:52:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
Location: https://goosebomb.com/gogate/etoro/31/index.html?action=166734313610000TNOTV415326358024Vb9
Referrer-Policy: no-referrer
Via: 1.1 google
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 86d550a8ad9364f4806a82d2ed3372bd
29639e5207f0d53b920fd9825bbb47f06363cf51
b95b4a2b053dc3975fc96e716e518f714446f5c735bf00da9b417fb4ea1463db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3957
Cache-Control: max-age=98438
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:16 GMT
Etag: "63607131-116"
Expires: Thu, 03 Nov 2022 02:12:54 GMT
Last-Modified: Tue, 01 Nov 2022 01:06:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 86d550a8ad9364f4806a82d2ed3372bd
29639e5207f0d53b920fd9825bbb47f06363cf51
b95b4a2b053dc3975fc96e716e518f714446f5c735bf00da9b417fb4ea1463db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3958
Cache-Control: max-age=98438
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Etag: "63607131-116"
Expires: Thu, 03 Nov 2022 02:12:55 GMT
Last-Modified: Tue, 01 Nov 2022 01:06:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3643
Expires: Tue, 01 Nov 2022 23:53:00 GMT
Date: Tue, 01 Nov 2022 22:52:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3643
Expires: Tue, 01 Nov 2022 23:53:00 GMT
Date: Tue, 01 Nov 2022 22:52:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3643
Expires: Tue, 01 Nov 2022 23:53:00 GMT
Date: Tue, 01 Nov 2022 22:52:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0de76d35f26837b0c003f96fb9b51c05
3a4f2fd9086cbc705b903996f14e2df40d615129
a4f143d107ebc9ffa7e84da9a0816f55db13796ed0193516523cfcfc23282166
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7829
x-amzn-requestid: 9c2d792c-6f72-4006-9f97-245e0f664d6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N8bGftoAMFwBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904f-680e59ed401239a2323f5741;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9_QPRz3ayZwBqeE31TDodoRdmgb_L2GGh6w3LSXG-rpr7Dxhn2hiTw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:37:58 GMT
age: 4459
etag: "3a4f2fd9086cbc705b903996f14e2df40d615129"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb3964a844616e8156299a91f6068d3b
dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed
014216665e0feb6a3f64460d8dd50023d4621e10fd31180d6807c9eda8f57364
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 6e204386-945d-4c9b-9932-d6c62788dc99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd4tGnZoAMFdHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd04-67dfd6165942ee403b822eea;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t2EoETrdqnEObMgs82RYRytqyFHo_yxOLwAFdYMNsF6-_PxZKnG8SA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 15:38:16 GMT
age: 26041
etag: "dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c69585975447cd8817ef28e040f2282d
86f7a25a4c6cbd3ba02335d3e9e3806e04353057
371e0f702449d2dca70feff03b2c191ae668da7f24d4fd1b495a70a3a1e15c7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9264
x-amzn-requestid: e8d66671-2424-4e71-be8d-5cd01e7a108e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAFeBoAMFVNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-4f186264706348807ac85be5;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AumRkK1CM_hAmAa7zDIg3i63h7e1UCkE1T9LfTSJXXkznPeocAXPlw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:01:42 GMT
etag: "86f7a25a4c6cbd3ba02335d3e9e3806e04353057"
content-type: image/jpeg
age: 3035
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bd19d65-6adb-49b1-b3a5-ffb9ffd23bbc.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bd19d65-6adb-49b1-b3a5-ffb9ffd23bbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1e279cf441230b801e53c187094c972
30e0b7d521804604622a09ba566307cc35b1deb6
5d5e6c03bc054bfbb84802523191a97dd404c7d51e180f9cd21f50942129c884
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bd19d65-6adb-49b1-b3a5-ffb9ffd23bbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13593
x-amzn-requestid: b4da9d6e-7064-40f7-953c-37847c4b672d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N93FcAIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619058-1dda64ee1b8e3177189703fc;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:32:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IrKSw67d2rSPTchxQmOxSmOJXYDBlP0GWxHe71ngPEzazQEFLM0lOA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:40:58 GMT
age: 4279
etag: "30e0b7d521804604622a09ba566307cc35b1deb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13ef41807ff6c1430d0f53674274e1e5
9af1c9bf800c46497754c2e35e04cbd8b277d9bc
63996c5ea515898cc3c31c738f10a90e693b3c4d980229f5cbb25836f71c94fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5514
x-amzn-requestid: 08c00121-f4c5-41a3-aeb1-caa62028c091
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OeJFeHIAMFVlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619127-7069ac091b65263c5e5998a4;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:35:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yJayprPF6fiQBiDmGRgrXMXstDuBr1vt5AlLSIsABFlltQmt_O4g6A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:40:59 GMT
etag: "9af1c9bf800c46497754c2e35e04cbd8b277d9bc"
content-type: image/jpeg
age: 4278
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a51834-fb3d-49e1-bf17-0d61bd632e3c.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a51834-fb3d-49e1-bf17-0d61bd632e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2c656f261152358b1d0eada2279cb44
f8f227255807a94ed55e78263094b5b637b7fea2
bdf8552426c1899b373c77f12deb95521468232ecead8aaa70544c055193ad1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a51834-fb3d-49e1-bf17-0d61bd632e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7964
x-amzn-requestid: d638eeba-2b55-4ee0-939f-e4ce640f2823
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OwbHj6IAMF55A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361919c-1d67bb147eb042414b8d4a89;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bLa65_ZUhPBJBEUdNRdXOpGqKxHukkuvFps1LmNLhOpPGfpE743hAg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:22:36 GMT
age: 1781
etag: "f8f227255807a94ed55e78263094b5b637b7fea2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ff8f7daa3e3cf5fd5bd540f75584790
a751a98efc3dc413002861eaa50f4bee27f67546
404550d1969f2e833e4e907df558c9980e77f7c77f2b0bce81c0b5dd0a69a1e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash 21a9c57fb2ce2e6d8b68c9a4b95a4159
b1e1ac3f89b46175c95779206451ffe835ed8ae1
0b6e9dfb701217c2051eb0ee6cd6125160c1fe359b64f73f7e1af75ad69b8ae9
GET /gtag/js?id=G-E9QBCJNBNS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 22:52:17 GMT
expires: Tue, 01 Nov 2022 22:52:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75896
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ff8f7daa3e3cf5fd5bd540f75584790
a751a98efc3dc413002861eaa50f4bee27f67546
404550d1969f2e833e4e907df558c9980e77f7c77f2b0bce81c0b5dd0a69a1e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
med.etoro.com/B12616_A89099_TSlick_S166734313610000TNOTV415326358024Vb9.aspx
96.6.17.100301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/B12616_A89099_TSlick_S166734313610000TNOTV415326358024Vb9.aspx
IP 96.6.17.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /B12616_A89099_TSlick_S166734313610000TNOTV415326358024Vb9.aspx HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://etoro.com/
Date: Tue, 01 Nov 2022 22:52:17 GMT
Connection: keep-alive
etoro.com/
2.22.37.169301 Moved Permanently 0 B IP 2.22.37.169:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.etoro.com/
Date: Tue, 01 Nov 2022 22:52:17 GMT
Connection: keep-alive
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
104.16.148.64200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (2829)
Hash b9eadb6d05b9bafe419aa99f68097df2
d850dc819264475c6d1cbe6e8419a1016a659db2
a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3653
expires: Wed, 02 Nov 2022 02:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383332a989b4f9-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 7b4564ae957eef3a8302343f44c5cfb3
296c38b2ae23a31d80201b32a38c02e75de27c91
15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Mon, 31 Oct 2022 17:11:05 GMT
etag: 0x8DABB62E55F55FD
x-ms-request-id: c6fbddc0-601e-0124-2a60-ed07fd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3827
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383332b99ab4f9-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
IP 23.38.201.117:0
File type PNG image data, 322 x 432, 8-bit colormap, non-interlaced\012- data
Hash b7322c639dcf276550e310727cf76893
136b5f1a82788708f04b74a30fcefdadaff00e43
6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
GET /cache1/hp/v_250/images/instruments/t3-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ynBcBZLuM0g8KM2F3SRl5wWRChG7u8muIqcCU58ccgoEdfV0x23Je45/tjxzNW1Pv46uF30VAQQ=
x-amz-request-id: BJSN68QDJ2WRDK40
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "b7322c639dcf276550e310727cf76893"
x-amz-meta-sha256: 6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: r9skgKWaP8RVY9nRMto5PlKboL4BQb73
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11012
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
23.38.201.117200 OK 43 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
IP 23.38.201.117:0
File type PNG image data, 660 x 684, 8-bit colormap, non-interlaced\012- data
Hash 43f62ee21492814c91e306a57be05ee7
77e0ddcffc72c83f9c6690f521a4594d0eacdf7a
55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
GET /cache1/hp/v_250/images/instruments/t3-4.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CQyOioDgEwsXle/cn0DSfXbIj4PtX6wwvvY03kgw+sPBr5gMr79OxJ6rVKvDrcsLStc69BjQXWU=
x-amz-request-id: BJSNRPZPM3RB1Y56
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "43f62ee21492814c91e306a57be05ee7"
x-amz-meta-sha256: 55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: ZJ9bAs_aawgIHhTc3zcLSZS.lxwDFu4K
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 42876
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/assets/css/onetrust.css
23.38.201.117200 OK 2.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/assets/css/onetrust.css
IP 23.38.201.117:0
File type ASCII text, with very long lines (885)
Hash b3f403de6d79b34f32dba5e4effaabc2
7b436b6060e88daf19f12bd27cbe2533d25a2343
3ec0cde05873dde93c16f4b4f3b7ca7e236ba4e82ab595ee8f13b959f5b2813a
GET /cache1/assets/css/onetrust.css HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7vqiIPn64ptqVNwIM1fvJGjbv11IUdsOT6JKR8Cyxsr81DT/4uax9s7iGzI7fTeV0SwX20GmqJE=
x-amz-request-id: Z3V5BX28EG5962WS
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 12:30:17 GMT
etag: "66e8b2c112ebb5bb9b4fc326d3d5f87b"
x-amz-meta-sha256: 55c8a3b763077bf16466a3a9af5b7e5b2baba7d345cd90b50403058a633bda48
x-amz-meta-s3b-last-modified: 20220616T122823Z
x-amz-version-id: Qcu9.b5PJ70a2SNFK2gJjtsbcFrk1Lur
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
content-length: 2655
X-Firefox-Spdy: h2
goosebomb.com/gogate/etoro/31/index.html?action=166734313610000TNOTV415326358024Vb9
172.67.144.202200 OK 73 kB URL HTTP/2 goosebomb.com/gogate/etoro/31/index.html?action=166734313610000TNOTV415326358024Vb9
IP 172.67.144.202:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5601e51acad0fc472143d1fec7bab6cb
b7b3196e4c6202bf58f877ad1b39fc0b4b6785c0
ad026aaa8bc05290bd46fa553a7bd33eb2f7e86ac4416401e21dd632db1f291a
GET /gogate/etoro/31/index.html?action=166734313610000TNOTV415326358024Vb9 HTTP/1.1
Host: goosebomb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: text/html
x-guploader-uploadid: ADPycdsUmbleRlPHQ1U8itqey2DQsrNS6eu-B1Y3ANEdY_88dEzIQB1FtYdJ5hNnbpQo9AVsOJyy4vvzL-vBBdPsnMeF12yxJLtA
expires: Tue, 01 Nov 2022 23:52:17 GMT
cache-control: public, max-age=3600
last-modified: Tue, 09 Mar 2021 12:58:00 GMT
x-goog-generation: 1615294680223358
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1290
x-goog-meta-goog-reserved-file-mtime: 1614945425
content-language: en
x-goog-hash: crc32c=XVFUmg==, md5=RiW9HhJTA+38GSh9LrzYDg==
x-goog-storage-class: STANDARD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mi5mOFvHfFz79mb6PjNKFLRI5SLNhTZwQ1nPXa2kXTH4bGmuzB%2BCLN3XQLFrI3LqaXnEJGJ65Dw8iKFY34SdRHbUlX9Q3qwtxgeoreDWc63to%2BdtgSJYiT1wBsTvXTSH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7638332df90cb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
IP 23.38.201.117:0
File type PNG image data, 450 x 392, 8-bit colormap, non-interlaced\012- data
Hash f61c9d2ed729320b71af181ff331cb79
182f5c37accdde48b36e7803de6251cc92319b86
11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
GET /cache1/hp/v_250/images/instruments/t1-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 92R24GLatFUU0eh05veMnGqcA2KrIVfsdBz9zWssCytuT0e3Lb7tPc2v9A+iyx7fTZjRCEWnHVc=
