repelispluss.me/movies/perro-perdido/
172.67.221.126301 Moved Permanently 0 B URL HTTP/1.1 repelispluss.me/movies/perro-perdido/
IP 172.67.221.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /movies/perro-perdido/ HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 23:42:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 30 Jan 2023 00:42:54 GMT
Location: https://repelispluss.me/movies/perro-perdido/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QsIHrb4r4YZZ0fMWkDtG8UeBi2xLrAmuheaSsqPMa7gV86%2Bq3dpp%2FCcBKVj%2FaQmaN3Uo0xEvA1JFTISiZEWALwlEddy%2B4pH84FzbYs9aNCiVQy%2FY1FekFRcaIZsz6MJVo58%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7915d3b3fecbb511-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7942
Expires: Mon, 30 Jan 2023 01:55:16 GMT
Date: Sun, 29 Jan 2023 23:42:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8171
Expires: Mon, 30 Jan 2023 01:59:05 GMT
Date: Sun, 29 Jan 2023 23:42:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 23:35:38 GMT
content-type: application/json
age: 436
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6796
Expires: Mon, 30 Jan 2023 01:36:10 GMT
Date: Sun, 29 Jan 2023 23:42:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qXKlRzQQu30z7VOGFcsB/l4f42zlk0vKAfUnmlC3u2jtmxTmrhn70lPF2V0t4MFOUGaxVZSXNO0=
x-amz-request-id: S20MN501MB75N2QG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 22:50:30 GMT
age: 3144
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/aYG2lnIhfBQ
142.250.74.163200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/aYG2lnIhfBQ
IP 142.250.74.163:0
Hash 9342b034a61b0fa59ecc6b2298f4a795
da7005dfd3549b407e0690e75e5a0aa4b1e46f6e
a74bba885ff10b45c8436a5376cb85266e03548f53c165b4bcbf625135946fb2
POST /s/gts1p5/aYG2lnIhfBQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 22:49:04 GMT
age: 3230
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/aYG2lnIhfBQ
142.250.74.163200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/aYG2lnIhfBQ
IP 142.250.74.163:0
Hash 9342b034a61b0fa59ecc6b2298f4a795
da7005dfd3549b407e0690e75e5a0aa4b1e46f6e
a74bba885ff10b45c8436a5376cb85266e03548f53c165b4bcbf625135946fb2
POST /s/gts1p5/aYG2lnIhfBQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:42:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:42:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6484
Expires: Mon, 30 Jan 2023 01:30:59 GMT
Date: Sun, 29 Jan 2023 23:42:55 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=G-YWFDWNF08K
142.250.74.168200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-YWFDWNF08K
IP 142.250.74.168:0
File type ASCII text, with very long lines (25680)
Hash 7942731cb2624d890d2c2e50b739f810
72af6982656a0a581473df27862e5c22633a3fb5
8c3c4af8558a8ca40c637759733911fc495c55c3f82875d44f2024545f39f09f
GET /gtag/js?id=G-YWFDWNF08K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 23:42:55 GMT
expires: Sun, 29 Jan 2023 23:42:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
repelispluss.me/wp-content/themes/torofilm/public/js/torofilm-public.js?ver=2.1.9
172.67.221.126200 OK 5.5 kB URL HTTP/2 repelispluss.me/wp-content/themes/torofilm/public/js/torofilm-public.js?ver=2.1.9
IP 172.67.221.126:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (4728)
Hash 1554763d237f4a3e119078e7b3fb18d4
ca8695ec3e7c3fd064706e42b700ea0ae30e6a8d
3c97fbb791a80de14cb377eac2ce057c3397de7c0adef3a43f68cff6521c1a2c
GET /wp-content/themes/torofilm/public/js/torofilm-public.js?ver=2.1.9 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=29448
cache-control: public, max-age=31557600
expires: Wed, 24 Jan 2024 13:15:32 GMT
last-modified: Sat, 19 Nov 2022 17:59:21 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 491242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2B%2F0G98RA8Eu5Jk%2FhwUqHQUntRQudEoTRXWuSQYTFXXDKbCIDk5BWVgzBCNXXGiiJDIMRediLvfPPHON7acpn4%2FRZUPNfG6dLh6hhnIltVdNk8jML%2BP4IXDUnlKz%2BO4gTWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b9aa6cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
repelispluss.me/wp-content/uploads/2022/10/logo-repelispluss.png
172.67.221.126200 OK 2.8 kB URL HTTP/2 repelispluss.me/wp-content/uploads/2022/10/logo-repelispluss.png
IP 172.67.221.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c2e74b3c28641d9505924ffa2eb0854a
ee900f8a15f6268098c485453e2f394f0afdc681
cad9b59c1bb5dd930ff10d17e5b6b05025aa9dc21ec166d7644d039ee2d4f80b
GET /wp-content/uploads/2022/10/logo-repelispluss.png HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:55 GMT
content-type: image/webp
content-length: 2766
cache-control: private expires: Mon, 29 Jan 2024 23:42:55 GMT
last-modified: Thu, 20 Oct 2022 06:28:35 GMT
vary: User-Agent,Accept, Accept-Encoding
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BbReBfOGiYURYAgdSvlPASlOd1NGO4nbqtIkcLPww3gCr8uR5XKbRU%2FtMf6IZZAB62vra1i8ASba2YHcfrh85pGvUBhq8zZJjV7ek7ZUwhfxdPkUZo0%2FBaLazbrie4foquo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a5fb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.229.20.251101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.229.20.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7x7IHKLAV4TEXuVMQWG+1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /EPmNr23X7VTcW3MiViLLF63MFc=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 078757ee77cedf022e46001afb9200f5
0d56a0cccbfe33968dc445284f3e9b8109da0537
b961ebc8086a887fa934c7b5d09e2916c3f2c447273426738bb8d95fa4117f87
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B961EBC8086A887FA934C7B5D09E2916C3F2C447273426738BB8D95FA4117F87"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18474
Expires: Mon, 30 Jan 2023 04:50:49 GMT
Date: Sun, 29 Jan 2023 23:42:55 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-YWFDWNF08K>m=2oe1p0&_p=1776389694&cid=1831386061.1675035785&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675035784&sct=1&seg=0&dl=https%3A%2F%2Frepelispluss.me%2Fmovies%2Fperro-perdido%2F&dt=Perro%20perdido%20-%20RepelisPlus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-YWFDWNF08K>m=2oe1p0&_p=1776389694&cid=1831386061.1675035785&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675035784&sct=1&seg=0&dl=https%3A%2F%2Frepelispluss.me%2Fmovies%2Fperro-perdido%2F&dt=Perro%20perdido%20-%20RepelisPlus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YWFDWNF08K>m=2oe1p0&_p=1776389694&cid=1831386061.1675035785&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675035784&sct=1&seg=0&dl=https%3A%2F%2Frepelispluss.me%2Fmovies%2Fperro-perdido%2F&dt=Perro%20perdido%20-%20RepelisPlus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelispluss.me
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://repelispluss.me
date: Sun, 29 Jan 2023 23:42:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
snorefamiliarsiege.com/a9/fd/7d/a9fd7d4599f3dd6968bebb4d4ec2593c.js
173.233.137.44200 OK 21 kB URL HTTP/1.1 snorefamiliarsiege.com/a9/fd/7d/a9fd7d4599f3dd6968bebb4d4ec2593c.js
IP 173.233.137.44:0
File type HTML document, ASCII text, with very long lines (60198), with no line terminators
Hash 1f23e357b0042f295294b401b91b6df6
2ae0fb3583aa635a003535c28eeaa7562201a6c2
396e066b539cf2bafb87651aa0dbc4968db41c60d541d628fff6c4dfa87d067e
GET /a9/fd/7d/a9fd7d4599f3dd6968bebb4d4ec2593c.js HTTP/1.1
Host: snorefamiliarsiege.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 23:42:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 232d22303d14d9ffc2ccdd8141aae401
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0e90c9d5521358d2754bbad686a2e9c1
013349b8f38535bae1e197d5d96d86d17d5a1ef0
47bb6aa901220aeab3800d1ea88eb456cfe3ea337f12c059d9549fa6bd8064ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138158
Date: Sun, 29 Jan 2023 23:42:56 GMT
Etag: "63d67516-1d7"
Expires: Tue, 31 Jan 2023 14:05:34 GMT
Last-Modified: Sun, 29 Jan 2023 13:31:02 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yGGYPnkdeUW1UdsTAuX1RvqRfl_YYTpAZ7TlU5F2047v2NMW5SaT5A==
Age: 2072
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5c3039f23e984d102bba4850070fd282
b24cab5a7ca3211377b0e84c8ee0c69226538289
118fb04cb13eae332f2786842e1bd6a1b96b015e132ce43e9631493f46d78fd3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "118FB04CB13EAE332F2786842E1BD6A1B96B015E132CE43E9631493F46D78FD3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6356
Expires: Mon, 30 Jan 2023 01:28:52 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 2d936c1d214f80f0c128207efbd32124
5fa6517c1c9ff1d2563f921c92270b105a258792
74cbdf6f310c1f3db0d5c53e518b24a905de68520c99c05abe1ac6af1d2a0ee2
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelispluss.me
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://repelispluss.me
access-control-allow-credentials: true
set-cookie: uid_id2=cd8a9c33-ef04-42a7-a8ec-f01764e754b6:2:1; expires=Wed, 26 Jan 2033 23:42:56 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
sweepfrequencydissolved.com/62/9a/79/629a79c4048fd9a1098471b0b9664f60.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 sweepfrequencydissolved.com/62/9a/79/629a79c4048fd9a1098471b0b9664f60.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37121), with no line terminators
Hash 67b0fe378c60d5ce5efb2d12033be7bf
1618eff46174ad57923fae3dbb7e883e007373bb
f3f09bf72b390c2af6da4069537510e07070415ce6e8056ef719ea847c15a6a2
Analyzer Verdict Alert quad9 Sinkholed
GET /62/9a/79/629a79c4048fd9a1098471b0b9664f60.js HTTP/1.1
Host: sweepfrequencydissolved.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 23:42:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aa4e2af6de19c40831379e9980bb8b5d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
sweepfrequencydissolved.com/pixel/purst?dl=0&th=0&sc=0&rs=1914&rd=1914&fd=1008&bv=22.10.v.9&tmpl=70
192.243.61.225200 OK 0 B URL HTTP/1.1 sweepfrequencydissolved.com/pixel/purst?dl=0&th=0&sc=0&rs=1914&rd=1914&fd=1008&bv=22.10.v.9&tmpl=70
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1914&rd=1914&fd=1008&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: sweepfrequencydissolved.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 23:42:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www.googletagmanager.com/gtag/js?id=G-29G2VLBM5B
142.250.74.168200 OK 24 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-29G2VLBM5B
IP 142.250.74.168:0
Hash 539ed1a07cb8b137b6825efd1789c2f3
6a46045cbc0a5af52f68d8a65a40df4f5cc6ed6e
681a963b7e247c1376a6af7a6e439256600ac932521623f600faa57a59b4fcb7
GET /gtag/js?id=G-29G2VLBM5B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 23:42:55 GMT
expires: Sun, 29 Jan 2023 23:42:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81649
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 2d936c1d214f80f0c128207efbd32124
5fa6517c1c9ff1d2563f921c92270b105a258792
74cbdf6f310c1f3db0d5c53e518b24a905de68520c99c05abe1ac6af1d2a0ee2
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://repelispluss.me
Connection: keep-alive
Referer: https://repelispluss.me/
Cookie: uid_id2=cd8a9c33-ef04-42a7-a8ec-f01764e754b6:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://repelispluss.me
access-control-allow-credentials: true
X-Firefox-Spdy: h2
player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09
172.67.148.30200 OK 34 kB URL HTTP/2 player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09
IP 172.67.148.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4920)
Hash a2b043ca440cc16f62695cd6e12ccfa8
194733c4f12c42f893fe786fb73596810f8f20df
0b8091e9b68cb5ff0d455c140b8fcd394789d9af23790b4e8db612f58ba901f1
GET /e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09 HTTP/1.1
Host: player.repelisplus2.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-robots-tag: 'none, noindex, nofollow, noarchive, nosnippet, noodp, notranslate, noimageindex'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block;
p3p: policyref="http://www.example.com/w3c/p3p.xml", CP="CURa ADMa DEVa CONo HISa OUR IND DSP ALL COR"
link: <//player.repelisplus2.vip>; rel=preconnect; crossorigin, <//global.stun.twilio.com>; rel=dns-prefetch; crossorigin, <//counter.yadro.ru>; rel=preconnect; crossorigin, <//imasdk.googleapis.com>; rel=preconnect; crossorigin, <//stun2.l.google.com>; rel=dns-prefetch; crossorigin, <//unpkg.com>; rel=preconnect; crossorigin, <//mc.yandex.ru>; rel=preconnect; crossorigin, <//cdn.jsdelivr.net>; rel=preconnect; crossorigin, <//signal.netu.tv>; rel=dns-prefetch; crossorigin,<//wss.commentsengine.com>; rel=dns-prefetch; crossorigin, <//www.gstatic.com>; rel=preconnect; crossorigin, <//imasdk.googleapis.com>; rel=preconnect; crossorigin, <//storage.googleapis.com>; rel=preconnect; crossorigin, <//www.google.com>; rel=preconnect; crossorigin,<//deliver.vkcdnservice.com>; rel=preconnect; crossorigin, <//deliver.vkcdnservice.com>; rel=preconnect; crossorigin,<//vkcdnservice.appspot.com.storage.googleapis.com>; rel=preconnect; crossorigin, <//www.google.com>; rel=preconnect; crossorigin, <//www.recaptcha.net>; rel=preconnect; crossorigin, <//cdnjs.cloudflare.com>; rel=preconnect; crossorigin
pragma: no-cache
x-origin-location: player
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
x-cache-status-inferno: MISS
x-inferno-location: player
x-inferno-limit-req: PASSED
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3sGLT9VG2MyZSwgG5XdZE6I70CciZZuh%2FkyE%2Fth9qaH%2FnBHjCWzGJcRVrI0IRVxvn1LPyApAqHgEkCRyYRC5YXJQHnpvfBK64I1wOj5snHpnEIpmbVQF13PZFdwAJ6dlGSpTdmy1vg1zYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3c16cd11bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 935 B IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash e3af9eb85173815e2dceb8d56fe3cf86
8113c4208e1de1f56fc9ce15e804d25b2fe23b97
a2ceb1810b640b5c7e42a834dbcf4b5bcd94d51fcc071ba6414808b843500cd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4678
Cache-Control: max-age=116261