x-amz-request-id: BJSJMDWMK7ZCK773
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "f61c9d2ed729320b71af181ff331cb79"
x-amz-meta-sha256: 11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: YkW8_gVG77z0IkOnT2pWi2camXx3AgiY
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 31786
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
23.38.201.117200 OK 94 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x2160, components 3\012- data
Hash b05c8e47e71ba8a0fe73a0da54f010ef
f26455efe60bcf1e74e693574e482b0a952e3de9
2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
GET /cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zqCA8I7VwQ4OM57SeL41enO3ZjqGkwlCS7cjlH8/RylZXzy3zQnrVtSi0iaVUFdNRZjfpzfdllE=
x-amz-request-id: XSS69QHT5BYHDT0P
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:38 GMT
etag: "b05c8e47e71ba8a0fe73a0da54f010ef"
x-amz-meta-sha256: 2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
x-amz-meta-s3b-last-modified: 20220920T161111Z
x-amz-version-id: VChvjEsOHCDhESR_vRlWIZZI9qChCEb_
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 94463
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
www.etoro.com/
104.18.35.149200 OK 104 kB IP 104.18.35.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30995)
Size 104 kB (104491 bytes)
Hash 6f12b5fdc47bbfc66ed43183a5f78527
9ee79fbaf14bc465d69c013e7b56d36d8c4e6d6c
82038c3abd3f3429ab1893c6138f78a9d341ce3ed977a5101823a1ab979c1306
GET / HTTP/1.1
Host: www.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: text/html
vary: Accept-Encoding
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
set-cookie: TS01047baf=01d53e581869a03b5b76b0f53695fa2cabd74ca912af4bba7afc748cb4b9080c2c268fe4f2703ba63ffe5bcc9da9d5236b639ad121; Path=/
__cf_bm=EcGiRjmiorFowXH8X2H3Ivv2uidaMQ8biTQeuijTghs-1667343137-0-AebzMQUhNi9BYV5prBo7F0GIz58q9mPbMGn1w0pn5WnyYbtI78lomc3OeuZFBKt/VoV2+neRgO+BQ7xLVHGyp+CHV6JTrMclzc9fuzCMWiDU; path=/; expires=Tue, 01-Nov-22 23:22:17 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None
__cflb=02DiuEAg8LPSYevHEYkaxA3gcDJTcgwA11HF6zdtHWZCY; SameSite=None; Secure; path=/; expires=Wed, 02-Nov-22 21:52:17 GMT; HttpOnly
__cfruid=f238531c74f1f3a3f48d3c972a19024bd4fdbfd2-1667343137; path=/; domain=.etoro.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 763833316d5eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
IP 23.38.201.117:0
File type PNG image data, 744 x 504, 8-bit colormap, non-interlaced\012- data
Hash 5a95a095169c27431449bf549b99993d
91a11cffc857dcaa2b38fa901423b227870ac1e4
681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
GET /cache1/hp/v_250/images/instruments/t2-1.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: K4TQrvgv6tHAKlL+ySccGF7oIFbHIm62RTqZ2kB54E9ph5Z0n4O9Fr37Li7vBlcPNEqBlNn15Zg=
x-amz-request-id: BJSS8ZSZ4K6J87Q8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "5a95a095169c27431449bf549b99993d"
x-amz-meta-sha256: 681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 6s15Jbvt_YhVTfS.Qm19BI1gvokKxcHz
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11234
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
IP 23.38.201.117:0
File type PNG image data, 668 x 938, 8-bit colormap, non-interlaced\012- data
Hash beb13238cf465f668c413a022f5633c8
31760dac17b8e58942c79708a4616c3a1df4b233
88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
GET /cache1/hp/v_250/images/instruments/t2-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ky3vrANJhtTj+F60HsRTmFy7QMNFEWRYKVWaE2DyXeaBTBmkZn6svQRqLkPAK6t0vCsNwJQ9vwY=
x-amz-request-id: BJSN4THC2967ZG2T
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "beb13238cf465f668c413a022f5633c8"
x-amz-meta-sha256: 88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 42HIJXJNQSkchYiJUGINB9CQEa72HNtD
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21388
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2a.png
23.38.201.117200 OK 1.5 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2a.png
IP 23.38.201.117:0
File type PNG image data, 136 x 132, 8-bit colormap, non-interlaced\012- data
Hash 6bedb1b3afc69447f7ea0c00993b53a8
1281f1fd5df23a9a19bd8573619007d04f6047ac
55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
GET /cache1/hp/v_250/images/instruments/t2-2a.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ufl333+IK+sRnq39yz/zLZBDDGAqJ3hqjeULNbOsy81coHYrh0pPuwNsCqrWwdm0Uvjiqbr3ti0=
x-amz-request-id: BJSJSH4E3B2X317K
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "6bedb1b3afc69447f7ea0c00993b53a8"
x-amz-meta-sha256: 55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: uxnagM4KgutOS.DThfIN7h9TDKtsInO0
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1473
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
IP 23.38.201.117:0
File type PNG image data, 436 x 390, 8-bit colormap, non-interlaced\012- data
Hash dad8f4f5e1f7c6afaa7a1d02bbad4aae
7c47738ec815ba441c70d30967035c1a2c3a34ff
82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
GET /cache1/hp/v_250/images/instruments/t3-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: vYYw4/nX6J0XwQyBd7Bxo8ppBa11euWIhuDvwJG3+nyQlemDKpJ4ol5vRCRWMd3J1rhCuy9Zzfk=
x-amz-request-id: BJSG6VSZV3NPRZZ5
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:25 GMT
etag: "dad8f4f5e1f7c6afaa7a1d02bbad4aae"
x-amz-meta-sha256: 82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: .ea0J.LF3Tey.FSpyPfEDCWl6aYThAFP
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21261
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
23.38.201.117200 OK 115 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
IP 23.38.201.117:0
File type PNG image data, 588 x 638, 8-bit colormap, non-interlaced\012- data
Size 115 kB (115422 bytes)
Hash a0edff04cdbe03fe84f35b2368beedd9
6231c9d9265502517533892d8a0f42d5790c0310
51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
GET /cache1/hp/v_250/images/instruments/t1-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CLncvM4L18ZkiKjHvjGrOYpGKksF2UJqMLsRtr7/JixW0QqS6mNX7SWENSlm9Aj8le9WdCqQ7XM=
x-amz-request-id: BJSTAV1CC0CZR8SW
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "a0edff04cdbe03fe84f35b2368beedd9"
x-amz-meta-sha256: 51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: gsLHL9_akY3qvzziYmuZ43tVdbQ8cOch
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115422
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
23.38.201.117200 OK 59 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 6d94c8cb40dfa33fccc8b4800f2c7e0e
745c0d98d4cde90d8717feadfa120e0cc20dab1f
a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
GET /cache1/hp/v_250/images/instruments/t3bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XyBWTcKB6ZnhqlKK/cUvo3Mkusx8tebxk8v4iJZ1SngSydT4rYfmHqKA1NPou6jsVLdVHFTSpuc=
x-amz-request-id: BJSW4ZMF254PA5ET
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "6d94c8cb40dfa33fccc8b4800f2c7e0e"
x-amz-meta-sha256: a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: pyA8G.VrAE4shNTZPyu3hFkUKsSZGk39
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 59017
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
104.16.148.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Hash 6439835da3e85cb6917ac06b2dab2b37
b65ad002a7c48559e9124256295c1c688e8f3084
bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3582
expires: Wed, 02 Nov 2022 02:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 763833337a7bb4f9-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/logger/logger.js
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/others/logger/logger.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (5055), with no line terminators
Hash f620bec033fe844135374191b331937d
ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
GET /others/logger/logger.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Tue, 01 Nov 2022 22:57:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
content-length: 2285
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
142.250.74.46200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
IP 142.250.74.46:0
File type ASCII text, with very long lines (1343)
Hash 30366af025f60387e6ae37d3c8a4f31b
82d139e43bd9ee24c60488ee763b5ee303811993
c9426bdc88f9032c9180b55b5b307f6ce03a6e66a38b5d515380b17cc2d200e2
GET /optimize.js?id=GTM-55ZB4XN HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 22:52:17 GMT
expires: Tue, 01 Nov 2022 22:52:17 GMT
cache-control: private, max-age=900
last-modified: Tue, 01 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42936
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8a56e95b32c2e47fd368370771c9fb45
6286251512fd217aa8c0f8a5df0f5e3b4d708ce3
7172ac05d38569d550596a5eff768d9c53fd8e882103985b6813d5f76d65d952
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4568
Cache-Control: max-age=164198
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Etag: "63616faf-116"
Expires: Thu, 03 Nov 2022 20:28:55 GMT
Last-Modified: Tue, 01 Nov 2022 19:12:47 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
104.17.225.78200 OK 0 B URL HTTP/2 cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1
Host: cdn.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: text/css
content-length: 0
x-amz-id-2: 0YZ0H80/30MgBTG2ijPKvwK2o4c7bg1oKeBH6NC/Vct0AWcwyu8ktTQ8I/j+udXxbuBe4+WEVrY=
x-amz-request-id: K2GEEGSX18GPYAHC
last-modified: Thu, 20 Oct 2022 08:49:27 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=300
cf-cache-status: HIT
age: 482534
expires: Tue, 01 Nov 2022 22:57:17 GMT
accept-ranges: bytes
set-cookie: __cf_bm=8eYpAVAGmLo00iDvMWZzvqTTvy0_PYhpNj2yh_BEDFw-1667343137-0-AUvF+6F0Qysls7w5DsA+XQqGjrA7L4fzxZLLsxvDLjQ1CYT/aE7Awvu+XcgYratgtaUpgve0XTdNHh2xwv/S3s8=; path=/; expires=Tue, 01-Nov-22 23:22:17 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76383333ddadb4f1-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Hash 4a61fe67108ddbb01a2ceaf3687ba30e
3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d95080f92be6ec95fe1829fbbb7c2589
f5d45cae98454704c8023370ea2a53892af0ed92
133ad26a82000bd4c1fda074b013d611158b5a58c1e9b0728de044ad28b81db6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3558
Cache-Control: max-age=133689
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:17 GMT
Etag: "6360fc75-116"
Expires: Thu, 03 Nov 2022 12:00:26 GMT
Last-Modified: Tue, 01 Nov 2022 11:01:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
23.38.201.117200 OK 17 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
IP 23.38.201.117:0
File type PNG image data, 830 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d14115558936d84e16ec7efd2f4f45
a6268986699c86e577ca5589a0fcf2880661f7ea
68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
GET /cache1/hp/v_250/images/flags-hd2022.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TBVqRoB02EDyfVmR0znW/MNspedH9bXBBIhZ5E5yqJ3jEmjjuff+OOrTSAXRCNf4skiXRHJz8GQ=
x-amz-request-id: Y4J7D71XBE8X7XME
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 15:06:18 GMT
etag: "69d14115558936d84e16ec7efd2f4f45"
x-amz-meta-sha256: 68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
x-amz-meta-s3b-last-modified: 20220920T144902Z
x-amz-version-id: otKQpwD91003SDrhrFJwP7u7k7kYEK4v
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 16703
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Hash 1f385d1ea2e1c06cda506bafc17a4a94
0dc0ebf0502018976383091908379054b5a3cfed
e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 12 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
Hash 29fc9a022db0944788f337098564067c
1046acada133ed9881091434e4b7936ea9bad507
85b613f8e08d06154e4b4b8179c6f109e17aa92a63f93a00349a56511b669cb9
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:17 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763833341ad40b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash e20f6e1c0681c07f69d37c428c0684d3
4aa36ecd12f2e7d3592807a0a3879914252faeb5
c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31844, version 1.0\012- data
Hash 9d7f82d9510b57b2d00f328d87ef3869
2a031c8ae51e62d8dc30fa0bb47f57a3695224c1
c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
GET /cache1/fonts/madera2/Madera-Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: d6poWwwwj9abPq/ES4oNvQTY1I4y2hMv1EdVnTf07kpNv7a2N1tn1ySx9pMV8KWPcG6wwi1unZI=
x-amz-request-id: K8KWP566ERFJBVE1
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:29 GMT
etag: "9d7f82d9510b57b2d00f328d87ef3869"
x-amz-meta-sha256: c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
x-amz-meta-s3b-last-modified: 20220203T192736Z
x-amz-version-id: VMc3owpvYk5nHUjZ.xX4Wq.u2RPawBMa
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31844
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Hash db85a0ddc6f6973df4bc98a1b2ed9d65