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:42:56 GMT
Etag: "63d6155f-118"
Expires: Tue, 31 Jan 2023 08:00:37 GMT
Last-Modified: Sun, 29 Jan 2023 06:42:39 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89231e8fe1afd89090e6a09d61430e11
11b471e4821cade1ea075b8835c892d455bfdaa2
8c78cce8f98a69e9c1c2bf45d12879b40c784288b4e79dabb296c24f94025c12
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8C78CCE8F98A69E9C1C2BF45D12879B40C784288B4E79DABB296C24F94025C12"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3820
Expires: Mon, 30 Jan 2023 00:46:36 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0afb9e370fc7236d312a7ca506a50ce6
c9c172d65e242dd326ce375ec0492c229cf1f673
c0709b20c1e8968cbe98c19b66ae4991f147e1b914f71e6bd89d1c32196024a0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C0709B20C1E8968CBE98C19B66AE4991F147E1B914F71E6BD89D1C32196024A0"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7696
Expires: Mon, 30 Jan 2023 01:51:12 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
unpkg.com/jquery@2.2.4/dist/jquery.min.js
104.16.124.175200 OK 31 kB URL HTTP/2 unpkg.com/jquery@2.2.4/dist/jquery.min.js
IP 104.16.124.175:0
File type ASCII text, with very long lines (32065)
Hash 6d183b87b7bfc4556851ece01e8cbf70
d0a108e144e634fc9dba5e74bc5d66c01ccba1b8
6396efab0f812c23fa2def01d4c8d0ee43d7a473f460725b3bc56669d3fce45e
GET /jquery@2.2.4/dist/jquery.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Fri, 20 May 2016 17:24:42 GMT
etag: W/"14e4a-abtp4lyn1e8JNTF1hOYVPz/ZqIw"
via: 1.1 fly.io
fly-request-id: 01G754SVY4BFC19MXYRYRMED91-fra
cf-cache-status: HIT
age: 18079277
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c2de3ab4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9ca371a18b1afacc82e035f41dc2b86
8b4a87be43183e4f89e19ecac344915d60574950
8ac3da2f8ce052a3d27fee0dccc5712a55e917f9de8daff8db891d50249aba90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AC3DA2F8CE052A3D27FEE0DCCC5712A55E917F9DE8DAFF8DB891D50249ABA90"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3189
Expires: Mon, 30 Jan 2023 00:36:05 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89231e8fe1afd89090e6a09d61430e11
11b471e4821cade1ea075b8835c892d455bfdaa2
8c78cce8f98a69e9c1c2bf45d12879b40c784288b4e79dabb296c24f94025c12
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8C78CCE8F98A69E9C1C2BF45D12879B40C784288B4E79DABB296C24F94025C12"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3820
Expires: Mon, 30 Jan 2023 00:46:36 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
banquetunarmedgrater.com/advertisers.js
173.233.137.60200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 23:42:56 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 13727771cc39f77ef40da2d7b26c8855
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2644
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2644
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2644
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f49153c1aade8aa30bc6c84db4fa09d7
5cce4e085c87e7fbe82907694a36a91cc1bc9bfc
3285916959352e77cdbea34515dad3b3a0315b74bca7f45a8e5a2de4661203e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6646
x-amzn-requestid: c8a7d4b9-1a13-41c1-8391-853f03f3150c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvRsHiaIAMF4Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49271-634529cc6844e70829b5750f;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PXMbaFBZrgdsIRduRmCb8ALPII3zv7dTT4Ikn2B_Waxz3wLcp2giKQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:40:24 GMT
age: 72152
etag: "5cce4e085c87e7fbe82907694a36a91cc1bc9bfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.203.23200 OK 38 kB URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.203.23:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 63960068a1bb77063b6d3b42171e8766
a24a4f61a723528d2780c057486eadb8566f6d3c
d0b666f7aee107dc088881a84826f558b9a1a444a61f8bc991b5a714780f822c
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: bcb57f3ab0093db3990571c7d8b0b878
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 29 Jan 2023 23:42:56 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXTcsK03ha7O8YwKQ0SJOK3uvfpzv7Dtj%2FwvuX74bO97Js%2FBDFXK2m%2FKzeBxHEM9vFL1VzkvbrLBaqzbspF9esi0i6U6TqR9%2FeEQclYW0jccOTzyYZ6rBXeTpJylkz1uajTMEbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7915d3c348bf7750-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rhWnoHh5bILzb5MAI88JvXr6MGkRKHOT5L10I8VJkjjfN-Iuupva2Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:22 GMT
age: 5014
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d200552d23c85c199558b79cc24348f
8cc20b9ce98eeacd5b826268da24955a82e78a01
09b05ae6f75b5141401ddc49014e0eb2eac0856ba3b5020bc85f4a9a64d3d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 9f944a46-7e39-44c3-a640-3c7e9b778bca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkoEEkJIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7cd-4b29196f5bd1b2fb04e6363f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WdAuArY0X2z4d6i17ZJ0521rzGRJS8FtaN-Kqvzg0fqW3F-HptEvNA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:10:01 GMT
age: 5575
etag: "8cc20b9ce98eeacd5b826268da24955a82e78a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0729af7c574710c33356c8c3c7757d6
aec801b4158398d2d3222e7247532a1b0ba446e3
057d2ed0960c8d83dda10de975594b21ddeaaf8dcc07a106f3b3c121afb90e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: 52245e9a-4ea7-470c-ad88-1051471fc543
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvBxGv2oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4920b-6b6d100e11edfa5307b67933;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:10:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qgh4eyT_OHA_N3vH7o37gjmjUpRyJMXzG3pyvKH8pnxjWxu8ykXIRw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:48:34 GMT
age: 68062
etag: "aec801b4158398d2d3222e7247532a1b0ba446e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 65c2eff97e3799b6f1c624a85dde039a
995326151fa5f40b770ebe642d3529726421e9ad
8270566bd20404dd486bba624319fb67f7d1e97b308db4939478fea79aeb64e9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8270566BD20404DD486BBA624319FB67F7D1E97B308DB4939478FEA79AEB64E9"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5463
Expires: Mon, 30 Jan 2023 01:13:59 GMT
Date: Sun, 29 Jan 2023 23:42:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 22020
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
testingmetriksbre.ru/netu.php
104.21.50.109200 OK 907 B URL HTTP/2 testingmetriksbre.ru/netu.php
IP 104.21.50.109:0
File type ASCII text, with very long lines (855), with CRLF line terminators
Hash 5d4e0ed7ccca87ec1708997851a5e2b8
d6a986cdd1aea863fc00db2820f83a2d6d0422ce
5778cc396881d533b5442f842c59b188dea5727a9a4d3fba8e43d571bce0bb7d
GET /netu.php HTTP/1.1
Host: testingmetriksbre.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript
x-powered-by: PHP/7.1.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1zeL2Slm7JMGpTCEZYy8sl6Ua1ZAgJd9z%2B%2BJl1p1Ru60g%2FOpAfQ2cRaD0Q%2FBDE7f1UNHew27CAwPzLJLsVYgHa5hrqdlqmPhHQsXHG7MBO13EMaavBvu4LE%2BtGW8Cx0GQUBnsKerQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3c52a7ab4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
reypelis.tv/i.php?sid=212021&app=1&rand=524709789
188.114.97.1200 OK 60 kB URL HTTP/2 reypelis.tv/i.php?sid=212021&app=1&rand=524709789
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cd0a861837d11b52dbc6ed773ec0b57d
494cc740d67ee5198ebd5697275ce989536c09c2
93c7afc0b99517448e0c620f6bdbbad8b88763f901a4bd4329ce2d0166fc3a4d
GET /i.php?sid=212021&app=1&rand=524709789 HTTP/1.1
Host: reypelis.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://reypelis.tv/i.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:57 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
platform: hostinger
access-control-allow-origin: *
access-control-allow-credentials: true
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JWPI0p1qSSAY7kwKiHGIlk%2F7WaHEWuiqTeRMob5nzZ5Ou4BMXFA6DD24TrbOUHL4M6CdTFmB%2BgbpBmeA6d%2B0ZJJ1bZIZ2n2ZRaEngMeZxYwVPFrNcv6CKDPvvmb4Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c65f1fb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn-s5.cfeucdn.com/flv/api/files/thumbs_new/2023/01/14/1673674284yn52o/1673674284yn52o-640x480-1.jpg
213.186.120.164200 OK 74 kB URL HTTP/2 cdn-s5.cfeucdn.com/flv/api/files/thumbs_new/2023/01/14/1673674284yn52o/1673674284yn52o-640x480-1.jpg
IP 213.186.120.164:0
Hash e82bd78a1fb839e5b4c32dbb6f2f08b5
2970abceaba8c9ab025a097a0ca53c96a0fff094
9f24dcc7d76550cd05c69c637c152b0b67174d5c8c1d4f516c67224de37d8d70
GET /flv/api/files/thumbs_new/2023/01/14/1673674284yn52o/1673674284yn52o-640x480-1.jpg HTTP/1.1
Host: cdn-s5.cfeucdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:22 GMT
content-type: image/jpeg
content-length: 57418
last-modified: Sat, 14 Jan 2023 06:36:47 GMT
etag: "63c24d7f-e04a"
server: cloudflare
expires: Mon, 05 Jan 2122 23:42:22 GMT
cache-control: max-age=3122064000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 21:46:59 GMT
expires: Sun, 29 Jan 2023 23:46:59 GMT
cache-control: public, max-age=7200
age: 6958
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ba712b809d1107138674cd304e041068
cb7ed5692720084e2b66e724712685d1d56dbe94
1624708856cbcf339b6acc2d31268b693af742aa1b0c699391dddbb09c493347
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1624708856CBCF339B6ACC2D31268B693AF742AA1B0C699391DDDBB09C493347"
Last-Modified: Sat, 28 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19399
Expires: Mon, 30 Jan 2023 05:06:16 GMT
Date: Sun, 29 Jan 2023 23:42:57 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 268191d29b7d30dd26de7d79c81635de
56b21b54c04dfd7b1922d28090a7aa6096089d6e
fd394b19e229b75c96bc3962ddd3d8e95da196faf073c4f91d9eaaf993cef42d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:42:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 14:30:39 GMT
Expires: Sun, 05 Feb 2023 14:30:38 GMT
Etag: "56b21b54c04dfd7b1922d28090a7aa6096089d6e"
Cache-Control: max-age=571060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7915d3c8e8ddb4f7-OSL
unseenreport.com/pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=629a79c4048fd9a1098471b0b9664f60&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
192.243.59.13200 OK 594 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=629a79c4048fd9a1098471b0b9664f60&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash 0e20a9a345825bba2abf765e63472d72
6b80eb584099737fda21d859d5decaad89aba66d
c015d4f06b86ab127249e691593a111198b13b66f752425b19341b8109ec68f2
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=629a79c4048fd9a1098471b0b9664f60&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 29 Jan 2023 23:42:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 50178ffc90562ecb885eae2fa492de34
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a9fd7d4599f3dd6968bebb4d4ec2593c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
192.243.59.13200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a9fd7d4599f3dd6968bebb4d4ec2593c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=cd8a9c33-ef04-42a7-a8ec-f01764e754b6&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a9fd7d4599f3dd6968bebb4d4ec2593c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 29 Jan 2023 23:42:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9d79f983710e160ff2979ae47a25567b
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 268191d29b7d30dd26de7d79c81635de
56b21b54c04dfd7b1922d28090a7aa6096089d6e
fd394b19e229b75c96bc3962ddd3d8e95da196faf073c4f91d9eaaf993cef42d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:42:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 14:30:39 GMT
Expires: Sun, 05 Feb 2023 14:30:38 GMT
Etag: "56b21b54c04dfd7b1922d28090a7aa6096089d6e"
Cache-Control: max-age=571060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7915d3cb5b83b4f7-OSL
buzzonclick.com/script/i.php?stamat=m%257C%252C%252CA2Zj43artGU3BU9GH0dEdHP3xP.d31%252CTwueD5UZ0cI1aAf3oVaSO-dmGgJzPqB9KvI7dV3Ng7iKyG6B0iMZzKFMmKLFo3eSgTzZ_s-QVvkAqspeCIVuWFnf7OYL5gjzJqP4Ai38aHQR9BDLwggp3Ug66rUiwAca-jVcM0_9B2BSnO_1KSs_4bmFKwjpKedJ4lUdS05TGwD9GMXRYHdf81oJZ-fXnZFtdz_QwzGyQhBO0vz8MmOQWot1Uxr5bLG8ckC_gNhE1rcc-2LPmlY7Ls7DFPzqg2QolYv8nTNfS00k-TOJ_8H68A3Cu0kua7k7n0mKRkp7Wj8PeHv6CQCKwyv3cbJk7oIp3lx0lhGVGXMFsZD4zK7SqpQxA4dtE4Myl1NXrJAY3Z-j3xDzQScNiPI4Vt10IpKmZ80bQgOfNEv91k55QPH1QBvavAVJYrW2cuX5yqpabc9H-rtEXjOMS5ILfYURGLjpfFxY2DpcnIBh0OWJoz6ZmjQWZIMG2woU7RWmxlowMNg%252C
35.186.243.67302 Found 473 B URL HTTP/2 buzzonclick.com/script/i.php?stamat=m%257C%252C%252CA2Zj43artGU3BU9GH0dEdHP3xP.d31%252CTwueD5UZ0cI1aAf3oVaSO-dmGgJzPqB9KvI7dV3Ng7iKyG6B0iMZzKFMmKLFo3eSgTzZ_s-QVvkAqspeCIVuWFnf7OYL5gjzJqP4Ai38aHQR9BDLwggp3Ug66rUiwAca-jVcM0_9B2BSnO_1KSs_4bmFKwjpKedJ4lUdS05TGwD9GMXRYHdf81oJZ-fXnZFtdz_QwzGyQhBO0vz8MmOQWot1Uxr5bLG8ckC_gNhE1rcc-2LPmlY7Ls7DFPzqg2QolYv8nTNfS00k-TOJ_8H68A3Cu0kua7k7n0mKRkp7Wj8PeHv6CQCKwyv3cbJk7oIp3lx0lhGVGXMFsZD4zK7SqpQxA4dtE4Myl1NXrJAY3Z-j3xDzQScNiPI4Vt10IpKmZ80bQgOfNEv91k55QPH1QBvavAVJYrW2cuX5yqpabc9H-rtEXjOMS5ILfYURGLjpfFxY2DpcnIBh0OWJoz6ZmjQWZIMG2woU7RWmxlowMNg%252C
IP 35.186.243.67:0
Hash 62d86ceebc9021320037cc5228e801cf
fd1e2c7177c09702ef5e40bb200bc8f2f659b798
ecff4c83b49b35999cd3e3aef9d6b4d38acade70bd859022014663c1b5cf5a2e
GET /script/i.php?stamat=m%257C%252C%252CA2Zj43artGU3BU9GH0dEdHP3xP.d31%252CTwueD5UZ0cI1aAf3oVaSO-dmGgJzPqB9KvI7dV3Ng7iKyG6B0iMZzKFMmKLFo3eSgTzZ_s-QVvkAqspeCIVuWFnf7OYL5gjzJqP4Ai38aHQR9BDLwggp3Ug66rUiwAca-jVcM0_9B2BSnO_1KSs_4bmFKwjpKedJ4lUdS05TGwD9GMXRYHdf81oJZ-fXnZFtdz_QwzGyQhBO0vz8MmOQWot1Uxr5bLG8ckC_gNhE1rcc-2LPmlY7Ls7DFPzqg2QolYv8nTNfS00k-TOJ_8H68A3Cu0kua7k7n0mKRkp7Wj8PeHv6CQCKwyv3cbJk7oIp3lx0lhGVGXMFsZD4zK7SqpQxA4dtE4Myl1NXrJAY3Z-j3xDzQScNiPI4Vt10IpKmZ80bQgOfNEv91k55QPH1QBvavAVJYrW2cuX5yqpabc9H-rtEXjOMS5ILfYURGLjpfFxY2DpcnIBh0OWJoz6ZmjQWZIMG2woU7RWmxlowMNg%252C HTTP/1.1
Host: buzzonclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sun, 29 Jan 2023 23:42:57 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://goosebomb.com/gogate/etoro/30/index.html?action=167503577710000TNOTV415326358024V8d
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
reypelis.tv/i.php
188.114.97.1200 OK 688 B IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5730f5c45a28a1b02ff9f559d9493927
4e4f8cac69d874e87ad0c5e6764c842ba46f9d61
d3969e49af57a38fd06fcc6fc75a6d916f0a5e1dbb458933922287099d375b6b
GET /i.php HTTP/1.1
Host: reypelis.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
platform: hostinger
access-control-allow-origin: *
access-control-allow-credentials: true
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9U4EfVPzlMHVSqDJvwywki5TsIxBfaLoxkGi9R%2FTXZisRY6qTjpbZcSb6H9icxpwILPwHLmJ8bSwVQF1bHzopqT5BH25Ngx98eZ1MUljn4s%2F%2BD1JSPWhoWv0ze2e7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c39d16b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
goosebomb.com/gogate/etoro/30/index.html?action=167503577710000TNOTV415326358024V8d
188.114.96.1200 OK 881 B URL HTTP/2 goosebomb.com/gogate/etoro/30/index.html?action=167503577710000TNOTV415326358024V8d
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c12b7245197d73ccf4a714336fd13dd0
16526f91c096b03d5f19cf309372a4711ee4a418
e144a3135b1cfd7c35b393765be9a17ef3f2b9113a41edb733b6f91ec2acef09
GET /gogate/etoro/30/index.html?action=167503577710000TNOTV415326358024V8d HTTP/1.1
Host: goosebomb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:58 GMT
content-type: text/html
x-guploader-uploadid: ADPycdux8CsYqUbh0YhfMkdZeHdi60pc2alMjn2qb865zCTvDd-gCQGKvgZRyucRAmxKquQqcSEMEn90R2biOpcbu3mh
expires: Mon, 30 Jan 2023 00:42:58 GMT
cache-control: public, max-age=3600
last-modified: Tue, 09 Mar 2021 12:58:00 GMT
x-goog-generation: 1615294680212970
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1290
x-goog-meta-goog-reserved-file-mtime: 1614945425
content-language: en
x-goog-hash: crc32c=UoRtCQ==, md5=3Wwo7SVOo9a6wHpjc59h4w==
x-goog-storage-class: STANDARD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcZXrf2C9MVOaf9rIxvnXGlqZrKbIL%2FGsrFugzjoY%2FBsttmmmTxfVg58KIJzzv5UATVbSPygpwbAOlofHL5%2FgH5KqHxvst4k%2FWoaHclyyJBj%2BqZ92J02%2B%2BzOeD1Zh51o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3cc89370b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=167503577710000TNOTV415326358024V8d
23.32.86.79301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=167503577710000TNOTV415326358024V8d
IP 23.32.86.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=167503577710000TNOTV415326358024V8d HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Content-Length: 0
Location: http://pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=167503577710000TNOTV415326358024V8d&utm_campaign=167503577710000TNOTV415326358024V8d&utm_term=
P3P: CP=`NOI DSP COR NID ADMa OPTa OUR NOR`
X-Robots-Tag: noindex
Expires: Sun, 29 Jan 2023 23:42:58 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 29 Jan 2023 23:42:58 GMT
Connection: keep-alive
Set-Cookie: ASP.NET_SessionId=fwsvgvwuitra4wu143mgx00i; path=/; HttpOnly; SameSite=Lax
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoro.com; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoro.com.cn; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etorocn.com.cn; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoroasia-securities.com; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoroasia.cn; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoroasia.com; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoroasia.com.cn; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=167503577710000TNOTV415326358024V8d&Custom=&ClickDateTime=2023-01-29T23:42:58.4747663Z&UserUniqueIdentifier=; domain=.etoroasia-Investing.com; expires=Thu, 30-Mar-2023 00:00:00 GMT; path=/
RequestURL=URL=http://med.etoro.com/aw.aspx?b=15344&a=89099&task=click&subaffiliateid=167503577710000tnotv415326358024v8d; domain=.etoro.com; expires=Tue, 28-Feb-2023 00:00:00 GMT; path=/
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (21747)
Hash 4292e44eba0796aac4d0b7aab80daec2
8131fd92ed85c9e8378d78e2b668cd7163fdf875
0deff459ca0049e97fc03f4a80660ef7e69185057ffdcd1a462cd3bcaffb6e5b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:59 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: QpLkTroHlqrE0LequA2uwg==
last-modified: Fri, 27 Jan 2023 07:38:15 GMT
etag: 0x8DB003973D2D647
x-ms-request-id: 40175fdc-601e-00c5-10ad-32a6dd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18273
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3d85c0cb521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
104.16.149.64200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (2829)
Hash b9eadb6d05b9bafe419aa99f68097df2
d850dc819264475c6d1cbe6e8419a1016a659db2
a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:59 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 51549
expires: Mon, 30 Jan 2023 23:42:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3d85c15b521-OSL
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
142.250.74.78200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
IP 142.250.74.78:0
File type ASCII text, with very long lines (1759)
Hash abf00340baf9a29bc8605ceed35eaf89
ed57d2c18cc40555ae8e4b420c2a1712d3b4a29f
d197dc37cf381a4caac7a30982253902020884bab6a139c1b6065a92487a7af6
GET /optimize.js?id=GTM-55ZB4XN HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 23:42:59 GMT
expires: Sun, 29 Jan 2023 23:42:59 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43351
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2a.png
23.38.201.117200 OK 1.5 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2a.png
IP 23.38.201.117:0
File type PNG image data, 136 x 132, 8-bit colormap, non-interlaced\012- data
Hash 6bedb1b3afc69447f7ea0c00993b53a8
1281f1fd5df23a9a19bd8573619007d04f6047ac
55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
GET /cache1/hp/v_251/images/instruments/t2-2a.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GwjkNkVX6XNgDy/EqhZYqwuyAZXoWmIihRIgL8pVQAZ+cdLf2B1mRGgtE40Efk8PvJC/9bDdPjc=
x-amz-request-id: 2YK44W05FGBKPXY9
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "6bedb1b3afc69447f7ea0c00993b53a8"
x-amz-meta-sha256: 55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 5AD0vLlUA3qdeBajLOCFJX7KhZ97TVn1
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1473
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-3.png
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-3.png
IP 23.38.201.117:0
File type PNG image data, 450 x 392, 8-bit colormap, non-interlaced\012- data
Hash f61c9d2ed729320b71af181ff331cb79
182f5c37accdde48b36e7803de6251cc92319b86
11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
GET /cache1/hp/v_251/images/instruments/t1-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QROrT5IF56Csa721o8jMuaOPS7ZCnagTgFUTFVB4b3ma4ingHPumJlGoiqjQ2jXOXRPzYUzUSK0=
x-amz-request-id: 2YKAFMAN6R4H8ZRS
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "f61c9d2ed729320b71af181ff331cb79"
x-amz-meta-sha256: 11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jthOX30XbKwmR1pfLXfT3rWQNPkRpf8k
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 31786
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2.png
IP 23.38.201.117:0
File type PNG image data, 668 x 938, 8-bit colormap, non-interlaced\012- data
Hash beb13238cf465f668c413a022f5633c8
31760dac17b8e58942c79708a4616c3a1df4b233
88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
GET /cache1/hp/v_251/images/instruments/t2-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: R2ut6Qv8hamrHIogLlOCe9ghA9JoB95G/cU3i/5CWzlX5mcjSEtsXL9BacX0Q8Ud+uhomxtNUyk=
x-amz-request-id: 2YKEBDX35CNMD7Q7
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "beb13238cf465f668c413a022f5633c8"
x-amz-meta-sha256: 88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: KxGRrkA9bsTgUQt._P0LFt1nLEkc81PQ
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21388
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-3.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-3.png
IP 23.38.201.117:0
File type PNG image data, 322 x 432, 8-bit colormap, non-interlaced\012- data
Hash b7322c639dcf276550e310727cf76893
136b5f1a82788708f04b74a30fcefdadaff00e43
6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
GET /cache1/hp/v_251/images/instruments/t3-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XEodyMFkszRQ5oYN+PpkAr+vASOSIH7zSKlsN8lfURUN6ABr+ZqgmNOE5qIwIY96tJYOZrfabLg=
x-amz-request-id: 2YK9ATNWNWNS9PED
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "b7322c639dcf276550e310727cf76893"
x-amz-meta-sha256: 6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: WJKqYyPB3Pmwd_GBGVjxlhTSdkRKFxaP
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11012
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2bg.jpg
23.38.201.117200 OK 67 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 19c57357b906758af6469a6b2a2c8846
e360a5922a6d44ca6066ff5dff01ef2440fd7368
358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
GET /cache1/hp/v_251/images/instruments/t2bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Psn0VwpesA1R81AfCGfLxY85OzxxvnBO+YWZraJZu+n+0XMys3nQpF3iqWA23Rj1mcUCo8kehrA=
x-amz-request-id: 2YKDJXFWD0D9JFD3
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "19c57357b906758af6469a6b2a2c8846"
x-amz-meta-sha256: 358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: D_7Zfxto4dHrllws13BA_N9AssRyFt6H
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 66908
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/assets/css/onetrust.css
23.38.201.117200 OK 2.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/assets/css/onetrust.css
IP 23.38.201.117:0
File type ASCII text, with very long lines (885)
Hash b3f403de6d79b34f32dba5e4effaabc2
7b436b6060e88daf19f12bd27cbe2533d25a2343
3ec0cde05873dde93c16f4b4f3b7ca7e236ba4e82ab595ee8f13b959f5b2813a
GET /cache1/assets/css/onetrust.css HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7vqiIPn64ptqVNwIM1fvJGjbv11IUdsOT6JKR8Cyxsr81DT/4uax9s7iGzI7fTeV0SwX20GmqJE=
x-amz-request-id: Z3V5BX28EG5962WS
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 12:30:17 GMT
etag: "66e8b2c112ebb5bb9b4fc326d3d5f87b"
x-amz-meta-sha256: 55c8a3b763077bf16466a3a9af5b7e5b2baba7d345cd90b50403058a633bda48
x-amz-meta-s3b-last-modified: 20220616T122823Z
x-amz-version-id: Qcu9.b5PJ70a2SNFK2gJjtsbcFrk1Lur
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
content-length: 2655
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-2.png
IP 23.38.201.117:0
File type PNG image data, 436 x 390, 8-bit colormap, non-interlaced\012- data
Hash dad8f4f5e1f7c6afaa7a1d02bbad4aae
7c47738ec815ba441c70d30967035c1a2c3a34ff
82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
GET /cache1/hp/v_251/images/instruments/t3-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Xp6JEjwmHzL3wkcP+paCQ2zOQgffVOetGc182x6PmN5nMEszffZ1BeQT3wqdVJkuYEmAUN5tlu8=
x-amz-request-id: 2YK4DYHHX57V0RMV
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "dad8f4f5e1f7c6afaa7a1d02bbad4aae"
x-amz-meta-sha256: 82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: g0y7XfXoDuuy0HKXlcn4alvh_oHyuxQN
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21261
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3bg.jpg
23.38.201.117200 OK 59 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 6d94c8cb40dfa33fccc8b4800f2c7e0e
745c0d98d4cde90d8717feadfa120e0cc20dab1f
a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
GET /cache1/hp/v_251/images/instruments/t3bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: botAu4agTxbcXhP4nhQiOHTBRWpfhYfqkprm8qvkG29yITVr9udN4HcOdhmxrnBhN3rxC6CLVpQ=
x-amz-request-id: 2YKDJSAHPFCWFV8W
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:47 GMT
etag: "6d94c8cb40dfa33fccc8b4800f2c7e0e"
x-amz-meta-sha256: a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jEbhgN1B3_GUVHLFa3WG2pKKhG.rwb6h
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 59017
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-4.png
23.38.201.117200 OK 43 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-4.png
IP 23.38.201.117:0
File type PNG image data, 660 x 684, 8-bit colormap, non-interlaced\012- data
Hash 43f62ee21492814c91e306a57be05ee7
77e0ddcffc72c83f9c6690f521a4594d0eacdf7a
55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
GET /cache1/hp/v_251/images/instruments/t3-4.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LkgMKfO3s4EjOHrBvcE0TM7FDH1RkEHtU3sdqN/lht+axSAI3K/FiHE5GLkMRUQBkiJVXgLr6TI=
x-amz-request-id: 2YK5PBRJPMGA132W
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "43f62ee21492814c91e306a57be05ee7"
x-amz-meta-sha256: 55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: ugasmCPfC.RaPCzskx2l5vg5R_w_.WeM
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 42876
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1bg.jpg
23.38.201.117200 OK 72 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1934x1230, components 3\012- data
Hash 2b8c66295f644aad1bbd97bffcf8f910
f34b342b50c43263d6c130286958086addefd3d6
923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
GET /cache1/hp/v_251/images/instruments/t1bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KhJceQ7IU70yqIwniW3qgdmlttrjisBNVEUw3JuReWCAzi35WTZaxFMH0gZCYg3pR4DiAEfHemU=
x-amz-request-id: 6ZC4NYMTFPVT44F6
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "2b8c66295f644aad1bbd97bffcf8f910"
x-amz-meta-sha256: 923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: frfwFDrMQ.NJBLP5Lhg1Dkqab3LUF7MN
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 72188
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/cel16img.jpg