c6bba41edc8501b76aed9bff58597edef1c2502f
26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:17 GMT
date: Tue, 01 Nov 2022 22:52:17 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
23.38.201.117200 OK 2.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (8887), with no line terminators
Hash 1d2137aea2d4a9fca68a7b135e2cb9f3
e97ca29d385352fc286f1711bbdc45584161a316
ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
GET /cache1/hp/v_250/js/waypoints.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9lFezzLGhy5accCsGYcyDyckewdqZE6Df8H6ytpCQuSWrMcKQiCNX7H2YhvOccJk0UxxBNsnPHo=
x-amz-request-id: 5E8B8NFW9H2EH0EG
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: OAj0wpBsOOe0r5kxCMrusioy2xpCNFTE
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 2635
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
23.38.201.117200 OK 9.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 17232e2fe3e81d95e6f1cb7c4d5b9e57
510e1569ab0187ef5712a7630d673536e8c519ac
4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
GET /cache1/hp/v_250/js/slick.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: JlrnGLJ6W/UxGhdYSC8CH8xghXbLPjPNChhyxW9KZUfoGKU71X7LjptjjFXM/+ltoatY8umxNmk=
x-amz-request-id: 5E85XVS4GHHW1N8V
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: YetQublaGzZokQiJoN6572gELuBFGXNz
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 9568
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1308767082&cid=665293542.1667343137&ul=en-us&sr=1280x1024&_s=1&sid=1667343136&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166734313610000TNOTV415326358024Vb9&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1308767082&cid=665293542.1667343137&ul=en-us&sr=1280x1024&_s=1&sid=1667343136&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166734313610000TNOTV415326358024Vb9&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeav0&_p=1308767082&cid=665293542.1667343137&ul=en-us&sr=1280x1024&_s=1&sid=1667343136&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166734313610000TNOTV415326358024Vb9&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Tue, 01 Nov 2022 22:52:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/jquery-3.5.1.min.js
23.38.201.117200 OK 31 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/jquery-3.5.1.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (65451)
Hash e96fc85ce0a9070920b87b1072dd9e1d
afd9871c95caf6a26ae56e8c661789d00c510162
43e3ac1190912814c4b67ca3512c14745d1b41ce4740d3df73ead62561ca31dd
GET /cache1/hp/v_250/js/jquery-3.5.1.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: e54UiWLmzXf08GlFZQOwNLmjw248K84CkHRaduvC3FXRYfpbzInEkKvkHjrXjI1R6iLGr6Oq0hk=
x-amz-request-id: 5E8854E5AX589C4N
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:57 GMT
etag: "dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-meta-sha256: f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: 4aWmwoVEWdk_DjJ9o9.1cbellEQnGA4x
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 30950
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 2bdd805785f7c0c9812298bf21fc0848
ab4b7f2d183586c02e590f0d120a18774a977e81
5634932e8ea29b9825944ed873968875a85a781d764a13c7a2d3f25944bb3f28
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: max-age=152168
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:18 GMT
Etag: "63613ba0-2d7"
Expires: Thu, 03 Nov 2022 17:08:26 GMT
Last-Modified: Tue, 01 Nov 2022 15:30:40 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
23.38.201.117200 OK 5.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
IP 23.38.201.117:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 8d34d8eb122958024d6319988331e68a
e79ac403f17e240360be6f5540b8e7dd4a5bb9a6
f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
GET /cache1/hp/v_250/images/favicon/apple-touch-icon.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zS7BtNRDYQQ8zMJHkYU73f6dvQrBR4/jG9pLiV2+ECAWJIWOshj7kabGoiH6CH3KtwiY7bnoVT4=
x-amz-request-id: 85NM0JGJ52A3JDYD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:47 GMT
etag: "8d34d8eb122958024d6319988331e68a"
x-amz-meta-sha256: f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: Q2EbxWG5EYMEKf0iJz44VFOyVRrx2PXV
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4959
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
23.38.201.117200 OK 1.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
IP 23.38.201.117:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 6f73b13c53883dda26ced7b25bdf69ef
a4743cd740ba05c518cc754a3ab2715f6a23d762
4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
GET /cache1/hp/v_250/images/favicon/favicon-16x16.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: q9Fv8gRd6+b337XtoTpjf0lXha/xDl8MDnEInDhNQHkRs5JLXmey+zDMgkhZFANHULI0QMT1Yxk=
x-amz-request-id: 85NZMGGA0Z9XBNVH
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:48 GMT
etag: "6f73b13c53883dda26ced7b25bdf69ef"
x-amz-meta-sha256: 4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: 8hLOOpLCaCPyjH8.y7Cb39Asiw_Qt5uv
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1020
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
23.38.201.117200 OK 8.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
IP 23.38.201.117:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (58067)
Hash f953d5c71910c6ac52b43b461396312a
4f05910e43fe46b681cda2c81af778b5cd2d28b2
26a8ffd9765eda92a46eee6f2fd622e562ff124b394101c0118118ecca68c09c
GET /cache1/hp/v_250/css/style-newhp.min.css?v=1666787325 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: RfoPvqKXzaq3HI+vj6CoefVvf/rn2n4Ybn6GKCGCDpFtSSsEb3ieUmiGkL2VP8WWZnbBJe+joTo=
x-amz-request-id: YFFS03YFYAZHRAFH
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 11:22:06 GMT
etag: "eb05627089f6248f125b58845182861e"
x-amz-meta-sha256: a9f2f6aa1eda10879c3d4149f011cb5529f07bb4ab43c09bd61e5d81c88b0012
x-amz-meta-s3b-last-modified: 20220920T204059Z
x-amz-version-id: BS1lBzQzv2GL0QuRJy7fh_FPT1FP8XXD
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 8214
X-Firefox-Spdy: h2
vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
143.204.55.101200 OK 5.6 kB URL HTTP/2 vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2180)
Hash 9063f145c2dae4a82c0e222c24030ce6
9e4940c9904b5bfc86ee658e9861ba569bddf445
6c302cd49edb0312fec2c0903bf1a560d015bd907969ed866dde95c977e8ee5d
GET /box-c1417f7b48595d0dbca01c86f95d6dbb.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Tue, 18 Oct 2022 09:12:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "d2c298a660a1ee92f094a3d504e3e2e6"
last-modified: Tue, 18 Oct 2022 09:11:19 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v0vy8fUpN3YpXjdj9TOzTZZzso1ggJly130NIAavCyZYXEfTGvsBww==
age: 1258812
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
104.16.148.64200 OK 78 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash f1e687b418a03f55376f8dabb88831b1
59e7de3f39b2bd1d3cff8b1286f317d913a03fac
a8f0ed59befb0dc3da4e194382166d61584fc77442140cdbe734a761ca07ded2
GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3816
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383336adc2b4f9-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/social-icon.svg
23.38.201.117200 OK 5.1 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/social-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2125)
Hash 750fadde7ed0d8a59cb37992f69df5b7
c59d2044108d649ce3c10e1ae1084f20eaa7b6b4
aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
GET /cache1/hp/v_250/images/hp-2022/social-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: l1YrXFKswOQZpSqx+stH8lJL+DWQ6RcFIQ0aNHXxJZeQxjwSOLOKtG9cBtzfRtOx6ohGxo31gvc=
x-amz-request-id: P36XX1E9T43RS2YY
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:16 GMT
etag: "750fadde7ed0d8a59cb37992f69df5b7"
x-amz-meta-sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: nRgy5otmVkjeop3w29cK3B5sQq32WsQv
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 5136
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
23.38.201.117200 OK 5.5 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
IP 23.38.201.117:0
File type gzip compressed data, from Unix\012- data
Hash 66aefebf29adb3b78953090e145ab331
bff9b10c77bae251f6d98b97d0c5186fe574472e
e997e50fdda85c84b5874c3aeec1084a1a2a54bfa04b01f3bbdfebb96f9cccdb
GET /cache1/hp/v_250/images/hp-2022/reliability-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LzbecIzhwvBoQ7BWygJldYYYM6We6Ivc0s9yeELNTux/bvYN3Yt+4RBXo+6y+IJIMyE0XHUm5Ew=
x-amz-request-id: P36RY7P00A1N12Z3
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:15 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: YLr9yDu4y6poTawQ7WP7MojiYbCk.0rk
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
23.38.201.117200 OK 3.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Hash 7dc0a2667b5de60ff9a96c6ebcca9a7b
cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
GET /cache1/hp/v_250/images/hp-2022/reputation-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ihx3lBRD+qT3COxacNhADs25840cosw7qQjWNARp2NEbhy2sQGGC6bcDQn8R8zkCgoXq9Qg6fjs=
x-amz-request-id: P36HSNCC0CCGYRB4
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:16 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: sr2qY5Yx1bOPXsrLw8D.ycZfr6bVRigS
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
23.38.201.117200 OK 7.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
IP 23.38.201.117:0
Hash a52bd4137bb863b81642fe856ce3b51f
804008e80f34af3e7f60ba3e60f0f463acadba34
72645233f8ca18d82dfe2649355ebca1fb76f8eb2d3cfa293ec7b13b15ebfcf9
GET /cache1/hp/v_250/images/hp-2022/globe-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666787325
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zEZql33RdFD015QzhOK47P8wzFLSFm/IcV6Blksieco1+krqTMPmOXsvpWNCUzjqRe5kvLJGWuU=
x-amz-request-id: P36N4Q9BMY5E42PD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:11 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: qXWG2jxf6eO4.Ee8JU9epi0qWNdNYdex
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
IP 23.38.201.117:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socials \012- data
Hash 379e2da7fbcf7192af131dab8664fa44
191a7c64f76a91ab3ac7418ef12e16155ffe916b
8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
GET /cache1/fonts/socials/socials.ttf?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: VqG8Xoz+PNUpc5ek0EHqjuCErGzCqKx3w2Mb/U3IRKb02qkQEhEC1dsBPpa357J3lamLhU00/dI=
x-amz-request-id: ABP0NYTQMK8XRN5V
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "379e2da7fbcf7192af131dab8664fa44"
x-amz-meta-sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: 64DCSoh81dgHS5BU7pf3T55ups5kO3ge
accept-ranges: bytes
content-type: application/x-font-ttf
server: AmazonS3
content-length: 2232
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
138.128.247.123200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 138.128.247.123:0
File type Unicode text, UTF-8 text, with very long lines (61000), with no line terminators
Size 142 kB (142347 bytes)
Hash 09e8b17fe8fb4fd2f6bd3e814adeb976
05f09e2001c9bfc7bd0ada6831b4edaeb1fc2f08
fd0952431ab51c8c8a234b8df7917f7b0bba2a67c06e9fa27697ce7b476fb571
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Wed, 02 Nov 2022 22:52:18 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 18:06:07 GMT
etag: "6aab4-6361600f-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142347
date: Tue, 01 Nov 2022 22:52:18 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.209.212200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.209.212:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 387
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:fd70748c-8efd-4b7f-a0f0-36ea0c443ced
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
IP 23.38.201.117:0
File type Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Hash b63c50623057857a66071527d3d19e34
60a97e3734cf76a48f1605076590257bfd370f5e
1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 7b4d0389cd3bdfc36b615a0b060eed3c
a13bee7f9604f7dc3b55ddbbad915fd605ab9a4b
bd7cccf2a2ad2ff6c00b8fd8238da52e11e19f36d1e30447f7c4561576788a57
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-type: application/x-javascript
content-length: 14384
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: e00Dic0738NrYVoLBg7tPA==
last-modified: Tue, 14 Dec 2021 12:34:59 GMT
etag: 0x8D9BEFE24E4B72A
x-ms-request-id: 42befd17-e01e-00f6-6ee7-f0fff0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3388
expires: Wed, 02 Nov 2022 02:52:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383337cef5b4f9-OSL
X-Firefox-Spdy: h2
script.hotjar.com/modules.cb462d06d2679bf31ed1.js
143.204.55.96200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.cb462d06d2679bf31ed1.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash feb3446cd8de324767c53befc4304b74
48a91146c1f74e059b5e5f6b765220db6ab05cf6
ff8b08dc220d8c19827f1b4bc0ce6acd4b9409752c421f51939cddd337048d88
GET /modules.cb462d06d2679bf31ed1.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66139
date: Tue, 01 Nov 2022 13:20:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "feb3446cd8de324767c53befc4304b74"
last-modified: Tue, 01 Nov 2022 13:19:46 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: izIRxaiMD3LXN3O8BNO55fMYl75QuwaKBbQLl8cgPYAc1zAs-Lfp3A==
age: 34332
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.209.212200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.209.212:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 478
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:fd70748c-8efd-4b7f-a0f0-36ea0c443ced
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37703)
Hash 71e3871d634182b17c1b15ca3d58f7e4
4063bf0afb25a8c96bdd33f6d24ca832067c7806
c20f40887a2fdad6ea7070063acf1150881e18405c91338338e88be4195583b5
GET /scripttemplates/6.27.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-type: application/json
content-length: 11602
content-encoding: gzip
content-md5: ceOHHWNBgrF8GxXKPVj35A==
last-modified: Mon, 29 Nov 2021 20:30:52 GMT
etag: 0x8D9B377239B4147
x-ms-request-id: a3c3cc4e-901e-00f9-2cec-ec1206000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383339a966b4f9-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 3.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
File type gzip compressed data, was "otFlat.json", last modified: Tue Nov 9 09:50:49 2021, from Unix\012- data
Hash 5521c152bc1efa1baa93129bb8717e19
d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2588672-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-range: bytes 2588672-2625182/2625183
content-length: 36511
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 9b7065208b029fccbd2f7164cdbad539
132f292161be5e5eaaa8108a04839db2ee2c2f21
f563863b5a68f1562706acb3aa68edca26c2e81f81a09ff76cb23796684d582a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146371
Date: Tue, 01 Nov 2022 22:52:18 GMT
Etag: "63612c4c-1d7"
Expires: Thu, 03 Nov 2022 15:31:49 GMT
Last-Modified: Tue, 01 Nov 2022 14:25:16 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1HB-3QHl7NMkH1hXQNaV68sHgPqyDgBHZyk01F1YxpEBRM8ZhxdyLA==
Age: 3993
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 01 Nov 2022 22:52:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 2767
x-timer: S1667343139.129913,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
142.250.74.168200 OK 104 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
IP 142.250.74.168:0
File type ASCII text, with very long lines (35498)
Size 104 kB (103508 bytes)
Hash 753580cc08fdee463260191bd6b148b4
2a43378228ac9411a0f197cf805a30e248b48a3f
7f4af3a3608570f53149b4c89e8d12761df8513fc2c0bf285191a38ac18eeab1
GET /gtm.js?id=GTM-N7SQ5DP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 22:52:19 GMT
expires: Tue, 01 Nov 2022 22:52:19 GMT
cache-control: private, max-age=900
last-modified: Tue, 01 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103508
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/en.build.json
104.238.215.8200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 104.238.215.8:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 13e3192ec8661075f563348727c205ab
75b80b84765af0ccf8cddf9b1483e7a90d514566
304c1959410b4ae2b9d554465e7f5da59aad27de1265bf640ac7c9de981e068c
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Wed, 02 Nov 2022 22:52:19 GMT
content-type: application/json
last-modified: Tue, 01 Nov 2022 18:07:03 GMT
etag: "3b8a8-63616047-73b8cca57a4dfaaa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25896
date: Tue, 01 Nov 2022 22:52:19 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dab408107427df72b68226190b8904e2
a64b61981f7ce62d857c86a48837e640dfb36145
b21f6ea0314fb4ade20eaa9588fce167660cc1143bc28ccf87df8ce1463ac1c7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B21F6EA0314FB4ADE20EAA9588FCE167660CC1143BC28CCF87DF8CE1463AC1C7"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11170
Expires: Wed, 02 Nov 2022 01:58:29 GMT
Date: Tue, 01 Nov 2022 22:52:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dab408107427df72b68226190b8904e2
a64b61981f7ce62d857c86a48837e640dfb36145
b21f6ea0314fb4ade20eaa9588fce167660cc1143bc28ccf87df8ce1463ac1c7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B21F6EA0314FB4ADE20EAA9588FCE167660CC1143BC28CCF87DF8CE1463AC1C7"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11170
Expires: Wed, 02 Nov 2022 01:58:29 GMT
Date: Tue, 01 Nov 2022 22:52:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dab408107427df72b68226190b8904e2
a64b61981f7ce62d857c86a48837e640dfb36145
b21f6ea0314fb4ade20eaa9588fce167660cc1143bc28ccf87df8ce1463ac1c7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B21F6EA0314FB4ADE20EAA9588FCE167660CC1143BC28CCF87DF8CE1463AC1C7"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11170
Expires: Wed, 02 Nov 2022 01:58:29 GMT
Date: Tue, 01 Nov 2022 22:52:19 GMT
Connection: keep-alive
zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
54.230.111.77200 OK 30 kB URL HTTP/2 zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
IP 54.230.111.77:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 1654f0dd5a5d17ae2084d8bdf5c43a1c
10b05154ca19428f11c643258a13b145dc8d074c
c7c97139f185f0e4b70d1d77780fd0b913ccc1c90f108dcf8af69c137c5ab0e0
GET /i/3c2d8da22b7aa416fab4696fbd547cc9.js HTTP/1.1
Host: zero.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 29659
content-encoding: gzip
server: Caddy
date: Tue, 01 Nov 2022 19:23:53 GMT
cache-control: max-age=43200
expires: Wed, 02 Nov 2022 07:23:52 GMT
etag: "13cd9-8R36yXcfV1rrMSad8JN5R8CsNW0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GQDqLpVE1EeO0YaT-G6qmzbgzotR5AXxkd_DuOsHlL_tRsPjbSVmcw==
age: 12507
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/general/js/seo.js
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/others/general/js/seo.js
IP 23.38.201.117:0
File type C source, ASCII text, with very long lines (366), with CRLF line terminators
Hash f22c155ea9a463fee325cc2f52cb2c5b
67913d0b1cdaa875752a36f5c22fc21884cd6b22
115d84510217e73948fabbc05aa6041071564a86dee31d7abb282d764ff4f7a7
GET /others/general/js/seo.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: IbCrnl2jHtt3ARkbdDtJdY1t/iT+eA6L1pkPIeISKQrHurrfYzN0CE54ZOlbBo/E9qrm76WQ/M0=
x-amz-request-id: 69QVGW75ZMC6VK3N
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2017 14:31:16 GMT
etag: "bb01557076c5f1cc6976325a60a0be7c"
x-amz-meta-s3b-last-modified: 20170110T142820Z
x-amz-version-id: SSqunX8tv_w4z_1vK9cbzCWNqGZTmd8y
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Tue, 01 Nov 2022 22:57:19 GMT
date: Tue, 01 Nov 2022 22:52:19 GMT
content-length: 2209
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 01 Nov 2022 03:35:20 GMT
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -hqYx_WavDi_JLawMAbvY459_6jNnJgty1dTfbTkggr_K35cUYI7fQ==
Age: 69419
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6a873f134128958ba9bf38b5e041bb37
802a4a4e6a3e167809ae542d15dee32d7edc2ba1
f83835ea1fef7929ddf68cb30e16e257b35dff4234274016c8697184c43e914e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sc-static.net/scevent.min.js
54.230.82.240200 OK 12 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (27626), with no line terminators
Hash 1f0c68af0b1a3417320edf3397a92da8
da2b9d033dcfed8547c5ab2322cee4c833e36a65
066a2fe40523eeadd90df81e815fbe7420d5c2e8b851a81b80e408925c0ce1da
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11952
server: CloudFront
date: Tue, 01 Nov 2022 22:52:19 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Wed, 02 Nov 2022 22:36:44 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5_5mcbTz7u430acgXDDcqG51ec8QJDfyY71-R88gyoR67fH654-Ajg==
X-Firefox-Spdy: h2
9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
142.250.74.70200 OK 398 B URL HTTP/2 9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (562), with no line terminators
Hash 5a9998dc3732f15d817b24017d169287
825636fb778c372628fbf3f119c26cd8002631db
d5c63dc0ce384f7306f7e3fc43f893fd13e2a71fcfebdc6af26a039e976dc810
GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1
Host: 9944765.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:19 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 398
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 01-Nov-2022 23:07:19 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c766b5b0aafa6f68e66e00a03c66eb35
99a58649c1e6f3f36c63ebea11f12b369807d29a
d7aaf8e6181853d7a94d9fcde181b1dace7b62a3d71d63bb2786630c0481f31e
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5275
Cache-Control: max-age=140761
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:19 GMT
Etag: "63611162-1d7"
Expires: Thu, 03 Nov 2022 13:58:20 GMT
Last-Modified: Tue, 01 Nov 2022 12:30:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6a873f134128958ba9bf38b5e041bb37
802a4a4e6a3e167809ae542d15dee32d7edc2ba1
f83835ea1fef7929ddf68cb30e16e257b35dff4234274016c8697184c43e914e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
web1.acsbapp.com/apps/app/dist/media/logomono.svg
138.128.247.123200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP 138.128.247.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Wed, 01 Nov 2023 22:52:19 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Tue, 01 Nov 2022 22:52:19 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
c0.adalyser.com/adalyser.js?cid=etoro
54.77.147.26200 OK 12 kB URL HTTP/2 c0.adalyser.com/adalyser.js?cid=etoro
IP 54.77.147.26:0
File type ASCII text, with very long lines (31834)
Hash 5301983312500f1fa818e866832a8ede
96c054b07049abe3b764dbcf0f8189055de98e78
24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
GET /adalyser.js?cid=etoro HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a3899eec29d0285a13c11dcee137667
e527268dfb5cdba7a18ebaf5e0e65432e629f88d
f18b8b481151bb28eb1afef0de91cf17a19c81399c3f41aebeeb259f0bf92dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4719
Cache-Control: max-age=116128
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "6360b355-1d7"
Expires: Thu, 03 Nov 2022 07:07:48 GMT
Last-Modified: Tue, 01 Nov 2022 05:49:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a3899eec29d0285a13c11dcee137667
e527268dfb5cdba7a18ebaf5e0e65432e629f88d
f18b8b481151bb28eb1afef0de91cf17a19c81399c3f41aebeeb259f0bf92dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4719
Cache-Control: max-age=116128
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "6360b355-1d7"
Expires: Thu, 03 Nov 2022 07:07:48 GMT
Last-Modified: Tue, 01 Nov 2022 05:49:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
cf-assets.hcaptcha.com/captcha/v1/12085f6/hcaptcha.js
104.18.22.122200 OK 81 kB URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/12085f6/hcaptcha.js
IP 104.18.22.122:0
File type Unicode text, UTF-8 text, with very long lines (57362)
Hash f63f60ffb7d2453b1e02177e9ba48ce8
8323597bd2627557bb7a3d2e074a2a779bfa3edf
4a64583721e7d064efcc631eec015ef43ebc096b09b001b2525c34ae4a0aee8b
GET /captcha/v1/12085f6/hcaptcha.js HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
Cookie: __cf_bm=sakUwUekIWGhxmip7Uvt2EcEnpAXIq9lWTYRTpLCyEA-1667343139-0-ASvKZQagZTxIz+MztKXjCjr4lI1iCZwEayrk/QDAbZt56MejtvVGNpcW7F47ACjoIEj4gQiqeZe0ZLmjmjvvWh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: application/javascript
cf-ray: 763833418cda1c16-OSL
access-control-allow-origin: *
age: 489672
cache-control: max-age=1209600
etag: W/"5ab4b08736cc84a24e057a5ac94d054f"
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 3529bf84e9522012233c3dd2a59fdfe8.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: VBvmFlsJ1wGmcIk6P4MJZX1kOXc_C3-M0GyB5OTcQh7SU2QL91Nfxg==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a3899eec29d0285a13c11dcee137667
e527268dfb5cdba7a18ebaf5e0e65432e629f88d
f18b8b481151bb28eb1afef0de91cf17a19c81399c3f41aebeeb259f0bf92dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4719
Cache-Control: max-age=116128
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "6360b355-1d7"
Expires: Thu, 03 Nov 2022 07:07:48 GMT
Last-Modified: Tue, 01 Nov 2022 05:49:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 456
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
access-control-allow-origin: https://www.etoro.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgRHAQAQEwIrMPG68KwdJqlB8dtuLr17KpH+CZEi3leSMWRIPWLsacR2uOHt+52Ye7zIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 7
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b61a5b3cd78ee110e0322dc3a3f59149
a1db8da18309ab033f6a8da7c442a6525e6089b7