23.38.201.117200 OK 30 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/cel16img.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1922x1922, components 3\012- data
Hash 2e5faa3e89c61cfc05e4d8a212aa1897
e38e8fcbf8d01e982596c802a91bf57c59a3b44c
a3d41efd1babc8e40eb4aeea542bb59447d96cb5e92c7fa8af7681e501742522
GET /cache1/hp/v_251/images/hp-2022/cel16img.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 5hrybUcfP4qTc6EtBPruG40D5pxigEphoUGnVl9R8Zn4n+gBq31rfkU42bVivm3ZD2tpufIag88=
x-amz-request-id: H3NK7QDDRF4ZQ73N
x-amz-replication-status: COMPLETED
last-modified: Mon, 23 Jan 2023 14:13:18 GMT
etag: "2e5faa3e89c61cfc05e4d8a212aa1897"
x-amz-meta-sha256: a3d41efd1babc8e40eb4aeea542bb59447d96cb5e92c7fa8af7681e501742522
x-amz-meta-s3b-last-modified: 20230123T104112Z
x-amz-version-id: yIT.YC.UGklLy69jwj0Edpo8q35NL47f
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 30187
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-1.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-1.png
IP 23.38.201.117:0
File type PNG image data, 744 x 504, 8-bit colormap, non-interlaced\012- data
Hash 5a95a095169c27431449bf549b99993d
91a11cffc857dcaa2b38fa901423b227870ac1e4
681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
GET /cache1/hp/v_251/images/instruments/t2-1.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: hMu+RaKQe3yqnZbwVdkRx9r+pXk+MVwAQEr20O9RXo8r4b+cd3EwZII3DcdkNZ+OCsf+wrR1WT8=
x-amz-request-id: 2YKDC81WHKSPXXSX
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "5a95a095169c27431449bf549b99993d"
x-amz-meta-sha256: 681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jrq6j8C8VCTZGrdVjEchvBequPG_ul7G
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11234
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-2.png
23.38.201.117200 OK 115 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-2.png
IP 23.38.201.117:0
File type PNG image data, 588 x 638, 8-bit colormap, non-interlaced\012- data
Size 115 kB (115422 bytes)
Hash a0edff04cdbe03fe84f35b2368beedd9
6231c9d9265502517533892d8a0f42d5790c0310
51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
GET /cache1/hp/v_251/images/instruments/t1-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rvPmF+agKi4hdU26suM2GppVDMYciaGjjIBua3iH3JbiL8uXDMVgMZbckXcXkctizXXcmNy5pFM=
x-amz-request-id: 6ZC108NB4HCV794X
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "a0edff04cdbe03fe84f35b2368beedd9"
x-amz-meta-sha256: 51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: UNjk1Z_s1eAFS_FFYKC8KW9QEOLe3Xgu
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115422
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:42:59 GMT
date: Sun, 29 Jan 2023 23:42:59 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
104.16.149.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Hash 6439835da3e85cb6917ac06b2dab2b37
b65ad002a7c48559e9124256295c1c688e8f3084
bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 69958
expires: Mon, 30 Jan 2023 23:42:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3d8fc6fb521-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/logger/logger.js
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/others/logger/logger.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (5055), with no line terminators
Hash f620bec033fe844135374191b331937d
ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
GET /others/logger/logger.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sun, 29 Jan 2023 23:48:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
content-length: 2285
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash fe7a0f585047b3ee71b095281748f6cc
583e498cad5cae79a165488d46c0246131d87aec
1ac9346bab5a56878ce5cb21088a9b5c26de2bcf7ece176d2feb4caa6a03f845
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Last-Modified: Sun, 29 Jan 2023 22:37:22 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
104.17.224.78200 OK 0 B URL HTTP/2 cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
IP 104.17.224.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1
Host: cdn.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: text/css
content-length: 0
x-amz-id-2: 0YZ0H80/30MgBTG2ijPKvwK2o4c7bg1oKeBH6NC/Vct0AWcwyu8ktTQ8I/j+udXxbuBe4+WEVrY=
x-amz-request-id: K2GEEGSX18GPYAHC
last-modified: Thu, 20 Oct 2022 08:49:27 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=300
cf-cache-status: HIT
age: 312554
expires: Sun, 29 Jan 2023 23:48:00 GMT
accept-ranges: bytes
set-cookie: __cf_bm=s7W5sZ18Y2W6nMq2nQ2adCZcl9bj.pyzPNryr1WDaK4-1675035780-0-AcNnTmgPXGA6cp5/5alqIuPz3+/ikyFnH8OD/17uYAh2zoCb9Oo8zvh1m6W9Y/5DOz1Q1eFIoQ67ThkkjdoDSAg=; path=/; expires=Mon, 30-Jan-23 00:13:00 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7915d3d96efeb506-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Hash 4a61fe67108ddbb01a2ceaf3687ba30e
3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 815afdcb351b7574187b986d24f52f66
583e3d643f9ce3a1c69b45c5a090ae9aa994fc6d
4a45e5a538b1e48ebc6b86fb2546373e2578f7a3f8f2e7719d6cf435c4c4ae88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Last-Modified: Sun, 29 Jan 2023 23:18:45 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
marketing.etorostatic.com/cache1/hp/v_251/images/flags-hd2022.png
23.38.201.117200 OK 17 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/flags-hd2022.png
IP 23.38.201.117:0
File type PNG image data, 830 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d14115558936d84e16ec7efd2f4f45
a6268986699c86e577ca5589a0fcf2880661f7ea
68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
GET /cache1/hp/v_251/images/flags-hd2022.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ECHA4xYTq7DaDAA/eyc0DDJs4hJ9s/q7XZSNxUBs4iGfjzfkyNaiYGNJvrOy3Q9BDic3Ng+cxwM=
x-amz-request-id: 2YK7QTDS9BR0D91B
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:28 GMT
etag: "69d14115558936d84e16ec7efd2f4f45"
x-amz-meta-sha256: 68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
x-amz-meta-s3b-last-modified: 20220920T150800Z
x-amz-version-id: 9vizyBZLY_7vmO2dUMYwjK63AIZewb5K
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 16703
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/help.svg
23.38.201.117200 OK 872 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/help.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (336)
Hash 4b88902a44ba63591cb8438b3d5f9800
1705090d91cfc55900a48bdc2c99154fd9df80f8
e05c9e30ea9811e25f7ee22f379cc98ef4937a638707c0ae67076a9eb1affb9d
GET /cache1/hp/v_251/images/hp-2022/help.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: uUH/SCOt0zaGahnfLTjhheNhRM5QFcicOrFjmBjiJGkRd9pvOUsKo0B0dWKbloQtD8J2QSCtl+4=
x-amz-request-id: T9CKAH8YB7J5R8GR
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:36 GMT
etag: "4b88902a44ba63591cb8438b3d5f9800"
x-amz-meta-sha256: e05c9e30ea9811e25f7ee22f379cc98ef4937a638707c0ae67076a9eb1affb9d
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: qZ_f5f4bw0sN7YplBo29kVrEYw3O6kmM
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 872
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Hash 1f385d1ea2e1c06cda506bafc17a4a94
0dc0ebf0502018976383091908379054b5a3cfed
e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 12028, version 1.0\012- data
Hash ee570da55652b90a2222880a1ece7323
d9a81b65239041b42c6aed22f5809797f0574c1e
26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
GET /cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xDtdJzSi21sF7CpiuxjIbrQdQrHfCf0qZSuIYVXllN38HVN7OiOcLrLEIAOZRHPfr0UXkqds/bQ=
x-amz-request-id: 0RKEXE4EJ8774W83
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:52 GMT
etag: "ee570da55652b90a2222880a1ece7323"
x-amz-meta-sha256: 26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
x-amz-meta-s3b-last-modified: 20220206T231740Z
x-amz-version-id: _nNBWNk.b.aBJaK32Y.ScZnJcz4Is6Dl
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 12028
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Hash db85a0ddc6f6973df4bc98a1b2ed9d65
c6bba41edc8501b76aed9bff58597edef1c2502f
26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash e20f6e1c0681c07f69d37c428c0684d3
4aa36ecd12f2e7d3592807a0a3879914252faeb5
c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31844, version 1.0\012- data
Hash 9d7f82d9510b57b2d00f328d87ef3869
2a031c8ae51e62d8dc30fa0bb47f57a3695224c1
c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
GET /cache1/fonts/madera2/Madera-Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: d6poWwwwj9abPq/ES4oNvQTY1I4y2hMv1EdVnTf07kpNv7a2N1tn1ySx9pMV8KWPcG6wwi1unZI=
x-amz-request-id: K8KWP566ERFJBVE1
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:29 GMT
etag: "9d7f82d9510b57b2d00f328d87ef3869"
x-amz-meta-sha256: c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
x-amz-meta-s3b-last-modified: 20220203T192736Z
x-amz-version-id: VMc3owpvYk5nHUjZ.xX4Wq.u2RPawBMa
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31844
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/waypoints.min.js
23.38.201.117200 OK 2.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/waypoints.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (8887), with no line terminators
Hash 1d2137aea2d4a9fca68a7b135e2cb9f3
e97ca29d385352fc286f1711bbdc45584161a316
ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
GET /cache1/hp/v_251/js/waypoints.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4jyoriNuOQDluhVmeKbAdwI7b1knyfI40Zc6DIVLhVc2DObXGGKkk4xXasMfKp7N3wShJB0CjrI=
x-amz-request-id: SK3F98EM1CPRMZRA
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:16 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: gMkoheIrh.j.zL8_U5CPh02ZuY2VtYGx
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
content-length: 2635
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/slick.min.js
23.38.201.117200 OK 9.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/slick.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 17232e2fe3e81d95e6f1cb7c4d5b9e57
510e1569ab0187ef5712a7630d673536e8c519ac
4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
GET /cache1/hp/v_251/js/slick.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 0N03trrDHydqpQf5BwXcasnLyb6OZrTPIUgi4sbA1qv0fhHe0Rekn71pp+fVw2w/KGheWhsFAh0=
x-amz-request-id: SK38GK6Q9A8ANX7E
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:15 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: _uLeGHTadqNo6x3uMpwMlci.fzdUG0sr
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
content-length: 9568
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/jquery-3.5.1.min.js
23.38.201.117200 OK 31 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/jquery-3.5.1.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (65451)
Hash e96fc85ce0a9070920b87b1072dd9e1d
afd9871c95caf6a26ae56e8c661789d00c510162
43e3ac1190912814c4b67ca3512c14745d1b41ce4740d3df73ead62561ca31dd
GET /cache1/hp/v_251/js/jquery-3.5.1.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: I1OwF7TCl6uJJX4PxLDEgsPpyDxD8+9AxQHjRw8bmqkTilDOPjzTvVSo3ELQYeVWPUEG7VxEwhs=
x-amz-request-id: SK30ZSEXQFQ57QAC
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:13 GMT
etag: "dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-meta-sha256: f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: VPuS8T0KcknbdFULoS_fgFdaFk3vHm2H
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
content-length: 30950
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
104.16.149.64200 OK 78 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (65455)
Hash f1e687b418a03f55376f8dabb88831b1
59e7de3f39b2bd1d3cff8b1286f317d913a03fac
a8f0ed59befb0dc3da4e194382166d61584fc77442140cdbe734a761ca07ded2
GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74922
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3da6d86b521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash b03dc6f6a9ff7dcd39bbc4dde709d434
7fa1906b24c8ad2141f48729c7ee34138fe8511f
5a8e77d3760aa3723e321da1d93feedb57d37c92b80274a0ac5a3a27dd3cf6bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2749
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Last-Modified: Sun, 29 Jan 2023 22:57:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
marketing.etorostatic.com/cache1/hp/v_251/videos/etoro_16_birthday.mp4
23.38.201.117206 Partial Content 1.9 MB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/videos/etoro_16_birthday.mp4
IP 23.38.201.117:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.9 MB (1852756 bytes)
Hash 6068014069a7f2343acfbef7939f7101
afdb09e556ad3c9b59db1addcd9ca88bdd5f89f5
9e282552599f195e7f5e740642c0625fcb906fe46109b30b9cf36ef057757b6d
GET /cache1/hp/v_251/videos/etoro_16_birthday.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: zXty8AVNhPBJQ89xfclV16HDh+MgZzCFgyXe18YarRlEAKXwP1E8irFP34T3jGSWUkiHi6Bft9M=
x-amz-request-id: SKEPE5AE0V4NNV9Q
x-amz-replication-status: COMPLETED
last-modified: Mon, 23 Jan 2023 10:11:32 GMT
etag: "86623ba37009c67049768d6e2fba8029"
x-amz-meta-sha256: 010339745da9e0856c13414f4756b2c5ef3d6d18500e6781ecb81c927eef4177
x-amz-meta-s3b-last-modified: 20230123T080244Z
x-amz-version-id: KHIXVp_HKBLL7GFTqv6OCtJ4WebFzLAQ
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
content-range: bytes 0-2454539/2454540
content-length: 2454540
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
104.16.149.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 5521c152bc1efa1baa93129bb8717e19
d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
GET /scripttemplates/6.27.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: VSHBUrwe+huqkxKbuHF+GQ==
last-modified: Mon, 29 Nov 2021 20:30:50 GMT
etag: 0x8D9B3772216FA2F
x-ms-request-id: 247cd6ec-501e-004e-2dec-ec1d03000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 67012
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3dbced8b521-OSL
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.26.85200 OK 12 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.26.85:0