a7325ddf795400e5ddae1839bd7034e668f378def487d4e2ce22725bfae152c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2395
Cache-Control: max-age=170319
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "63619019-1d7"
Expires: Thu, 03 Nov 2022 22:10:59 GMT
Last-Modified: Tue, 01 Nov 2022 21:31:05 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.5 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8656), with no line terminators
Hash 6cff2cb49ee772adf066904fd18efd9a
8b876016198b0fc9862d2b6e29a80251c5422e72
85d26923c638ce50f36f7b69f9f50d2a6d6863abed574af143e24a14a343f9d2
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "0d5508c59e34b5d35cde5aea2aa1c2fd:1665301953.026714"
Last-Modified: Sun, 09 Oct 2022 07:50:08 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Tue, 01 Nov 2022 23:12:20 GMT
Date: Tue, 01 Nov 2022 22:52:20 GMT
Content-Length: 3471
Connection: keep-alive
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 471 B URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (996)
Hash e1ec75f64605dcf47d74531bbbd3c525
f5847f130a0353d5de55e058d23c83b7b4d145a9
697f3411ba82530b539f0f22be6bedbd4de261727e3632f259884c4487848124
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Nov 2022 19:12:50 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=73327
date: Tue, 01 Nov 2022 22:52:20 GMT
content-length: 471
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/unip/1005612/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1005612/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58483)
Hash e5328a7e044435832d695c043e7b426d
0970cbeaea50c43b458a53d782b65328d6fb59e3
257e4e0c753eabc7b2ff076077d99446dd86556dd74a066888be5cd80a975144
GET /libtrc/unip/1005612/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xR6zVH1bP+wBbSo88vvxTCyL1PDc9FHMRcmK3C50v+ePP87xx1YcAx6DaUSMjijgIRFLDdHQBU8=
x-amz-request-id: S5VKHKBFGTHNNDWG
x-amz-replication-status: PENDING
last-modified: Sun, 30 Oct 2022 11:37:28 GMT
etag: "f50f326c2373eca8b7e149f872fd9d92"
x-amz-version-id: lNGvvp3oe96TOBqtMeA_dbvDIgHxhEF8
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 01 Nov 2022 22:52:20 GMT
via: 1.1 varnish
age: 64
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1667343141.527485,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 12
content-length: 17942
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
Hash 55a96132e41533d9b80d27a07b2c177c
083f809349b9ebdb66223314d817ebe27e852720
90351ba5a092c4dc4a69e0909932163ad327cd3d2ac924d87c5bfc3f905d0ed6
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Tue, 01 Nov 2022 22:52:20 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1645-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 01 Nov 2022 22:41:09 GMT
expires: Wed, 02 Nov 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 671
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 790
Cache-Control: max-age=148550
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 16:08:10 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1&z=1209991267
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1&z=1209991267
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1&z=1209991267 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash babb0d09b27851a7c080c2843211eb91
cf41327a7f5a83c8343e85741bc34cb53050449a
adc4ea8ee48fd9337d951234bd345899ddb116cad409265ee2cf01733ac82e84
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11376
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=02C50E9854A468EA064F1CD755516977; domain=.bing.com; expires=Sun, 26-Nov-2023 22:52:20 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 53C27AA142FA4C76B7C988FF417A8822 Ref B: OSL30EDGE0213 Ref C: 2022-11-01T22:52:20Z
date: Tue, 01 Nov 2022 22:52:19 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c1af38ec0609b645477f3a9fe1054f30
590be080fbdea4626418c10472ffaada28f2d50a
6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.34200 OK 399 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (561), with no line terminators
Hash aafbe00c9237405a89209c023ecf0e9f
73cedd4fd162051ba33aa05103826a641e11b888
5c63f827ce3f4a9601091587fd7b5a85afdf1443a0b93fd06c4e8a226bc6b90c
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:20 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2280&ck=1&ref=https://www.etoro.com/&ap=7&be=305&fe=1347&dc=678&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667343136943,%22n%22:0,%22f%22:105,%22dn%22:107,%22dne%22:150,%22c%22:151,%22s%22:155,%22ce%22:162,%22rq%22:162,%22rp%22:285,%22rpe%22:285,%22dl%22:290,%22di%22:664,%22ds%22:678,%22de%22:683,%22dc%22:1346,%22l%22:1346,%22le%22:1350%7D,%22navigation%22:%7B%7D%7D&fcp=535&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2280&ck=1&ref=https://www.etoro.com/&ap=7&be=305&fe=1347&dc=678&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667343136943,%22n%22:0,%22f%22:105,%22dn%22:107,%22dne%22:150,%22c%22:151,%22s%22:155,%22ce%22:162,%22rq%22:162,%22rp%22:285,%22rpe%22:285,%22dl%22:290,%22di%22:664,%22ds%22:678,%22de%22:683,%22dc%22:1346,%22l%22:1346,%22le%22:1350%7D,%22navigation%22:%7B%7D%7D&fcp=535&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=2280&ck=1&ref=https://www.etoro.com/&ap=7&be=305&fe=1347&dc=678&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1667343136943,%22n%22:0,%22f%22:105,%22dn%22:107,%22dne%22:150,%22c%22:151,%22s%22:155,%22ce%22:162,%22rq%22:162,%22rp%22:285,%22rpe%22:285,%22dl%22:290,%22di%22:664,%22ds%22:678,%22de%22:683,%22dc%22:1346,%22l%22:1346,%22le%22:1350%7D,%22navigation%22:%7B%7D%7D&fcp=535&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 22:52:20 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 763833446ebffac8-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=4089b111a4dd3f25; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 790
Cache-Control: max-age=148550
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 16:08:10 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
s.yimg.com/wi/config/10118123.json
188.125.94.204200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10118123.json
IP 188.125.94.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21e2ae430121102daa2c1810b5cf910b
ffef080cc2eacc942a9bcb67561f790c34ed3fb0
a44e6042de416123c90209eb39d7fdbe79665819ffbb07646cc939bb2dfa84e0
GET /wi/config/10118123.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XCjCRbXBuroo9P4Qdng7KZSS2XmSUTC15Lb4I3YrteGFeZ/LlS/GoBwPokDkAO2sQc9C34FP8a0=
x-amz-request-id: 1MBCDJRMDFWJ41AK
date: Tue, 01 Nov 2022 22:22:56 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Oct 2022 22:00:29 GMT
x-amz-expiration: expiry-date="Sat, 18 Nov 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "21e2ae430121102daa2c1810b5cf910b"
x-amz-server-side-encryption: AES256
x-amz-version-id: PPtAZrGHQpA8i..pPqBYS_TW.49B0pC2
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 1765
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c1af38ec0609b645477f3a9fe1054f30
590be080fbdea4626418c10472ffaada28f2d50a
6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667343139662&hl=2&op=0&ag=1317291471&rand=231569922259105082127888817811222151207291526250685500528252810052266064926&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=jxS7gdhJRA&pto=2720&ver=48&gac=-&mei=&ap=&duid=1.1667343139.aHsY6koQNJX2zlCc&suid=1.1667343139.8SDSVnFUTGbREgcx&tuid=1.1667343139.7WHbVqRsFxCC3fgl&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=63%2C2481%2C34&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 869 B URL HTTP/2 one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667343139662&hl=2&op=0&ag=1317291471&rand=231569922259105082127888817811222151207291526250685500528252810052266064926&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=jxS7gdhJRA&pto=2720&ver=48&gac=-&mei=&ap=&duid=1.1667343139.aHsY6koQNJX2zlCc&suid=1.1667343139.8SDSVnFUTGbREgcx&tuid=1.1667343139.7WHbVqRsFxCC3fgl&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=63%2C2481%2C34&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (2486), with no line terminators
Hash 473b1d9843007221dddb3ea95a92bb60
8ad2f5642b017ce873a14d989ba863163ee931f4
972b7db01d00b3b53081e86db24ae177752f66d2fa6f2d8a8355bd07719f08d3
GET /ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1667343139662&hl=2&op=0&ag=1317291471&rand=231569922259105082127888817811222151207291526250685500528252810052266064926&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDM1MjZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFs3MSwic291cmNlVVJMPWUsdGhpcy5saW5lPW59ZnVuY3Rpb24gIl0sWyJjYiIsIjAsMCwwLDAsMiwxLDAsMCwwLDMsMiwwLDIsMSwwLDAsMSwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsNCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMSwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDEsMCw1Il0sWy0xLCJMaW51eCB4ODZfNjQiXSxbLTIsIi0iXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiTlJFVU1cIixcIm5ld3JlbGljXCIsXCJfX25yX3JlcXVpcmVcIixcIk9uZVRydXN0U3R1YlwiLFwiT3B0YW5vbldyYXBwZXJcIixcIm90SGFuZGxlTGVhcm5Nb3JlXCIsXCJlVG9yb0Nvb2tpZUNvbnNlbnRcIixcImV0b3JvX2hwXCIsXCJoalwiLFwiX2hqU2V0dGluZ3NcIixcImRhdGFMYXllclwiLFwiZXRvcm9Mb2dnZXJBcHBzXCIsXCJnZXRVc2VyR3VpZHNcIixcInNldEVuY29kZWRJdGVtXCIsXCJlbmNvZGVJdGVtXCIsXCJHdWlkR2VuZXJhdG9yXCIsXCJnZXRFbmNvZGVkSXRlbVwiLFwiZGVjb2RlSXRlbVwiLFwic2FmZUpTT05QYXJzZVwiLFwiZXRvcm9Mb2dnZXJcIixcImlcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcIkxhenlMb2FkXCIsXCJlcXVhbEhlaWdodFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJjc3NfYnJvd3Nlcl9zZWxlY3RvclwiLFwiZVRvcm9fYWlyZHJvcFwiLFwibG1cIixcIm1peHBhbmVsXCIsXCJnXCIsXCJ3XCIsXCJzXCIsXCJvXCIsXCJtXCIsXCJoXCIsXCJiXCIsXCJjXCIsXCJBT1NcIixcIkNhcm91c2VsXCIsXCJGYW5jeWJveFwiLFwiUGFuem9vbVwiLFwiaGpTaXRlU2V0dGluZ3NcIixcImhqQm9vdHN0cmFwXCIsXCJoakJvb3RzdHJhcENhbGxlZFwiLFwiaGpMYXp5TW9kdWxlc1wiLFwiV2F5cG9pbnRcIixcInNsaWNrXCIsXCJqUXVlcnkzNTEwNzY3NDQ2Mzc4MzEyOTE1NTFcIl0sXCJuXCI6W1wic2F5c3dob1wiXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W1wiZGVzY3JpcHRpb25cIixcIm9nOnRpdGxlXCIsXCJvZzpkZXNjcmlwdGlvblwiXX0iXSxbLTEyLCJcInVuc3BlY2lmaWVkXCIiXSxbLTEzLCItIl0sWy0xNCwiLSJdLFstMTUsIi0iXSxbLTE2LCIwIl0sWy0xNywiMTYiXSxbLTE4LCJbMSwwLDAsMF0iXSxbLTE5LCJbMCwwLDAsMCwwLDAsMSwyNCwyNCxcIi1cIiwxMjgwLDEwMDIsMTI4MCwxMDI0LDEyODAsMTAyNCwxMjgwLDkzOSwwLDAsMCwwLFwiLVwiLFwiLVwiXSJdLFstMjAsIi0iXSxbLTIxLCItIl0sWy0yMiwiW1wiblwiLFwiblwiXSJdLFstMjMsIisiXSxbLTI0LCJbXSJdLFstMjUsIi0iXSxbLTI2LCItIl0sWy0yNywiLSJdLFstMjgsImVuLVVTLGVuIl0sWy0yOSwiLSJdLFstMzAsIltcInZcIiwwXSJdLFstMzEsImZhbHNlIl0sWy0zMiwiMCJdLFstMzMsIi0iXSxbLTM0LCItIl0sWy0zNSwiWzE2NjczNDMxMzk2MzIsMF0iXSxbLTM2LCJbXCI1LzRcIixcIjUvNFwiXSJdLFstMzcsIi0iXSxbLTM4LCJjLC0xLC0xLDEwNSwwLDIsMCw0MywxMSwxMjMsLTEsNCwsNTM1LDI2OTAsMjY5MCJdLFstMzksIltcIjIwMTAwMTAxXCIsMCxcIkdlY2tvXCIsXCJOZXRzY2FwZVwiLFwiTW96aWxsYVwiLFwiMjAxODEwMDEwMDAwMDBcIixudWxsLGZhbHNlLG51bGwsZmFsc2UsbnVsbCwwXSJdLFstNDAsIjM3Il0sWy00MSwiLSJdLFstNDIsIjE3NzAwNTAwODEiXSxbLTQzLCIwMDAwMDAwMTAwMDAwMDAwMDExMTEwMDEwMCJdLFstNDQsIjAsNSwwLDUiXSxbLTQ1LCItIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRuLGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWy01MCwiLSJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWyJkZGIiLCIwLDAsMCwxLDEsMywwLDAsMCwwLDAsMCwwLDAsNCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMSwwLDAsMSwwLDAsMCwwLDIsMCwwLDIyLDAsMSwwLDAsMCwxIl0sWyJibmNoIiw2OV0sWyJhYm5jaCIsNzBdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=jxS7gdhJRA&pto=2720&ver=48&gac=-&mei=&ap=&duid=1.1667343139.aHsY6koQNJX2zlCc&suid=1.1667343139.8SDSVnFUTGbREgcx&tuid=1.1667343139.7WHbVqRsFxCC3fgl&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=63%2C2481%2C34&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Tue, 01 Nov 2022 22:52:20 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=382da34759753714bb0c88ba238df9d7; Max-Age=29030400; Path=/; Expires=Tue, 03 Oct 2023 22:52:20 GMT; HttpOnly; Secure; SameSite=None
content-length: 869
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e762ef824b539078066286a5d4603755
0ee43db811f51c57e60d52f3afdecb37daa4a1f4
40a4ad1532315efea987307a18412922a725a070eed04af57cd09ab7c8d9d91e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeav0&_p=220304834&_gaz=1&ul=NA&cid=955488745.1667343140&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667343139&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeav0&_p=220304834&_gaz=1&ul=NA&cid=955488745.1667343140&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667343139&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V>m=2oeav0&_p=220304834&_gaz=1&ul=NA&cid=955488745.1667343140&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1667343139&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Tue, 01 Nov 2022 22:52:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1
64.233.161.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1
IP 64.233.161.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V&cid=955488745.1667343140>m=2oeav0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Tue, 01 Nov 2022 22:52:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4eb31b2eac839790190300791c6be3e9
f6f1e201e8a55b7a82ec685ad497d9eb1be97313
a3e5af010f9240f94432b8261bdb39fd73d8d310d0c05d3197255ab85b2b2701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6144
Cache-Control: max-age=135881
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "6360faed-139"
Expires: Thu, 03 Nov 2022 12:37:01 GMT
Last-Modified: Tue, 01 Nov 2022 10:54:37 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4eb31b2eac839790190300791c6be3e9
f6f1e201e8a55b7a82ec685ad497d9eb1be97313
a3e5af010f9240f94432b8261bdb39fd73d8d310d0c05d3197255ab85b2b2701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2361
Cache-Control: max-age=132098
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Etag: "6360faed-139"
Expires: Thu, 03 Nov 2022 11:33:58 GMT
Last-Modified: Tue, 01 Nov 2022 10:54:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash d8be717ba5d88f5d766b94a045cd5622
869112ca28e9a31c3356f12f4f6c10cc2fd90fa9
a3a68af183b9a628d9e79fc361c4057842d04d7018d605141ac169165fae44df
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 01 Nov 2022 22:52:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 01 Nov 2022 20:13:08 GMT
Expires: Wed, 02 Nov 2022 20:13:08 GMT
ETag: "869112ca28e9a31c3356f12f4f6c10cc2fd90fa9"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
104.18.22.122200 OK 54 kB URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
IP 104.18.22.122:0
Hash 1e52fbbd6a8f1ebbc0d750cb1eaaaa8e
b1d597770980893c608596daa62bac730598a1a5
d8ad82b41d241f3fde4503a9499071875d11b8618fd7b5b45698d8b5c923cc98
GET /captcha/v1/12085f6/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:19 GMT
content-type: text/html
cf-ray: 7638333feb6b1c16-OSL
access-control-allow-origin: *
age: 490767
cache-control: max-age=1209600
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 1cfafe71e396134dc106e8c1515876bc.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: sEViMmBXP0eSN-V79j3rXDk2EQJxexc7t36fpyJ1kwuBL2o1veHU-w==
x-amz-cf-pop: MRS52-P2
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=A8cVFEm9z6JXAiPmKnxF0l6kpwLYaOBDPH5FPuoAZoI-1667343139-0-ATQkfU2hHaZWqTYHMIsgDI3rKHa3yyWWF8780emXRlt3fJ1sxw4Xnqwj1ZHO6OxaXJ+Dwq5ccH0J9WZh+EZSqzA=; path=/; expires=Tue, 01-Nov-22 23:22:19 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
52.223.40.198302 Found 285 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
IP 52.223.40.198:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash a0a88ee2a38eea02437e7eea93a2e01b
ef0c8c514e64cdeddaa3b3b4a7994b271b2d4978
0325e2130d718b05a6e60e44959b8731f49396128baba95911b1a310fe2f2397
GET /track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=1c7c9f7b-f199-440b-8621-4c2d3012a709; domain=.adsrvr.org; expires=Wed, 01-Nov-2023 22:52:20 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
one.pointlessplay.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136ce9c431e9468e9d9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f11846f2e17071a10acf9f29f674a8a81dd562f3b1cfb717001843cde66955630562b9b00515d360c0b90b73f4877be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7f4173520aa78d79697b54a7f8482fdfa3f52898e55e77487efaa2a4c69e73b7cfc248b5038e523961caf488f0b46882d6f033d3774e92f3d6335f51b07f3aeccf563bf08ba4299014e354e6d10ac84ed7dd3d916976c9c735d26691d1f4e1dcfde90b54893daaa9a83b5b36a0c126c1a648b7595443820b0fc79284d881a4c570866ad194f5d038ae323b38876c20919787452adca82beb0da7dd0d93748e73494c58da1db94d8487e13ff6c73cc73de984dbd771a55f0435bd11541d3e597087f45ae5168582c870f7cc2bb2c1788cbda7be7b98bbe11f3e3edba50d108fe2580c53a7bdb978f542d9835ab4bf4fcc06c833df0fa747c5b42e845f7eb0bc98743e2161052c0c5f13a9e08f65cc0ad4312d25778ed12ba8ca7a79a9eb97a8a07e86a8bda894f2bdf0554e3afd4085b25a6f804a7b1cb01b0f172d9438d93e6ab1e89734d672cb37c9eb7adfb266f4671d63645b6e199cdcf6827f0215e8441ac68880e5e7d85953cfecfe28db&cri=jxS7gdhJRA&ts=852&cb=1667343140514
3.227.190.204200 OK 43 B URL HTTP/2 one.pointlessplay.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136ce9c431e9468e9d9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f11846f2e17071a10acf9f29f674a8a81dd562f3b1cfb717001843cde66955630562b9b00515d360c0b90b73f4877be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7f4173520aa78d79697b54a7f8482fdfa3f52898e55e77487efaa2a4c69e73b7cfc248b5038e523961caf488f0b46882d6f033d3774e92f3d6335f51b07f3aeccf563bf08ba4299014e354e6d10ac84ed7dd3d916976c9c735d26691d1f4e1dcfde90b54893daaa9a83b5b36a0c126c1a648b7595443820b0fc79284d881a4c570866ad194f5d038ae323b38876c20919787452adca82beb0da7dd0d93748e73494c58da1db94d8487e13ff6c73cc73de984dbd771a55f0435bd11541d3e597087f45ae5168582c870f7cc2bb2c1788cbda7be7b98bbe11f3e3edba50d108fe2580c53a7bdb978f542d9835ab4bf4fcc06c833df0fa747c5b42e845f7eb0bc98743e2161052c0c5f13a9e08f65cc0ad4312d25778ed12ba8ca7a79a9eb97a8a07e86a8bda894f2bdf0554e3afd4085b25a6f804a7b1cb01b0f172d9438d93e6ab1e89734d672cb37c9eb7adfb266f4671d63645b6e199cdcf6827f0215e8441ac68880e5e7d85953cfecfe28db&cri=jxS7gdhJRA&ts=852&cb=1667343140514
IP 3.227.190.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=jxS7gdhJRA&ts=852&cb=1667343140514 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=382da34759753714bb0c88ba238df9d7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Tue, 01 Nov 2022 22:52:20 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=8627700c-e436-462b-9fdc-bb4536e8d096; Max-Age=63072000; Expires=Thu, 31 Oct 2024 22:52:20 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: cb21b499220c20ff
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: 331693fdb2a10b8591c7f79b7cba92a906d3c1c4556eb39da183a01424df25e9
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=c5cd2455-6a81-4a52-a792-2f6cb3797cfd; Max-Age=63072000; Expires=Thu, 31 Oct 2024 22:52:20 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 33a30fe85b8632e1
strict-transport-security: max-age=0
x-response-time: 108
x-connection-hash: 331693fdb2a10b8591c7f79b7cba92a906d3c1c4556eb39da183a01424df25e9
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fbf6526bfaa1d7724a722f46104cb123
45105469c69bcddda6b68c8a8b31cc60513ad2e0
2abe5238de491f618eb932551e6cf1df158bc2bb2caeef2eacdacd9f1002e8a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.130200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:21 GMT
expires: Tue, 01 Nov 2022 22:52:21 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fbf6526bfaa1d7724a722f46104cb123
45105469c69bcddda6b68c8a8b31cc60513ad2e0
2abe5238de491f618eb932551e6cf1df158bc2bb2caeef2eacdacd9f1002e8a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bam.nr-data.net/events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3802&ck=1&ref=https://www.etoro.com/
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3802&ck=1&ref=https://www.etoro.com/
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3802&ck=1&ref=https://www.etoro.com/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1053
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 22:52:21 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 7638334838edfac8-OSL
Access-Control-Allow-Origin: https://www.etoro.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
cf-assets.hcaptcha.com/i/bc030dc/e
104.18.22.122200 OK 110 kB URL HTTP/2 cf-assets.hcaptcha.com/i/bc030dc/e
IP 104.18.22.122:0
Size 110 kB (109953 bytes)
Hash 6682168f3cbb6964c4397cf4fa524a1d
a1fd38ad077b1f524760a00c74b14746610bd087
0c531af7d3bd28d8f69b451b1566f7644d5c8e893dd837e92aad9c8851a014d3
GET /i/bc030dc/e HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
Connection: keep-alive
Cookie: __cf_bm=sakUwUekIWGhxmip7Uvt2EcEnpAXIq9lWTYRTpLCyEA-1667343139-0-ASvKZQagZTxIz+MztKXjCjr4lI1iCZwEayrk/QDAbZt56MejtvVGNpcW7F47ACjoIEj4gQiqeZe0ZLmjmjvvWh4=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:21 GMT
content-type: application/octet-stream
content-length: 109953
cf-ray: 763833494a2c1c16-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 114108
cache-control: max-age=1209600
etag: "6682168f3cbb6964c4397cf4fa524a1d"
last-modified: Wed, 26 Oct 2022 07:36:38 GMT
strict-transport-security: max-age=0
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: DxurcrxsokwCl6F5Z4jJkokOhy9oiA6I_B84MJ9xEtfcTLebCqBzsA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.old.min.js
23.36.76.121200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.old.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.old.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:02:26 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=10807
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
bat.bing.com/p/action/19002254.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/19002254.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/19002254.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=13893F86631C656B0E072DC962E964D8; domain=.bing.com; expires=Sun, 26-Nov-2023 22:52:21 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AF955798B5BF43F798C49C3FB4C64CCC Ref B: OSL30EDGE0213 Ref C: 2022-11-01T22:52:21Z
date: Tue, 01 Nov 2022 22:52:20 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=f92fc709-fa71-4605-a4fe-fbb31e3d93a7&sid=d79efec05a3711eda53707a29dbbf6de&vid=d79ef1905a3711ed8bedd3f5e2b62fd6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1350&evt=pageLoad&sv=1&rn=443873
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=f92fc709-fa71-4605-a4fe-fbb31e3d93a7&sid=d79efec05a3711eda53707a29dbbf6de&vid=d79ef1905a3711ed8bedd3f5e2b62fd6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1350&evt=pageLoad&sv=1&rn=443873
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=19002254&tm=gtm002&Ver=2&mid=f92fc709-fa71-4605-a4fe-fbb31e3d93a7&sid=d79efec05a3711eda53707a29dbbf6de&vid=d79ef1905a3711ed8bedd3f5e2b62fd6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1350&evt=pageLoad&sv=1&rn=443873 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=29B85A50147B647D1AC6481F158E6579; domain=.bing.com; expires=Sun, 26-Nov-2023 22:52:21 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CAC695DB623746A998C34841273C3540 Ref B: OSL30EDGE0213 Ref C: 2022-11-01T22:52:21Z
date: Tue, 01 Nov 2022 22:52:20 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6cc30cb3f907c9b1f0429e20a0ede92
eebc4a1a34d5cc3feb9b0ac8947515f871e83487
8b7ac6d0184c60d07b4d2d47617b8620657d327cfeeac6877ea5338cddd9e237
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0d15081827b4a11a2afb7d64231f802b
b019836f6b4e10553f017eb1c06d107686ef591c
d521842c820d76d2a92d9bc0560a39f8b2bf1cc8ebbb2664801beacf05fe19f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4149
Cache-Control: max-age=88556
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Etag: "636049dc-138"
Expires: Wed, 02 Nov 2022 23:28:17 GMT
Last-Modified: Mon, 31 Oct 2022 22:19:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0d15081827b4a11a2afb7d64231f802b
b019836f6b4e10553f017eb1c06d107686ef591c
d521842c820d76d2a92d9bc0560a39f8b2bf1cc8ebbb2664801beacf05fe19f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6223
Cache-Control: max-age=90630
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Etag: "636049dc-138"
Expires: Thu, 03 Nov 2022 00:02:51 GMT
Last-Modified: Mon, 31 Oct 2022 22:19:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 42 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iRPkpgSozpqTwcqo/C0SABvFIbJQvX1k6cMQYNZwjD/bDEZjjHwTh24Sb/T5xhxm6h1t51iJOk41p20mpQELAQ==
priority: u=3,i
content-length: 27337
x-fb-trip-id: 1679558926
date: Tue, 01 Nov 2022 22:52:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1
104.18.19.132200 OK 1.5 kB URL HTTP/2 cloudflare.hcaptcha.com/checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1
IP 104.18.19.132:0
File type JSON data\012- , ASCII text, with very long lines (2569), with no line terminators
Hash efa55fff7e0bd8ec1e5c238069d51133
1a08cb83717c21075839ca55dc5a0205a2ab4f1b
0b600efb311021307f06a411674cc88da76df7b12bcb98e94fbc6d1bf8a96f0d
POST /checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1 HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cf-assets.hcaptcha.com
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: application/json
access-control-allow-origin: https://cf-assets.hcaptcha.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent, challenge-bypass-token, cf-chl-bypass, challenge-bypass-token, challenge-bypass-host, challenge-bypass-path
access-control-allow-methods: GET, HEAD, POST, OPTIONS
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 763833442a3ab4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=955488745.1667343140&jid=18046605&_u=YADAAEAAAAAAACAEK~&z=757727671