File type JSON data\012- , ASCII text, with very long lines (37703)
Hash 238527ba179e8d9e5d1b03fa91670019
e9b42b56594208026210bf2fdb977d63a4e1b2e3
cc85c71ddefae37698083eb60f55545a5fd73953e04c78293d61fd07e63f4c7b
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7915d3d9a8eab50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1871831.js?sv=6
54.230.111.66200 OK 7.4 kB URL HTTP/2 static.hotjar.com/c/hotjar-1871831.js?sv=6
IP 54.230.111.66:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (11001)
Hash 93fbf8d9b33a574a30f8e00669e2097e
7514d90f8f9baf00e4a7c98f240ab08e64774098
93c296780ba92d7f93897ab4b34f7672a991b8219875e38fe431170b8d2cad06
GET /c/hotjar-1871831.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 29 Jan 2023 23:42:38 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/9ef2ee2a36c05a679164f1d9a969122d
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mLSECGSaieznAdpIIv4bNZIZD9BBD4vfaPosUoOB_mVNv0NF4l4xOA==
age: 22
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
83.229.67.229200 OK 144 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 83.229.67.229:0
File type Unicode text, UTF-8 text, with very long lines (61915), with no line terminators
Size 144 kB (143894 bytes)
Hash c16c1de20c24aabaaf524bf48e2e2316
89b23e434f3e7f32a261e0ce7e4d34d8bb78f467
dd6dfc51d230a938278450fa5cb31fb0aaf040f040a0ba189c05648e54dc20a2
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Mon, 30 Jan 2023 23:43:00 GMT
content-type: application/x-javascript
last-modified: Thu, 26 Jan 2023 13:36:03 GMT
etag: "6bcef-63d281c3-678819b673a2fdb4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 143894
date: Sun, 29 Jan 2023 23:43:00 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.75200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 985Vgt13bHY9Dpalt_KLuWW-spbeSoxfzVx0Z8l4BBAw2abA82qdsA==
age: 225534
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.adsrvr.org/up_loader.1.1.0.js
54.230.241.118200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 54.230.241.118:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 08:26:11 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aToigXINA5a7f8_Lv5jkuI2xHIvZqb09lMiSkgsTPUbhCURdXAYpww==
Age: 55010
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 11c681fb125cd8ad7e259c4117832195
e103b99e4faccc670d376705603fbeaede45986e
134d3216a9462c24ed6b46981d9768450227d632b483cfdbc53a369ff5c9e19c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171733
Date: Sun, 29 Jan 2023 23:43:00 GMT
Etag: "63d6e9df-1d7"
Expires: Tue, 31 Jan 2023 23:25:13 GMT
Last-Modified: Sun, 29 Jan 2023 21:49:19 GMT
Server: ECS (dcb/7F5B)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WPuQl_UhGObWiB5bEneiy7puDt5d-cnJS6_52c5QRFFcBrbmjkSJyw==
Age: 5754
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
104.16.149.64200 OK 36 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
IP 104.16.149.64:0
File type ASCII text, with very long lines (44586)
Hash e766ffde068c5034fbccd5986f9f833f
a51067b306cb4943ea98c85d9530c02fe3ea42f3
293df809ecce9636f6d166ba1e17168a63cef04a88c8dd10eb85faf5b51fe2b5
GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 75992
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3dbcedeb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30923), with no line terminators
Hash 957d65dfa972893511879b4d2abce54b
a0106f59c171c72c527a88cc3b06263af186a5c4
24cae1a14856e2642826fe9d960b0e61ae60fa45a778ec61f2b7d862dc3af603
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13270
server: CloudFront
date: Sun, 29 Jan 2023 23:43:00 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Mon, 30 Jan 2023 22:01:13 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -KPD52GQyAstdBRAz9Bf4JgQMVYoquEZ_pyTfGJJ-N8DzCXT1M_XQg==
X-Firefox-Spdy: h2
9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
142.250.74.70200 OK 299 B URL HTTP/2 9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (601), with no line terminators
Hash 9c094b2b9bfb684fb385afd2d675c442
d6f12118695690d0ea07be628f75428b6db79fa0
0dc2731e933fc5e046824b6d85d42d12075254fc3826458ef1b037617f40e4c6
GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1
Host: 9944765.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:00 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 299
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 23:58:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4e89987e8dcbf8674efeb07e748a9c0e
6caabae3117bed813ab6cc63441129c4dc6a4227
240c4a035e7cb222e9b88cae1ecb7a356f8fe18633e9e7d9da593a509298be3e
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5845
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:00 GMT
Last-Modified: Sun, 29 Jan 2023 22:05:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
c0.adalyser.com/adalyser.js?cid=etoro
34.252.120.6200 OK 12 kB URL HTTP/2 c0.adalyser.com/adalyser.js?cid=etoro
IP 34.252.120.6:0
File type ASCII text, with very long lines (31834)
Hash 5301983312500f1fa818e866832a8ede
96c054b07049abe3b764dbcf0f8189055de98e78
24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
GET /adalyser.js?cid=etoro HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:00 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.adalyser.com/tracking/track/v3/p?stm=1675035790478&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1675035790477%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22167503577710000TNOTV415326358024V8d%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A1%2C%22sid%22%3A%226429c2bd-4d43-44d0-a98c-ff4580ae1e77%22%2C%22duid%22%3A%2254b9e9b2-cc23-460d-8091-46369f77c9f6%22%2C%22cw%22%3A1675035790477%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
34.252.120.6200 OK 43 B URL HTTP/2 c0.adalyser.com/tracking/track/v3/p?stm=1675035790478&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1675035790477%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22167503577710000TNOTV415326358024V8d%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A1%2C%22sid%22%3A%226429c2bd-4d43-44d0-a98c-ff4580ae1e77%22%2C%22duid%22%3A%2254b9e9b2-cc23-460d-8091-46369f77c9f6%22%2C%22cw%22%3A1675035790477%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
IP 34.252.120.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /tracking/track/v3/p?stm=1675035790478&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1675035790477%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22167503577710000TNOTV415326358024V8d%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A1%2C%22sid%22%3A%226429c2bd-4d43-44d0-a98c-ff4580ae1e77%22%2C%22duid%22%3A%2254b9e9b2-cc23-460d-8091-46369f77c9f6%22%2C%22cw%22%3A1675035790477%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
etag: W/"2b-B//0C13UlayirE4cP7xgqg"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90fc19b6c12c9395d1e55846673de4cd
97acdf5d3bf0979191f219986f9779e27a1c57f2
e2e4e3c21e21820afde95ca46571f18fe065b4fca5c28e76279be60eefd39f61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5557
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Last-Modified: Sun, 29 Jan 2023 22:10:24 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90fc19b6c12c9395d1e55846673de4cd
97acdf5d3bf0979191f219986f9779e27a1c57f2
e2e4e3c21e21820afde95ca46571f18fe065b4fca5c28e76279be60eefd39f61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5557
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Last-Modified: Sun, 29 Jan 2023 22:10:24 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90fc19b6c12c9395d1e55846673de4cd
97acdf5d3bf0979191f219986f9779e27a1c57f2
e2e4e3c21e21820afde95ca46571f18fe065b4fca5c28e76279be60eefd39f61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5440
Cache-Control: max-age=117406
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Etag: "63d616e3-1d7"
Expires: Tue, 31 Jan 2023 08:19:47 GMT
Last-Modified: Sun, 29 Jan 2023 06:49:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
216.58.207.194200 OK 299 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (600), with no line terminators
Hash cce57c047e7f75fd554166059e96616f
a9efe86b1c06d9c976d5874c22e668dfc02246be
a85276e714ad66cfe59844a1b667e0204824c5c5402c3ab6ecd819836c47f313
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:01 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 299
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=328533b8-a017-417f-a6e8-44f3e8d10fc2&u_sclid=612e4cdc-dcfb-4101-8da2-aea73343f23e
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=328533b8-a017-417f-a6e8-44f3e8d10fc2&u_sclid=612e4cdc-dcfb-4101-8da2-aea73343f23e
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=328533b8-a017-417f-a6e8-44f3e8d10fc2&u_sclid=612e4cdc-dcfb-4101-8da2-aea73343f23e HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 625
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
access-control-allow-origin: https://www.etoro.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgREAIAQAwIncUYhxJKYwfP8e7u1yoTcasOaF4Cyg9VZFhVrJDOkR3HKMBj/tps41MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/2b300842-74be-4e72-8ed5-3bab9449a996.js
35.190.43.134200 OK 622 B URL HTTP/2 tr.snapchat.com/config/com/2b300842-74be-4e72-8ed5-3bab9449a996.js
IP 35.190.43.134:0
Hash a8fe2d7e41d443fae66427daecf6a28f
3c04db9d179ba8e1704e27a4bda5ac68fa822468
3ea40254795dec9481a31129a618b915c687e8459fd9946fe554a3f30fde2974
GET /config/com/2b300842-74be-4e72-8ed5-3bab9449a996.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90fc19b6c12c9395d1e55846673de4cd
97acdf5d3bf0979191f219986f9779e27a1c57f2
e2e4e3c21e21820afde95ca46571f18fe065b4fca5c28e76279be60eefd39f61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5557
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Last-Modified: Sun, 29 Jan 2023 22:10:24 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.162200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;u14='etoro-gtm-memory-cleanup';dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:01 GMT
expires: Sun, 29 Jan 2023 23:43:01 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/etoro.com/config.json
147.185.239.229200 OK 157 B URL HTTP/2 cdn.acsbapp.com/cache/app/etoro.com/config.json
IP 147.185.239.229:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3dcafc1cd6ed30b91c05bb414df8ebc8
60f9adba664818165aa90609d303a861a701a906
0136637915876022d0e70e008cea9ded5bf33d4f0ac938af8e5ca13d136a1324
GET /cache/app/etoro.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Mon, 30 Jan 2023 23:43:01 GMT
content-type: application/json
last-modified: Sun, 29 Jan 2023 23:41:11 GMT
etag: "9d-63d70417-df658e675cb7f414;;;"
accept-ranges: bytes
content-length: 157
date: Sun, 29 Jan 2023 23:43:01 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.acsbapp.com/cache/app/en.build.json
147.185.239.229200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 147.185.239.229:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 0e5a9d6b937f87fe7f96de3be6a04eff
6ca319a97da6139b0871fb1b443e5052f448cafe
d868885a573ada5f0f0adf65d24b35aae45b18aa95a153b2b9e7389877c5af6e
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Mon, 30 Jan 2023 23:43:01 GMT
content-type: application/json
last-modified: Sat, 28 Jan 2023 19:02:03 GMT
etag: "3bb7f-63d5712b-aa02df9ff4849d4e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25923
date: Sun, 29 Jan 2023 23:43:01 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&sf=1&tpi=&ch=&uvid=&tsf=0&tsfmi=0&tsfu=&cb=1675035790423&hl=1&op=0&ag=1317291471&rand=136181856066192885299651201272122951261215577002227671902221657287620204015&fs=10x10&fst=10x10&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=1&at=&di=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%3D%3D&dep=2&pre=0&sdd=%7B%7D&cri=DSbWleqUfJ&pto=2670&ver=50&gac=-&mei=&ap=&duid=1.1675035790.BAonDrBod9SQ4yeF&suid=1.1675035790.8Ys1J9J2RVXwu59d&tuid=1.1675035790.eSqZhPa9GbITJaEO&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=49%2C2359%2C213&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
34.199.234.25200 OK 1.1 kB URL HTTP/2 one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&sf=1&tpi=&ch=&uvid=&tsf=0&tsfmi=0&tsfu=&cb=1675035790423&hl=1&op=0&ag=1317291471&rand=136181856066192885299651201272122951261215577002227671902221657287620204015&fs=10x10&fst=10x10&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=1&at=&di=W1siZWYiLDMxMzddLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFs3MSwic291cmNlVVJMPXQsdGhpcy5saW5lPXJ9ZnVuY3Rpb24gIl0sWyJjYiIsIjEsMCwwLDAsMCwwLDAsMCwwLDMsMSwwLDIsMCwwLDIsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDEsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwxLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCw1Il0sWy0xLCJMaW51eCB4ODZfNjQiXSxbLTIsIi0iXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiTlJFVU1cIixcIndlYnBhY2tDaHVua05SQkFcIixcIm5ld3JlbGljXCIsXCJOUkJBXCIsXCJPbmVUcnVzdFN0dWJcIixcIk9wdGFub25XcmFwcGVyXCIsXCJvdEhhbmRsZUxlYXJuTW9yZVwiLFwiZVRvcm9Db29raWVDb25zZW50XCIsXCJldG9yb19ocFwiLFwiaGpcIixcIl9oalNldHRpbmdzXCIsXCJkYXRhTGF5ZXJcIixcImV0b3JvTG9nZ2VyQXBwc1wiLFwiZ2V0VXNlckd1aWRzXCIsXCJzZXRFbmNvZGVkSXRlbVwiLFwiZW5jb2RlSXRlbVwiLFwiR3VpZEdlbmVyYXRvclwiLFwiZ2V0RW5jb2RlZEl0ZW1cIixcImRlY29kZUl0ZW1cIixcInNhZmVKU09OUGFyc2VcIixcImV0b3JvTG9nZ2VyXCIsXCJpXCIsXCJMYXp5TG9hZFwiLFwiZXF1YWxIZWlnaHRcIixcIk9uZXRydXN0QWN0aXZlR3JvdXBzXCIsXCJPcHRhbm9uQWN0aXZlR3JvdXBzXCIsXCJvdFN0dWJEYXRhXCIsXCIkXCIsXCJqUXVlcnlcIixcImNzc19icm93c2VyX3NlbGVjdG9yXCIsXCJlVG9yb19haXJkcm9wXCIsXCJsbVwiLFwibWl4cGFuZWxcIixcImdcIixcIndcIixcInNcIixcIm9cIixcIm1cIixcImhcIixcImJcIixcImNcIixcIkFPU1wiLFwiQ2Fyb3VzZWxcIixcIkZhbmN5Ym94XCIsXCJQYW56b29tXCIsXCJPcHRhbm9uXCIsXCJPbmVUcnVzdFwiLFwiZ29vZ2xlX3RhZ19tYW5hZ2VyXCIsXCJnb29nbGVfb3B0aW1pemVcIl0sXCJuXCI6W1wic2F5c3dob1wiXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W1wiZGVzY3JpcHRpb25cIixcIm9nOnRpdGxlXCIsXCJvZzpkZXNjcmlwdGlvblwiLFwiYXBwbGUtbW9iaWxlLXdlYi1hcHAtdGl0bGVcIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTAsMTAsMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCItIl0sWy0yMSwiLSJdLFstMjIsIltcIm5cIixcIm5cIl0iXSxbLTIzLCIrIl0sWy0yNCwiW10iXSxbLTI1LCItIl0sWy0yNiwiLSJdLFstMjcsIi0iXSxbLTI4LCJlbi1VUyxlbiJdLFstMjksIi0iXSxbLTMwLCJbXCJ2XCIsMF0iXSxbLTMxLCJmYWxzZSJdLFstMzIsIjAiXSxbLTMzLCItIl0sWy0zNCwiLSJdLFstMzUsIlsxNjc1MDM1NzkwNDEyLDBdIl0sWy0zNiwiW1wiNS80XCIsXCI1LzRcIl0iXSxbLTM3LCItIl0sWy0zOCwiaSwtMSwtMSw0OTEsMCwwLDAsMCwwLDgwLC0xLDAsLCwyNjYwLDI2NjAiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiLSJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsIi0iXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCJfMVwiLFwiMzM0MTkwNjk4OVwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W10sXCJzXCI6MX0iXSxbLTU1LCIxIl0sWyJkZGIiLCIwLDAsMCwxLDEsMiwwLDAsMSwwLDEsMCwwLDAsMiwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCw2LDAsMCwwLDYsMCwwLDAsMiwwLDAsMCwwLDAsMSwwLDIsMCwwLDEsMCwxLDAsMCwwLDAsMSwxIl0sWyJibmNoIiw1MV0sWyJhYm5jaCIsNTJdXQ%3D%3D&dep=2&pre=0&sdd=%7B%7D&cri=DSbWleqUfJ&pto=2670&ver=50&gac=-&mei=&ap=&duid=1.1675035790.BAonDrBod9SQ4yeF&suid=1.1675035790.8Ys1J9J2RVXwu59d&tuid=1.1675035790.eSqZhPa9GbITJaEO&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=49%2C2359%2C213&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 34.199.234.25:0