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=955488745.1667343140&jid=18046605&_u=YADAAEAAAAAAACAEK~&z=757727671
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=955488745.1667343140&jid=18046605&_u=YADAAEAAAAAAACAEK~&z=757727671 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
35.190.43.134200 OK 6.1 kB URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
IP 35.190.43.134:0
Hash dfa4e88d3ae9ed1844510b48c47a9655
f9ced95839e5ef0c9ae3dac6a875504dcd371ca0
19379cce6ad25613e3be8f877f1501752b0186e56ad3ee9565d29ca7b0d826c3
GET /collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/745546367/?random=1667343140706&cv=11&fst=1667343140706&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=100809741.1667343139&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/745546367/?random=1667343140706&cv=11&fst=1667343140706&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=100809741.1667343139&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/745546367/?random=1667343140706&cv=11&fst=1667343140706&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=100809741.1667343139&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 22:52:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/745546367/?random=1667343140706&cv=11&fst=1667343140706&bg=ffffff&guid=ON&async=1>m=2oaav0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.etoro.com%2F&tiba=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro>m_ee=1&auid=100809741.1667343139&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 29b1235ba41d7ffcea5a06683982d701
88c3c45918703740ae8ae62cdc370b9f5820ee94
b16d69692dfb3bc6d73031960cec12eb9484a2cc9a4759492f2c835492bfc8ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 22:52:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 14:54:24 GMT
Expires: Sat, 05 Nov 2022 14:54:23 GMT
Etag: "88c3c45918703740ae8ae62cdc370b9f5820ee94"
Cache-Control: max-age=316321,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7638334afc45b4f4-OSL
sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:21 GMT
expires: Tue, 01 Nov 2022 22:52:21 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBCWjYWMCEBDJsM_yiKEDCibsAHaztbcFEgEBAQH0YmNrYwAAAAAA_eMAAA&S=AQAAAmNK_IENpiHrOE14119T8J8; Expires=Thu, 2 Nov 2023 04:52:21 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Tue%2C%2001%20Nov%202022%2022%3A52%3A20%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Tue%2C%2001%20Nov%202022%2022%3A52%3A20%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Tue%2C%2001%20Nov%202022%2022%3A52%3A20%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:21 GMT
expires: Tue, 01 Nov 2022 22:52:21 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBCWjYWMCEBufmzp9o7HqEem_ZJbukysFEgEBAQH0YmNrYwAAAAAA_eMAAA&S=AQAAAqT5ZgHz5kGVgH7wnZZfhDk; Expires=Thu, 2 Nov 2023 04:52:21 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d76a7c1394825217ff72413374452da
35cd03ad4a94fe44e7b0520c83bdfdc97c43e604
37f0619501ba3cfbb57913b3df78b554444a2436031408f4fe308de20a483ab4
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5530
Cache-Control: max-age=135284
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Etag: "6360faff-1d7"
Expires: Thu, 03 Nov 2022 12:27:05 GMT
Last-Modified: Tue, 01 Nov 2022 10:54:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d76a7c1394825217ff72413374452da
35cd03ad4a94fe44e7b0520c83bdfdc97c43e604
37f0619501ba3cfbb57913b3df78b554444a2436031408f4fe308de20a483ab4
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5530
Cache-Control: max-age=135284
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:21 GMT
Etag: "6360faff-1d7"
Expires: Thu, 03 Nov 2022 12:27:05 GMT
Last-Modified: Tue, 01 Nov 2022 10:54:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=80bcd7bb-bb50-4f7e-b629-8cd09b3ee0b6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_8Cj6zyHcVH8y+6lZVp0D+A=="; Max-Age=63072000; Expires=Thu, 31 Oct 2024 22:52:21 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: a39f83ac37933935
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 30440f6c560661a46bd0fd48e922f9fa0f22b378b8fb44b5636b0ff7721a11c1
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=2236d0d5-4868-4660-a471-5d7f3f578d98&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=bd64d6d3-d04b-4355-a917-4c50553b2414&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:21 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_bwk7/DKZacvlrMSLWFQFyQ=="; Max-Age=63072000; Expires=Thu, 31 Oct 2024 22:52:21 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c7a29a9ab56b0d93
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 30440f6c560661a46bd0fd48e922f9fa0f22b378b8fb44b5636b0ff7721a11c1
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575
64.202.112.159200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575
IP 64.202.112.159:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 22:52:21 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: ae1fe4424b2d528bf5dff238edf6a2bd
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=07217524320539835&referrer=
64.202.112.159200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=07217524320539835&referrer=
IP 64.202.112.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=07217524320539835&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 22:52:21 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 3a72572580d0650dd063b22b757bb679
content-encoding: gzip
www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667343141323&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667343141322.2140084614&it=1667343140458&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667343141323&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667343141322.2140084614&it=1667343140458&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1667343141323&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1667343141322.2140084614&it=1667343140458&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 01 Nov 2022 22:52:21 GMT
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1374
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=382da34759753714bb0c88ba238df9d7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 0
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1369
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=382da34759753714bb0c88ba238df9d7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667343141313%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJXO34lSCVbTgAAAYQ1ZUxnQud-5rIIhpKsASVHQIvn_RM9DuqItx0kyMSBQrEcHfPpkHvQj1_8wA; Max-Age=2592000; Expires=Thu, 01 Dec 2022 22:52:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKQfQTOiMYJwgAAAYQ1ZUxnmH-i2eEAYF2v9WqzzH6v2Wj210oqHR1XsRclaTNHwe9esdZIwomXHvjVn9NpPw; Max-Age=2592000; Expires=Thu, 01 Dec 2022 22:52:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&136e0326-1baa-48cc-8b82-653f4b1dd4a6"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 01-Nov-2023 22:52:21 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2408:u=1:x=1:i=1667343141:t=1667429541:v=2:sig=AQEoKnHQrB4Cls92laZM1vsRd40q1rQ5"; Expires=Wed, 02 Nov 2022 22:52:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXscJOyV/9VBjFUooOPSg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 938F7CAF73CE461E919002431A842700 Ref B: OSL30EDGE0210 Ref C: 2022-11-01T22:52:21Z
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash ca90af3a02ec5584a1d08a3b003f672a
e2bf4bbf305f08b38201db13a68b8e2b5151e55b
98b5489394872c200f9d9ad18a89800a715ffbcd835127c942765ed7f56bf77d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3980
Cache-Control: max-age=86206
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:22 GMT
Etag: "63604158-2d7"
Expires: Wed, 02 Nov 2022 22:49:08 GMT
Last-Modified: Mon, 31 Oct 2022 21:42:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
cdn.mxpnl.com/libs/mixpanel-2.2.min.js
130.211.5.208200 OK 17 kB URL HTTP/2 cdn.mxpnl.com/libs/mixpanel-2.2.min.js
IP 130.211.5.208:0
File type ASCII text, with very long lines (755)
Hash bea784dce86d30e1f2e59387f85cccb6
90665d4cc2e3f1e8c6da1247096c0af28b70ae04
b2cd7990f63541592edc32f6499848c857e53b931f51f0ce877de53e3402405b
GET /libs/mixpanel-2.2.min.js HTTP/1.1
Host: cdn.mxpnl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsopmLRTwdhPbC2mAZNoTra6TjvnctBbyHdmvqewlaY5B07U5EV3Fa6n5RfmBtsaMfYj6S_4WCszZmpql4VycPPZA
x-goog-generation: 1645129320773308
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=OghQVA==, md5=vqeE3OhtMOHy5ZOH+FzMtg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17435
access-control-allow-origin: *
server: UploadServer
date: Tue, 01 Nov 2022 22:47:51 GMT
expires: Tue, 01 Nov 2022 22:57:51 GMT
cache-control: public,max-age=600
age: 271
last-modified: Thu, 17 Feb 2022 20:22:00 GMT
etag: "bea784dce86d30e1f2e59387f85cccb6"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash ca90af3a02ec5584a1d08a3b003f672a
e2bf4bbf305f08b38201db13a68b8e2b5151e55b
98b5489394872c200f9d9ad18a89800a715ffbcd835127c942765ed7f56bf77d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3980
Cache-Control: max-age=86206
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:22 GMT
Etag: "63604158-2d7"
Expires: Wed, 02 Nov 2022 22:49:08 GMT
Last-Modified: Mon, 31 Oct 2022 21:42:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667343141313%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667343141313%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1667343141313%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&7a0b6b99-f9ed-40cb-8841-5a19901632e5"; Domain=.linkedin.com; Expires=Wed, 01-Nov-2023 22:52:22 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202211012252225b81733e-d71c-4701-8dc5-49617ab21b1bAQHnO2S1lGWnLOL30ABLuejyvVRZqmMX"; Domain=.www.linkedin.com; Expires=Wed, 01-Nov-2023 22:52:22 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjczNDMxNDI7MjswMjHYA4wfn3RU67BC2b4qVMpuxTJ0yROTB+w9FT9ktkOf+g==; Domain=.linkedin.com; Expires=Sun, 30 Apr 2023 22:52:22 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2408:u=1:x=1:i=1667343142:t=1667429542:v=2:sig=AQHOa6zMRViifhkPr3Pr9FqhrdN29QM8"; Expires=Wed, 02 Nov 2022 22:52:22 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com *.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXscJO2Z8a43RWh9kazJg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 84EA258128CA48A9B2C5C16397D81FBD Ref B: OSL30EDGE0210 Ref C: 2022-11-01T22:52:22Z
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 0
X-Firefox-Spdy: h2
trc-events.taboola.com/1005612/log/3/unip?en=pre_d_eng_tb&tos=1667&scd=13&ssd=1&est=1667343140232&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667343141901&vi=1667343140229&ri=65131f11705de4fb29d64c3068a4a568&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1005612/log/3/unip?en=pre_d_eng_tb&tos=1667&scd=13&ssd=1&est=1667343140232&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667343141901&vi=1667343140229&ri=65131f11705de4fb29d64c3068a4a568&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1005612/log/3/unip?en=pre_d_eng_tb&tos=1667&scd=13&ssd=1&est=1667343140232&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1667343141901&vi=1667343140229&ri=65131f11705de4fb29d64c3068a4a568&ref=null&cv=20221029-3-RELEASE&item-url=https%3A%2F%2Fwww.etoro.com%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 01 Nov 2022 22:52:22 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.etoro.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1667343141313&url=https%3A%2F%2Fwww.etoro.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f2fb5377-8cba-4220-8c16-1a2f900c632b"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 01-Nov-2023 22:52:22 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2420:u=1:x=1:i=1667343142:t=1667429542:v=2:sig=AQHcvwmDJs69oBTJPgQrZhqrut7kis-j"; Expires=Wed, 02 Nov 2022 22:52:22 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXscJO7Outjp22BDq1LcA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 333B96441408417FA713329D06B39A19 Ref B: OSL30EDGE0210 Ref C: 2022-11-01T22:52:22Z
date: Tue, 01 Nov 2022 22:52:21 GMT
content-length: 0
X-Firefox-Spdy: h2
ww.steelhousemedia.com/gs
35.84.224.193200 OK 144 B URL HTTP/1.1 ww.steelhousemedia.com/gs
IP 35.84.224.193:0
File type ASCII text, with no line terminators
Hash 1e3823c06bd9f7c7c4f36209b1c5eaf1
e9f54ce4d6291f8cbe70fe4f1610ac296de4c9b9
ba9bd237e7545e9f0584e0a9ec954757258d5eeed0158e30f519af5b5d9e65f9
GET /gs HTTP/1.1
Host: ww.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 01 Nov 2022 22:52:22 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5652b6a3da457efb068c552e92a46001
26fce62f624229431be3a3d76d20410f2cb3892a
58587d4a8a61275bdb962b2944c52f64797996b78e26d4d187f13271ca69a125
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3880
Cache-Control: max-age=94023