File type ASCII text, with very long lines (3242), with no line terminators
Hash bd39b85583cb5ac7a30982fbbc2e362d
798626e21e179beba76305f3ff451a0e92932a6f
0f5004994943c2bbbe8303b85273d5dad324696b936915bc0a76a5d347f45461
GET /ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&sf=1&tpi=&ch=&uvid=&tsf=0&tsfmi=0&tsfu=&cb=1675035790423&hl=1&op=0&ag=1317291471&rand=136181856066192885299651201272122951261215577002227671902221657287620204015&fs=10x10&fst=10x10&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=1&at=&di=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%3D%3D&dep=2&pre=0&sdd=%7B%7D&cri=DSbWleqUfJ&pto=2670&ver=50&gac=-&mei=&ap=&duid=1.1675035790.BAonDrBod9SQ4yeF&suid=1.1675035790.8Ys1J9J2RVXwu59d&tuid=1.1675035790.eSqZhPa9GbITJaEO&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=49%2C2359%2C213&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 29 Jan 2023 23:43:01 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=d181c66367b412937b181d0a0b979dff; Max-Age=29030400; Path=/; Expires=Sun, 31 Dec 2023 23:43:01 GMT; HttpOnly; Secure; SameSite=None
content-length: 1092
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (17737), with no line terminators
Hash 69ccf6d91702cd65dedfbad36e94c61b
adce8bd55dcc466c709dc96e230cbdd72fb27645
9a5b793c3b453c30229658bebe68719aa0df37a71ef371a6c6117e123b091e64
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "9f0b052ec22f789c3cc95c26dd0da7f4:1674389451.57807"
Last-Modified: Sun, 22 Jan 2023 12:08:14 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Mon, 30 Jan 2023 00:03:01 GMT
Date: Sun, 29 Jan 2023 23:43:01 GMT
Content-Length: 5884
Connection: keep-alive
script.hotjar.com/modules.dcdf252a9a6cf097c357.js
54.230.111.44200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.dcdf252a9a6cf097c357.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 4ab050de5a6437b8d1f5955ab1dbfb07
498e55a41dc3df84cf825bd946a1300a04b38677
87cbfe168c8537c46132cab67a16afe706796b7f301ac8dc5bd8f9ea847e4a72
GET /modules.dcdf252a9a6cf097c357.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68336
date: Fri, 27 Jan 2023 09:04:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4ab050de5a6437b8d1f5955ab1dbfb07"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SKEbE7jOs9ic90rOCIIUm49SGR_kboQZNttwJkJBvfoogDJrcE_8Lw==
age: 225536
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14681339fc16ac120967600c85c37d96
589ed56dc45067e35e26a667ad3d9a12d0f61884
c7a020eb97f372e9325a03c89aa4d97d023f8583ea94af56ae1ffc2363ab8547
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Last-Modified: Sun, 29 Jan 2023 22:06:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 187216CB69F343A2BBF31AE6317AD841 Ref B: OSL30EDGE0112 Ref C: 2023-01-29T23:43:01Z
date: Sun, 29 Jan 2023 23:43:01 GMT
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.57200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.57:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=34170
date: Sun, 29 Jan 2023 23:43:01 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 29 Jan 2023 23:43:01 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14681339fc16ac120967600c85c37d96
589ed56dc45067e35e26a667ad3d9a12d0f61884
c7a020eb97f372e9325a03c89aa4d97d023f8583ea94af56ae1ffc2363ab8547
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Last-Modified: Sun, 29 Jan 2023 22:06:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
one.pointlessplay.com/tracker/tc_imp.gif?e=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&cri=DSbWleqUfJ&ts=578&cb=1675035791001
34.199.234.25200 OK 43 B URL HTTP/2 one.pointlessplay.com/tracker/tc_imp.gif?e=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&cri=DSbWleqUfJ&ts=578&cb=1675035791001
IP 34.199.234.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=DSbWleqUfJ&ts=578&cb=1675035791001 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=d181c66367b412937b181d0a0b979dff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 29 Jan 2023 23:43:01 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash d06ae4c607bf5f868f9b300b22384cfb
2629b2e0228105e2c1b21012c8095c041f857f97
65c2fdfa47c0e848e895e365ca185438e33fdae5776f4c430bf235cc24c35077
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: max-age=134638
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Etag: "63d65e8b-138"
Expires: Tue, 31 Jan 2023 13:06:59 GMT
Last-Modified: Sun, 29 Jan 2023 11:54:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
web1.acsbapp.com/apps/app/dist/media/logomono.svg
138.128.247.123200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP 138.128.247.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Mon, 29 Jan 2024 23:43:01 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Sun, 29 Jan 2023 23:43:01 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 8313935a39b9c1e20c6fcb4f810538c4
76920e5b0af9af93aa8181456fae067e0ebd7505
0bf2d11bd087f3da6b70312f5634d6c82519c82736cb44a70d00b7cf44c08ac1
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:43:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 02 Feb 2023 19:32:56 GMT
ETag: "76920e5b0af9af93aa8181456fae067e0ebd7505"
Last-Modified: Sun, 29 Jan 2023 19:32:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1665
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7915d3e45f150b02-OSL
counter.yadro.ru/hit?rhttps%3A//repelispluss.me/;s1280*1024*24;uhttps%3A//player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09%23iss%3DOTEuOTAuNDIuMTU0;0.8991454787450789
88.212.202.52200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit?rhttps%3A//repelispluss.me/;s1280*1024*24;uhttps%3A//player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09%23iss%3DOTEuOTAuNDIuMTU0;0.8991454787450789
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit?rhttps%3A//repelispluss.me/;s1280*1024*24;uhttps%3A//player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09%23iss%3DOTEuOTAuNDIuMTU0;0.8991454787450789 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 29 Jan 2023 23:43:01 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Sat, 29 Jan 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
s.yimg.com/wi/config/10118123.json
87.248.119.251200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10118123.json
IP 87.248.119.251:0
ASN #203220 Yahoo! UK Services Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 21e2ae430121102daa2c1810b5cf910b
ffef080cc2eacc942a9bcb67561f790c34ed3fb0
a44e6042de416123c90209eb39d7fdbe79665819ffbb07646cc939bb2dfa84e0
GET /wi/config/10118123.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MUNDgcbo7La+ot56zgZzMxUQ+5Zfbu/osAjKVMRdxs0oOWW8/E9HX5A0sm9D5WAvveB/4T+P9LM=
x-amz-request-id: 34H1FJMX4WBX6NXM
date: Sun, 29 Jan 2023 23:41:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Oct 2022 22:00:29 GMT
x-amz-expiration: expiry-date="Sat, 18 Nov 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "21e2ae430121102daa2c1810b5cf910b"
x-amz-server-side-encryption: AES256
x-amz-version-id: PPtAZrGHQpA8i..pPqBYS_TW.49B0pC2
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 92
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
151.101.66.133200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.66.133:0
Hash a419c718dde04ac05c144dd3048d2c56
d36f176e9f1a6ac99a716e88f8822f24787b8873
8a572d1cb197baf3bb91c9d5b80c4663dda410cfe80dd6f09efaa1f0ef5a8db0
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 939
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 21:02:51 GMT
ETag: "d36f176e9f1a6ac99a716e88f8822f24787b8873"
Last-Modified: Sun, 29 Jan 2023 21:02:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 23:43:01 GMT
Age: 900
X-Served-By: cache-qpg1244-QPG, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 37
X-Timer: S1675035782.880829,VS0,VE0
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=d43afd86-7291-4d7f-8ab7-5df9d85bb1db; Max-Age=63072000; Expires=Tue, 28 Jan 2025 23:43:01 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: ea77a3345530b0e5
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: dd83326c06688e5e64b10d28e547af9f33ec9d0b37f1a694da57cb928ae52465
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash d4dafa68056afc90a6a9af2ff5a7e968
141d64b4b2df9ad2923072c7e0fb7cf905fd4001
6f66084189dde4a91563ddc4ecf76367f1c8d98d826b75c46aa46bf04bb43b44
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 23:43:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 20:56:00 GMT
Expires: Mon, 30 Jan 2023 20:56:00 GMT
ETag: "141d64b4b2df9ad2923072c7e0fb7cf905fd4001"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bat.bing.com/p/action/19002254.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/19002254.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/19002254.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0A93BC7BCDA34719AA3825EB20E0E338 Ref B: OSL30EDGE0112 Ref C: 2023-01-29T23:43:01Z
date: Sun, 29 Jan 2023 23:43:01 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=2132fc01-2bc5-4199-acf6-7890b5b266f2&sid=b0bde920a02e11eda77a658678318b5f&vid=b0bddde0a02e11edb387bd29eb8cac81&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203,000%2B%20Assets%20on%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&r=<=1999&evt=pageLoad&ifm=1&sv=1&rn=453327
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=2132fc01-2bc5-4199-acf6-7890b5b266f2&sid=b0bde920a02e11eda77a658678318b5f&vid=b0bddde0a02e11edb387bd29eb8cac81&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203,000%2B%20Assets%20on%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&r=<=1999&evt=pageLoad&ifm=1&sv=1&rn=453327
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=19002254&tm=gtm002&Ver=2&mid=2132fc01-2bc5-4199-acf6-7890b5b266f2&sid=b0bde920a02e11eda77a658678318b5f&vid=b0bddde0a02e11edb387bd29eb8cac81&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203,000%2B%20Assets%20on%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&r=<=1999&evt=pageLoad&ifm=1&sv=1&rn=453327 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=30B5332BDFD56B161F772183DE206A0C; domain=.bing.com; expires=Fri, 23-Feb-2024 23:43:01 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C3EAC95A4C4A4283817EFFDB06982530 Ref B: OSL30EDGE0112 Ref C: 2023-01-29T23:43:01Z
date: Sun, 29 Jan 2023 23:43:01 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
testingmetriksbre.ru/f.php?sid=212040
104.21.50.109200 OK 472 B URL HTTP/2 testingmetriksbre.ru/f.php?sid=212040
IP 104.21.50.109:0
Hash d4d42ae84d6877d1eab6cb4971b20c34
6927b2e175088611d25b461937d2f7e5b709449c
2176caf157ced78a698dd4d551b36dfbe1b377013c2237094a78f401df87c08e
GET /f.php?sid=212040 HTTP/1.1
Host: testingmetriksbre.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mQxBeSgO%2FgHGcLGG%2BBCIIIXt1fHMxckjGWzxWE5V90jq551J54Q4Wl%2BN7rpppzCWVUkIU8OvdmUuMpi3k0AViIdK7Ldzx6MAz0GbeO2GqI%2B7LCh8LRZxyeBceUl7xym1yGhcWkKH0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3c5aad1b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1675035791223&cv=11&fst=1675035791223&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1675035791223&cv=11&fst=1675035791223&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2387), with no line terminators
Hash ebbf63e97d2edd1ca471cc4b0be93327
79b83d4e945bcda589ce60609cd1f92bb6953a58
b40f06cbcbfbf655a554f186e8ae5a4c22231c4cb53bed6f426943ecfb94f09a
GET /pagead/viewthroughconversion/745546367/?random=1675035791223&cv=11&fst=1675035791223&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1028
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 23:58:02 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash cf578d5a5b0137f846d245ba44614698
717f6b4e775fdc7c085dec8b34a2f8ed1a013016
d35dcf01cb9b9b41ddce54201a3e2e360aac4b09ce86b355d1fa54fe827fd647
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:02 GMT
Last-Modified: Sun, 29 Jan 2023 23:05:24 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&ct_cookie_present=1
216.58.207.194200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&ct_cookie_present=1
IP 216.58.207.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 23:58:02 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/745546367/?random=1675035791230&cv=11&fst=1675035791230&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=216GCPHp8MUDEP_EwOMC&hn=www.google.com&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro>m_ee=1&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
54.230.111.42200 OK 74 kB URL HTTP/2 cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
IP 54.230.111.42:0
Hash 3347a46961fe21c343188035e1b0a79b
9abe658bc20154bd0cefc53e2dbf5412f679eb71
6b78d991545d60d215c06894227d6cf02ed601e1992fb941c5fdc2416580261b
GET /partner/2929684/domain/etoro.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sun, 29 Jan 2023 23:07:09 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wB3Cga8UomFI9vmV_zjRzRQ4BhIIRRABejy06WkDDfQrtsfRZyxVog==
age: 2152
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:43:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp.analytics.yahoo.com/sp.pl?a=10000&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:02 GMT
expires: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBIYE12MCEA1U_LeN9rIZNVGS9b-WvH4FEgEBAQFW2GPgYwAAAAAA_eMAAA&S=AQAAAn-KPuLDOxm_tpU0IvGYYuI; Expires=Tue, 30 Jan 2024 05:43:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2023%3A43%3A11%20GMT&n=0&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2023%3A43%3A11%20GMT&n=0&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2023%3A43%3A11%20GMT&n=0&b=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&enc=UTF-8&yv=1.13.0&isIframe=1&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:02 GMT
expires: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBIYE12MCEETGZZV4jPuP55nHsR6OQ9QFEgEBAQFW2GPgYwAAAAAA_eMAAA&S=AQAAAtjUIl2kt-fePvHDMUBoitI; Expires=Tue, 30 Jan 2024 05:43:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
87.248.119.251200 OK 6.0 kB IP 87.248.119.251:0
ASN #203220 Yahoo! UK Services Limited
File type ASCII text, with very long lines (16596), with no line terminators
Hash 6d08a549f627f296e2a686783682cd08
8a33a3ffefe64af715fe0b98a262ea99adbc3cda
afaf2f559a833eb2625cbfd6863d5e9403fbf0c5a0fe6c3f67bcad3ceb178c3e
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DZdsGa2QRFHWQLUL6m1x+4A+rIo2cXFTBuTi50WGpZ1StuXXm6eZ3CYKMqvVipmRqcXuejWJ1Tg=
x-amz-request-id: 1YGEPXNACH1C4ZPX
date: Sun, 29 Jan 2023 23:42:30 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 32
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/745546367/?random=1675035791223&cv=11&fst=1675033200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tiba=From%20Stocks%20to%20Crypto%3A%20Invest%20in%203%2C000%2B%20Assets%20on%20eToro&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3188954163&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 23:43:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=&cb=11563903503799066term=value
44.236.199.214200 OK 4.5 kB URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=&cb=11563903503799066term=value
IP 44.236.199.214:0
File type ASCII text, with very long lines (1691)
Hash a67f66bc4b41f29d55a3502ca552841f
610b007ce228d27d6ec930b199dcd099d74de900
756527934f1e017d884a65dca78f34101d6ac9b53b8c5f089653ea709c5e2799
GET /spx?dxver=4.0.0&shaid=31950&tdr=&plh=&cb=11563903503799066term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Sun, 29 Jan 2023 23:43:01 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1675035791108%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%253Fdl%253D30001923%2526utm_medium%253DNetworks%2526utm_source%253D89099%2526utm_content%253D0%2526utm_serial%253D167503577710000TNOTV415326358024V8d%2526utm_campaign%253D167503577710000TNOTV415326358024V8d%2526utm_term%253D%2526from_lp%253DwhiteLP%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJMGOZxd2X_OwAAAYX_6au5zJCxgn4FnppySkjk6wUxwWwbyltbs1o-UuE_aykfpCGjh4OzPkiTCg; Max-Age=2592000; Expires=Tue, 28 Feb 2023 23:43:02 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQL__f-o4JZW8gAAAYX_6au5tyOvkIFyoF03ByDFMFyREWgDMg3qUkQR3nHvbeEl4fx84O0HOTE-nX-V3WN5Gg; Max-Age=2592000; Expires=Tue, 28 Feb 2023 23:43:02 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ec80946f-9c15-4ecb-8e14-60fa530dd6d5"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 29-Jan-2024 23:43:02 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2450:u=1:x=1:i=1675035782:t=1675122182:v=2:sig=AQFCiNoPXFWAazstxe38Z98g-NJwGI6Z"; Expires=Mon, 30 Jan 2023 23:43:02 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzb6jGqlDBVhd2kT6lOA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C025B1FE72E84CA5A31D9E2545BF7E12 Ref B: OSL30EDGE0314 Ref C: 2023-01-29T23:43:01Z
date: Sun, 29 Jan 2023 23:43:01 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&rl=&if=true&ts=1675035791586&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=28&it=1675035791199&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&rl=&if=true&ts=1675035791586&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=28&it=1675035791199&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&rl=&if=true&ts=1675035791586&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=28&it=1675035791199&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=d4ae69f3-7dd3-4f1a-b938-57cf7a5c8d6b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=a29b0484-d782-4cdd-8f31-3397b783f432&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&tw_iframe_status=1&txn_id=nyxtd&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:01 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167503578211830194; Max-Age=63072000; Expires=Tue, 28 Jan 2025 23:43:02 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167503578211830194; Max-Age=63072000; Expires=Tue, 28 Jan 2025 23:43:02 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_asL/DwdxdquXLjQvXCFhmg=="; Max-Age=63072000; Expires=Tue, 28 Jan 2025 23:43:02 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167503578211830194; Max-Age=63072000; Expires=Tue, 28 Jan 2025 23:43:02 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: ee7bbe6ba87561d2
strict-transport-security: max-age=631138519
x-response-time: 113
x-connection-hash: 2c1599db3b9ac70d998126dc034a2896be39c7280e37fc046ae69d09f8db14a3
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 29 Jan 2023 23:43:02 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Mon, 30 Jan 2023 00:43:02 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=undefined
64.202.112.191200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 64.202.112.191:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:43:02 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 92b1b66c00c0bed266d70e4cac812f5c
tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&optOut=false&bust=05317342318923453&referrer=
64.202.112.191200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&optOut=false&bust=05317342318923453&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&optOut=false&bust=05317342318923453&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:43:02 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 0bba459dc0ea834e29fe885d2e7647e5
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.24.199200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.24.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 572
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 0
server: Kestrel
access-control-allow-origin: https://www.etoro.com
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin, Origin
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
34.199.234.25200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 34.199.234.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1724
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=d181c66367b412937b181d0a0b979dff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
one.pointlessplay.com/mon
34.199.234.25200 OK 0 B URL HTTP/2 one.pointlessplay.com/mon
IP 34.199.234.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1719
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Cookie: cg_uuid=d181c66367b412937b181d0a0b979dff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.etoro.com
content-type: application/json
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
23.38.201.117200 OK 8.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
IP 23.38.201.117:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (58123)
Hash c0615779640b68ebe19798fa6b47c73c
553486b8b4a7e7700bed881de95de7ffd2014efd
675dfe45bbda6e78ded072f97b82155a0ad754724358b27b21669dd71b44cb2d
GET /cache1/hp/v_251/css/style-newhp.min.css?v=1673193603 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 8ZzPDTokviim5kRNM8xjyUHs6lkIA5WfLtu3r4BUUQvaUCwhe+s0zs6XH54EiLUpA1IeRKAdxqM=
x-amz-request-id: SDRCD2TD8VK4P920
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 14:59:43 GMT
etag: "e8d678f657ee29f94e89efef54641ae2"
x-amz-meta-sha256: 4b10fc5a5312440d7071fb98fa7b2ffba1e6ec547a14569fcc99f8d66f8198d3
x-amz-meta-s3b-last-modified: 20221113T220201Z
x-amz-version-id: .0a_71aUcIbW3l8h.gdGf2bpVymaDHZN
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 8225
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 626cdd763b9fc2b48ee653e1321d518f
505cef5df8c5d2b2e2a4ead9a6f19779f27fb340
7743a7c2f4d1c5a3412be2eba05f2da0afaded81a618769566a6f4bcebc7c02e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:43:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 14:54:24 GMT
Expires: Sat, 04 Feb 2023 14:54:23 GMT
Etag: "505cef5df8c5d2b2e2a4ead9a6f19779f27fb340"
Cache-Control: max-age=486080,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7915d3e96d1ab4f7-OSL
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reliability-icon.svg
23.38.201.117200 OK 2.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reliability-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (450)
Hash 0a6e20a299b321b57e48a9c83871cc0c
b3474e03f92a55d42c5ee4032fb1f7b38bd5fd80
f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
GET /cache1/hp/v_251/images/hp-2022/reliability-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ww2q2WsRGOqRLmFYtj0DCnxQJf+XjFeaL/x/44GVJS+HnVR77o7heK367Ucg7DjEorFU7bGWxiE=
x-amz-request-id: SDRBNGK2P8F9ZDG2
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: O3Bx6huNLuja5SMYX1F8OmXJ91mpt5r5
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reputation-icon.svg
23.38.201.117200 OK 3.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reputation-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Hash 7dc0a2667b5de60ff9a96c6ebcca9a7b
cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
GET /cache1/hp/v_251/images/hp-2022/reputation-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KKJEsoY61ZqiohyWLYIgzka2ckbaHCvhxSa1oPXvoW4eRvObiongSge/4nV0pZ5dqvxdvmoluno=
x-amz-request-id: SDR874QSW89S0SPG
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: e.z8pwD4b5XogKGwrwZLOkb8PE6gqTLi
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/social-icon.svg
23.38.201.117200 OK 5.1 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/social-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2125)
Hash 750fadde7ed0d8a59cb37992f69df5b7
c59d2044108d649ce3c10e1ae1084f20eaa7b6b4
aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
GET /cache1/hp/v_251/images/hp-2022/social-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: U2YJvYYmfjRWAnjkpSa2gibpMBuoXlY3bEC/xNQYz1BZRE5bO8T0rePjUaHDiN7B+Tigthxh8jE=
x-amz-request-id: SDREZ6813RYTR77N
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "750fadde7ed0d8a59cb37992f69df5b7"
x-amz-meta-sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: UvvD6pK_YXCErxSNHtsKxJTQ2ENyriuv
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 5136
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/globe-icon.svg
23.38.201.117200 OK 3.4 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/globe-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Hash d8016306372e33ba7354032b4de316ac
7caeb070e9f95ab00ca267ad95c37530d3be361e
3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
GET /cache1/hp/v_251/images/hp-2022/globe-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1673193603
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xznfG9Yk5frcJNMgv80Bcue9zrRUPFL7HrZJ/kY0nhAbIHm9dxAoSAllSAfW+/0ySQtZWF9JEZ8=
x-amz-request-id: SDR5D2SSRGXGG7JH
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:36 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: 9fqiF5HDVyZixrJsoA8dh7T5UeDgkTE5
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
repelispluss.me/movies/perro-perdido/
172.67.221.126200 OK 10 kB URL HTTP/2 repelispluss.me/movies/perro-perdido/
IP 172.67.221.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13344), with CR, LF line terminators
Hash 27a7fa5a9a1b4577ab9fc14f9279d6e7
807abfe21cf9ea7d84a868fb8ca26def5bd6746b
ef3f8ac20500417401c3e7f06609c41d215b19d19e5d7847c718567f371edb3b
GET /movies/perro-perdido/ HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.27
link: <https://repelispluss.me/wp-json/>; rel="https://api.w.org/", <https://repelispluss.me/?p=21683>; rel=shortlink
x-litespeed-cache: hit
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZPhEloW%2BECHRuKvU9%2B5Ahxelp4u%2F%2BsVfOO5HCXO8HcRLzZRJGwhgLOdQSboNH6ooQypJPaSB3uC48I0EWgMYLCSMmQTT4peDgtQfjaDS2Zcch5B05E4SRZ8PXjKEQM19vl8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b72876b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
IP 23.38.201.117:0
File type Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Hash b63c50623057857a66071527d3d19e34
60a97e3734cf76a48f1605076590257bfd370f5e
1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:02 GMT
date: Sun, 29 Jan 2023 23:43:02 GMT