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 22:52:23 GMT
Etag: "63606046-117"
Expires: Thu, 03 Nov 2022 00:59:26 GMT
Last-Modified: Mon, 31 Oct 2022 23:54:46 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=
172.64.200.6200 OK 0 B URL HTTP/2 popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=
IP 172.64.200.6:0
GET /serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20= HTTP/1.1
Host: popmyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:16 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DYSe9cPZ0rNDIYebGj0oIdJVluonsmY%2F491%2BW4KDWT%2F4PEAJZVcnifQWP1b9dTh9FbeMfmBVY3Aecqjv4vziS%2FSeYOYpS2hRlifNJLIv5etILONh6meSc358NCqZcPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76383329a83f7762-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3375
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76383339a968b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/12085f6/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:19 GMT
content-type: text/html
cf-ray: 7638333ffb741c16-OSL
access-control-allow-origin: *
age: 490767
cache-control: max-age=1209600
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 1cfafe71e396134dc106e8c1515876bc.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: sEViMmBXP0eSN-V79j3rXDk2EQJxexc7t36fpyJ1kwuBL2o1veHU-w==
x-amz-cf-pop: MRS52-P2
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=ikiaaPgyPZ6zC37pCWKXJghyUjASsW3FvtUCX5OylhU-1667343139-0-AQ5wpJ8t1TCSvOkQqLR69sbaA0Ou7syzgO9etCUXEnbS997gwsU8PrsBZrk8VYNxJPJ+CididJeITYTKyj0snf4=; path=/; expires=Tue, 01-Nov-22 23:22:19 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/c/210b48ee/hsw.js
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/c/210b48ee/hsw.js
IP 104.18.22.122:0
GET /c/210b48ee/hsw.js HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
Cookie: __cf_bm=sakUwUekIWGhxmip7Uvt2EcEnpAXIq9lWTYRTpLCyEA-1667343139-0-ASvKZQagZTxIz+MztKXjCjr4lI1iCZwEayrk/QDAbZt56MejtvVGNpcW7F47ACjoIEj4gQiqeZe0ZLmjmjvvWh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: application/javascript
cf-ray: 763833443e981c16-OSL
access-control-allow-origin: *
age: 103019
cache-control: max-age=1209600
etag: W/"52529960ab1b4955ae1e8084082df4ff"
last-modified: Mon, 31 Oct 2022 10:10:29 GMT
strict-transport-security: max-age=0
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: MOIfhwjaY1XBS8yvgKLt-jLzJbz5UFbmi5t3OXKlZepfV2kr1aksPw==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.addlnk.com/redirect.css
104.21.74.141200 OK 0 B URL HTTP/2 cdn.addlnk.com/redirect.css
IP 104.21.74.141:0
GET /redirect.css HTTP/1.1
Host: cdn.addlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://surf.ueive.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:15 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1680
etag: W/"3ae56d32551602b41f9046c14d1cfde2"
last-modified: Wed, 13 Mar 2019 00:03:12 GMT
x-amz-id-2: BUW6rlWHZvzQnvJHp4gBkVRIGc8DfdhWdOpgruWqMqu7ownlHIapox/IYSueiBqz+QseNtzP+2A=
x-amz-request-id: KYXF7EGSHW20KRRM
cf-cache-status: HIT
age: 4798
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o19XMS12P%2B0LgJo9bSSgE4hm5k1i5J4VqizG11G801bXPJCacQndS%2BpjknIl5veVuVIwU6SN%2BuY15bdKDrkssDLMuLaeWHhvq2s4cWzcW6AqMM5qyCzIG93grDZntkBUQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76383323ca0eb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/12085f6/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:19 GMT
content-type: text/html
cf-ray: 7638333ffb721c16-OSL
access-control-allow-origin: *
age: 490767
cache-control: max-age=1209600
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 1cfafe71e396134dc106e8c1515876bc.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: sEViMmBXP0eSN-V79j3rXDk2EQJxexc7t36fpyJ1kwuBL2o1veHU-w==
x-amz-cf-pop: MRS52-P2
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=0RD3spCeWxQl5W.f9Ny6Zu8OS9VMr8RiWCpa8gpior8-1667343139-0-AbNC0Ah0VVBbBqt/J1M8xdB3Lvz22k4FPgO3AYzOsYEm8h4hghiGSq22b5pcfnM9pyqZYYjJBeLZFJBq60KERH0=; path=/; expires=Tue, 01-Nov-22 23:22:19 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/12085f6/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/12085f6/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:19 GMT
content-type: text/html
cf-ray: 7638333ffb761c16-OSL
access-control-allow-origin: *
age: 490767
cache-control: max-age=1209600
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 1cfafe71e396134dc106e8c1515876bc.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: sEViMmBXP0eSN-V79j3rXDk2EQJxexc7t36fpyJ1kwuBL2o1veHU-w==
x-amz-cf-pop: MRS52-P2
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=sakUwUekIWGhxmip7Uvt2EcEnpAXIq9lWTYRTpLCyEA-1667343139-0-ASvKZQagZTxIz+MztKXjCjr4lI1iCZwEayrk/QDAbZt56MejtvVGNpcW7F47ACjoIEj4gQiqeZe0ZLmjmjvvWh4=; path=/; expires=Tue, 01-Nov-22 23:22:19 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/1005612/trc/3/json?tim=1667343140243&data=%7B%22id%22%3A768%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667343140229%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667343140243%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A8%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1005612/trc/3/json?tim=1667343140243&data=%7B%22id%22%3A768%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667343140229%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667343140243%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A8%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1005612/trc/3/json?tim=1667343140243&data=%7B%22id%22%3A768%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1667343140229%2C%22cv%22%3A%2220221029-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1667343140243%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A8%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Tue, 01 Nov 2022 22:52:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1667343142.514915,VS0,VE98
vary: Accept-Encoding
x-vcl-time-ms: 98
X-Firefox-Spdy: h2
popmyads.com/gget
172.64.200.6302 Found 0 B IP 172.64.200.6:0
POST /gget HTTP/1.1
Host: popmyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 517
Origin: https://popmyads.com
Connection: keep-alive
Referer: https://popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Tue, 01 Nov 2022 22:52:16 GMT
content-type: text/html; charset=UTF-8
location: http://www.linkonclick.com/jump/next.php?r=1041905&sub1=0646614100
x-powered-by: PHP/7.1.33
set-cookie: wGprrBLT=2; expires=Tue, 01-Nov-2022 22:52:18 GMT; Max-Age=2; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rfOPcBCZIr9rhOGWPpG7dtgDaLCpcx1tsdVLLnqd8vGoIG8yqAoh%2F8J16A6B%2FHq7Q6FXpEpo0pUUIlyEwbTs8CsgPkt1gbcYkOfowkKmy52gMUH9b8mgJpyDi%2Fm%2Fg6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7638332a39627762-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
content-range: bytes 0-2625182/2625183
content-length: 2625183
X-Firefox-Spdy: h2
px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=955488745.1667343140&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22955488745.1667343140%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667343139.1%22%2C%22dcm_gid%22%3A%22612664378.1667343140%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667343139.1&dcm_gid=612664378.1667343140&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term%3Dvalue
44.237.157.168200 OK 0 B URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-2056847-65&ga_client_id=955488745.1667343140&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22955488745.1667343140%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667343139.1%22%2C%22dcm_gid%22%3A%22612664378.1667343140%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667343139.1&dcm_gid=612664378.1667343140&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term%3Dvalue
IP 44.237.157.168:0
GET /st?ga_tracking_id=UA-2056847-65&ga_client_id=955488745.1667343140&shpt=Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-2056847-65%22%2C%22ga_client_id%22%3A%22955488745.1667343140%22%2C%22shpt%22%3A%22Crypto%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro%22%2C%22dcm_cid%22%3A%221667343139.1%22%2C%22dcm_gid%22%3A%22612664378.1667343140%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1667343139.1&dcm_gid=612664378.1667343140&dxver=4.0.0&shaid=31950&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term%3Dvalue HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 01 Nov 2022 22:52:22 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=d8c8260d-5a37-11ed-87aa-4fc5005cf775;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
cloudflare.hcaptcha.com/checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1
104.18.19.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1
IP 104.18.19.132:0
POST /checksiteconfig?v=12085f6&host=www.etoro.com&sitekey=33f96e6a-38cd-421b-bb68-7806e1764460&sc=1&swa=1 HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cf-assets.hcaptcha.com
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:20 GMT
content-type: application/json
access-control-allow-origin: https://cf-assets.hcaptcha.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent, challenge-bypass-token, cf-chl-bypass, challenge-bypass-token, challenge-bypass-host, challenge-bypass-path
access-control-allow-methods: GET, HEAD, POST, OPTIONS
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 76383343ea05b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1871831.js?sv=6
143.204.55.98200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1871831.js?sv=6
IP 143.204.55.98:0
GET /c/hotjar-1871831.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 01 Nov 2022 22:51:33 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/ad8d334f7c0302098419f2a59480209e
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fow1tvTVBXa4LeYiN7QBymDpSpKTBI9HPZ7fk4ikkQcpCIZ5Y9HaqQ==
age: 45
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
23.38.201.117200 OK 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
IP 23.38.201.117:0
GET /cache1/hp/v_250/js/script.min.js?v=1666613359 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UstjKmYHGN8WYkG4pmB/h9V8h19OUGh2i1FjFliBykUGT8I/5sV5tTJfxJJZrQoeJnxvynArGRo=
x-amz-request-id: F7QGAR8H44KYKRW6
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 12:51:07 GMT
etag: "57f5dcf3502cfebc456129a3dda31b0e"
x-amz-meta-sha256: 569eb69f141bb73e2a8a26b17eac9225b107485d936601eaf2571740898714a6
x-amz-meta-s3b-last-modified: 20220928T124714Z
x-amz-version-id: PgqNRpUIgU8eF2OAyi4TWyrPd9U26uVw
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 01 Nov 2023 22:52:18 GMT
date: Tue, 01 Nov 2022 22:52:18 GMT
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
104.18.19.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP 104.18.19.132:0
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:18 GMT
content-type: application/javascript
cf-ray: 76383338bfeeb4fd-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"5ab4b08736cc84a24e057a5ac94d054f"
last-modified: Wed, 26 Oct 2022 15:08:23 GMT
strict-transport-security: max-age=0
via: 1.1 3529bf84e9522012233c3dd2a59fdfe8.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: VBvmFlsJ1wGmcIk6P4MJZX1kOXc_C3-M0GyB5OTcQh7SU2QL91Nfxg==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term=value
54.69.84.146200 0 B URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term=value
IP 54.69.84.146:0
GET /spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=89420224620628910term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Tue, 01 Nov 2022 22:52:20 GMT
connection: close
surf.ueive.com/rc/736006a179?affclick=22K02042214A034363012829ObBmx&pubid=34363
104.21.2.182200 OK 0 B URL HTTP/2 surf.ueive.com/rc/736006a179?affclick=22K02042214A034363012829ObBmx&pubid=34363
IP 104.21.2.182:0
GET /rc/736006a179?affclick=22K02042214A034363012829ObBmx&pubid=34363 HTTP/1.1
Host: surf.ueive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 01 Nov 2022 22:52:15 GMT
content-type: text/html; charset=utf-8
set-cookie: AWSALB=ijtPZZzMqrbPcgVUsyAy0PuxzBsajJ7Qg3gO1KkAYw0ycjgCHUPJV2nIGcUWkh1aBziM1eUWRJk+JDfyyCC2u/iTATaEI16Moj5YDnbuw46MOpGqOpv4aD6iL9Nx; Expires=Tue, 08 Nov 2022 22:52:15 GMT; Path=/
AWSALBCORS=ijtPZZzMqrbPcgVUsyAy0PuxzBsajJ7Qg3gO1KkAYw0ycjgCHUPJV2nIGcUWkh1aBziM1eUWRJk+JDfyyCC2u/iTATaEI16Moj5YDnbuw46MOpGqOpv4aD6iL9Nx; Expires=Tue, 08 Nov 2022 22:52:15 GMT; Path=/; SameSite=None
vary: Accept-Encoding, Accept-Language, Cookie
content-language: en
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pq5tEp70wxjwIkH8hOH4I9vn0vhQjD8Wobqeu%2BUeV9M1Xz%2FotR1Y%2FOXbGbNfp%2Bxc60kGaMWjXrhteoSyLCbmqNNVSU64T%2FN%2Bp4xtB2TphMbMxtEts%2FXe%2FVsGQBio%2FInyuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7638332219390afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2