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1675035791108%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%253Fdl%253D30001923%2526utm_medium%253DNetworks%2526utm_source%253D89099%2526utm_content%253D0%2526utm_serial%253D167503577710000TNOTV415326358024V8d%2526utm_campaign%253D167503577710000TNOTV415326358024V8d%2526utm_term%253D%2526from_lp%253DwhiteLP%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1675035791108%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%253Fdl%253D30001923%2526utm_medium%253DNetworks%2526utm_source%253D89099%2526utm_content%253D0%2526utm_serial%253D167503577710000TNOTV415326358024V8d%2526utm_campaign%253D167503577710000TNOTV415326358024V8d%2526utm_term%253D%2526from_lp%253DwhiteLP%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2929684%26time%3D1675035791108%26url%3Dhttps%253A%252F%252Fwww.etoro.com%252F%253Fdl%253D30001923%2526utm_medium%253DNetworks%2526utm_source%253D89099%2526utm_content%253D0%2526utm_serial%253D167503577710000TNOTV415326358024V8d%2526utm_campaign%253D167503577710000TNOTV415326358024V8d%2526utm_term%253D%2526from_lp%253DwhiteLP%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&d8507dc6-0c12-4e77-859f-d567dd46076e"; Domain=.linkedin.com; Expires=Mon, 29-Jan-2024 23:43:02 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230129234302db2731b1-02da-4edc-8138-ca9fddda1ef1AQF-1-xfFd5eSDJv_6725nCNaKe8dmpr"; Domain=.www.linkedin.com; Expires=Mon, 29-Jan-2024 23:43:02 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUwMzU3ODI7MjswMjEGgsIrmo+QpVP5BUq+k4EAAwuqDIlt7JG8SUHsk2t0+A==; Domain=.linkedin.com; Expires=Fri, 28 Jul 2023 23:43:02 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2422:u=1:x=1:i=1675035782:t=1675122182:v=2:sig=AQEts7dTtp2_SKYmnCNp1U6XsKq7phC4"; Expires=Mon, 30 Jan 2023 23:43:02 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzb6jStBP59Ypcs1KFJw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7B6B6B7B77DA4019A29EB1F35B724054 Ref B: OSL30EDGE0314 Ref C: 2023-01-29T23:43:02Z
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2929684&time=1675035791108&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ef29db8b-f33f-41b5-8a29-41e69c55a449"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 29-Jan-2024 23:43:03 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2450:u=1:x=1:i=1675035783:t=1675122183:v=2:sig=AQH6J_99LqKrb6ANC8A_ieVVG_y5gNy7"; Expires=Mon, 30 Jan 2023 23:43:03 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzb6jVn9oRY8EvwQyxpw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 26211827BA5441D3A91A4E260C518ED1 Ref B: OSL30EDGE0314 Ref C: 2023-01-29T23:43:02Z
date: Sun, 29 Jan 2023 23:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
trc.taboola.com/1005612/trc/3/json?tim=1675035791092&data=%7B%22id%22%3A787%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675035791083%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675035791091%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 1.6 kB URL HTTP/2 trc.taboola.com/1005612/trc/3/json?tim=1675035791092&data=%7B%22id%22%3A787%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675035791083%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675035791091%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
Hash 1e676423f3d6e7847f09cd80929c7837
815f1712bd95fc77514329aaabb4a12cfdaee18b
8b103df24410cada1d716a533fab1929190ac57e94572519f731930f1f43b556
GET /1005612/trc/3/json?tim=1675035791092&data=%7B%22id%22%3A787%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675035791083%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675035791091%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D167503577710000TNOTV415326358024V8d%26utm_campaign%3D167503577710000TNOTV415326358024V8d%26utm_term%3D%26from_lp%3DwhiteLP%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 23:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675035782.924720,VS0,VE93
vary: Accept-Encoding
x-vcl-time-ms: 93
X-Firefox-Spdy: h2
repelispluss.me/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90
IP 172.67.221.126:0
GET /wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3329
cache-control: public, max-age=31557600
expires: Wed, 24 Jan 2024 13:15:32 GMT
last-modified: Fri, 02 Sep 2022 05:45:31 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 491242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwjQcg5j8d0qNxhpRcKrRaqr%2FCUSek1iltDa%2B5OmD5w8Ifc%2Bqvst0pUyvArPwTJ2PXXRekRGOwpo%2BsVwFWbnkJyvTzeAIv6tBlLe%2FMqrOe%2BuijdbtyHV5zXwY57xG9jx0ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a60b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
player.repelisplus2.vip/js/websocket_ip.min.js
172.67.148.30200 OK 0 B URL HTTP/2 player.repelisplus2.vip/js/websocket_ip.min.js
IP 172.67.148.30:0
GET /js/websocket_ip.min.js HTTP/1.1
Host: player.repelisplus2.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/e/ODRSdnp5cUU5OVZaYnZ2WDFmOXhiQT09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
last-modified: Fri, 20 Jan 2023 13:44:36 GMT
etag: W/"63ca9ac4-121c"
access-control-allow-origin: *
access-control-allow-credentials: true
accessing-static: 1
cache-control: public, max-age=31536000, stale-while-revalidate=30, stale-if-error=30
pragma: cache
x-cache-status-inferno-s: MISS
x-inferno-location: static
cf-cache-status: HIT
age: 96975
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K2%2BLjd7hC1rK4TpDwRW1W6GELlTpsNay%2Fup%2FFdusgPKmNkTBLReYNriQZ7GY80VKlw%2FX%2BpiwSTzCkOhFCEwk9TYkbI%2B5nQpJ4kciEXhlbE%2Bq0%2FpcQ44FoxuXeadFni%2B4ULVrrTZEKAgrnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3c27d671bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
buzzonclick.com/jump/next.php?stamat=m%257C%252C0IiYzIjdrB1dwP0dEdHP3xP.ed2%252C2t5FkDDYpjxJXsMWHSh7wKsTFo_9DWdVnHcBDLzDvAXNSLYjo08zdgyhzuIsi5Gk
35.186.243.67302 Found 0 B URL HTTP/2 buzzonclick.com/jump/next.php?stamat=m%257C%252C0IiYzIjdrB1dwP0dEdHP3xP.ed2%252C2t5FkDDYpjxJXsMWHSh7wKsTFo_9DWdVnHcBDLzDvAXNSLYjo08zdgyhzuIsi5Gk
IP 35.186.243.67:0
GET /jump/next.php?stamat=m%257C%252C0IiYzIjdrB1dwP0dEdHP3xP.ed2%252C2t5FkDDYpjxJXsMWHSh7wKsTFo_9DWdVnHcBDLzDvAXNSLYjo08zdgyhzuIsi5Gk HTTP/1.1
Host: buzzonclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sun, 29 Jan 2023 23:42:57 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://buzzonclick.com/script/i.php?stamat=m%257C%252C%252CA2Zj43artGU3BU9GH0dEdHP3xP.d31%252CTwueD5UZ0cI1aAf3oVaSO-dmGgJzPqB9KvI7dV3Ng7iKyG6B0iMZzKFMmKLFo3eSgTzZ_s-QVvkAqspeCIVuWFnf7OYL5gjzJqP4Ai38aHQR9BDLwggp3Ug66rUiwAca-jVcM0_9B2BSnO_1KSs_4bmFKwjpKedJ4lUdS05TGwD9GMXRYHdf81oJZ-fXnZFtdz_QwzGyQhBO0vz8MmOQWot1Uxr5bLG8ckC_gNhE1rcc-2LPmlY7Ls7DFPzqg2QolYv8nTNfS00k-TOJ_8H68A3Cu0kua7k7n0mKRkp7Wj8PeHv6CQCKwyv3cbJk7oIp3lx0lhGVGXMFsZD4zK7SqpQxA4dtE4Myl1NXrJAY3Z-j3xDzQScNiPI4Vt10IpKmZ80bQgOfNEv91k55QPH1QBvavAVJYrW2cuX5yqpabc9H-rtEXjOMS5ILfYURGLjpfFxY2DpcnIBh0OWJoz6ZmjQWZIMG2woU7RWmxlowMNg%252C
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: pCeBoz1o/nnyIXCuOlINrh4V13VGKIbTbUsq6sZxTT9aS1AbyY1YhlEcDBDcB30KF8GHqTmHUv+NJ1D1ZsBA8Q==
content-length: 27815
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 23:43:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
repelispluss.me/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 172.67.221.126:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 10:49:20 GMT
last-modified: Sat, 07 Jan 2023 08:58:59 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 154414
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0whQlJO5IZOdBJGVncaD0aiqKweQcjKKFAAXddaWJIpOcwe%2BepG4l%2BmY7NeE%2BzmSzw7TMO1b5F6J3FSufuojAO9kmkVWfwDZ2guxzrPnJydUkMdSoYJOXq9yfr1utBO0iVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a5ab4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
repelispluss.me/wp-content/litespeed/css/0580054e9a85bc3142ff1b2fb35a0beb.css?ver=5b205
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-content/litespeed/css/0580054e9a85bc3142ff1b2fb35a0beb.css?ver=5b205
IP 172.67.221.126:0
GET /wp-content/litespeed/css/0580054e9a85bc3142ff1b2fb35a0beb.css?ver=5b205 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: text/css
cf-bgj: minify
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 10:49:20 GMT
last-modified: Mon, 23 Jan 2023 06:41:18 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 154414
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KVQPoT2XBgMiH%2Bk4OReAOkrdhJTCGTLF%2BDDxjg3qsdHFBHmKXyorHa%2FQ6%2FgU3DqfdawRCy6WwWcqOH5iEmH%2BOQGtIC3vokDS3tUkvLQWdrGXHissOG0Tr6MaYb4jIFjl5TA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a58b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
repelispluss.me/wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68
IP 172.67.221.126:0
GET /wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cf-bgj: minify
cache-control: public, max-age=31557600
expires: Mon, 29 Jan 2024 02:46:35 GMT
last-modified: Tue, 12 Jul 2022 17:04:55 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: HIT
age: 96979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwnzV7u1PNRLrrKtPxaYrjrcw0lqqzxZLwmsXJKslKKRvBowKpKsebJsWdGurq2IvKtVVeaO7ACfsOSr5aZJd%2B0qtSodqP8igQO%2BYqu6cRwEdXQR0pcga7vU0Sy%2F5TNHSvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a62b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/jquery.cookie@1.4.1/jquery.cookie.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/jquery.cookie@1.4.1/jquery.cookie.js
IP 104.16.124.175:0
GET /jquery.cookie@1.4.1/jquery.cookie.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sun, 27 Apr 2014 20:04:54 GMT
etag: W/"c31-MeG8xM+AWiwv7iH0je0eWY9koqg"
via: 1.1 fly.io
fly-request-id: 01G75513388K1MR4R8RW1AYXTV-fra
cf-cache-status: HIT
age: 18079277
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c2ce31b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
repelispluss.me/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.67.221.126:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 10:49:20 GMT
last-modified: Sat, 22 Oct 2022 04:33:35 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 154414
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oEnDElENTsdcbQzpSwpsxjyWC8vm6r32VNJczyDgEXwtPuY8XznZa1m%2Bu4KRHVXX8fw1l54M10fTA3xGohjVQEmF94pQBscfsNanQ9mQhF4gsB%2BSUDE5R6jmmkSYPC%2B%2Bv9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a5cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/progressbar.js@1.1.0/dist/progressbar.min.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/progressbar.js@1.1.0/dist/progressbar.min.js
IP 104.16.124.175:0
GET /progressbar.js@1.1.0/dist/progressbar.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7315-VGu3QlAvqjb4wruVTC8CgYdmBAQ"
via: 1.1 fly.io
fly-request-id: 01F3YGTHVETVB9B7TG2TW5GR8F
cf-cache-status: HIT
age: 24346540
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c2de3fb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
repelispluss.me/wp-content/themes/torofilm/public/js/owl.carousel.min.js?ver=1666242440
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-content/themes/torofilm/public/js/owl.carousel.min.js?ver=1666242440
IP 172.67.221.126:0
GET /wp-content/themes/torofilm/public/js/owl.carousel.min.js?ver=1666242440 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 10:49:21 GMT
last-modified: Thu, 20 Oct 2022 05:07:20 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 154413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s6zYJzKAA9faCdqtsxFAG16Q082l6gk%2BnURTE8zDjC5ZtXO7thjp9J3RIAr8uGOnKVUeDNjMe%2B%2FFjd5SiytOoKOxi6rmLx4jtUrrsGGJtsuMZmKSLfYm7FXcZ657aWPldSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b9aa69b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
reypelis.tv/i.js
188.114.97.1200 OK 0 B IP 188.114.97.1:0
GET /i.js HTTP/1.1
Host: reypelis.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: application/x-javascript
cache-control: public, max-age=16070400
expires: Mon, 30 Jan 2023 13:53:13 GMT
last-modified: Fri, 13 Jan 2023 12:47:09 GMT
etag: W/"2c6-63c152cd-144ba1f7c82ca70b;gz"
vary: Accept-Encoding
platform: hostinger
access-control-allow-origin: *
access-control-allow-credentials: true
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 553783
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cng8DKK6Uv%2FUZU4UeWp%2Firou5lgxscnm%2B8RKiq%2BpiJJIVmu16i%2BT1rWxeWT2VjzBTSLrC%2FtHd6wOyz62%2FgJthH56Md8iKGSS4wu7Xj%2FvJz50yDF9n6zugZOZhm0kuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7915d3c35ce7b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.56.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.repelisplus2.vip
Connection: keep-alive
Referer: https://player.repelisplus2.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:56 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7915d3c2ee42b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=167503577710000TNOTV415326358024V8d&utm_campaign=167503577710000TNOTV415326358024V8d&utm_term=
172.64.152.107302 Found 0 B URL HTTP/2 pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=167503577710000TNOTV415326358024V8d&utm_campaign=167503577710000TNOTV415326358024V8d&utm_term=
IP 172.64.152.107:0
GET /social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=167503577710000TNOTV415326358024V8d&utm_campaign=167503577710000TNOTV415326358024V8d&utm_term= HTTP/1.1
Host: pages.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 29 Jan 2023 23:42:58 GMT
content-type: text/html
location: https://pages.etoro.com/lp/welcome/?dl=30001923&utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=167503577710000TNOTV415326358024V8d&utm_campaign=167503577710000TNOTV415326358024V8d&utm_term=
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
set-cookie: __cf_bm=waBGTGfQ7MRpjeF3a1c5RxmuP47ViOXLXmrKVUkCVG8-1675035778-0-AUkZVHdN+ZEHpYcOm0hR9sQqQkvPE1xloi15eIccPiX7ApEtGHzHgw2a/WYHsnK4+zy9HVX6imAlNG+olBMEbqpCUUaYiqCI+CgQQE5tnBe+; path=/; expires=Mon, 30-Jan-23 00:12:58 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None
__cfruid=10349d56e9572229f4d8f65518f951adaf53e0df-1675035778; path=/; domain=.etoro.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7915d3d06814b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/script.min.js?v=1673193603
23.38.201.117200 OK 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/script.min.js?v=1673193603
IP 23.38.201.117:0
GET /cache1/hp/v_251/js/script.min.js?v=1673193603 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 5xlR2WO6yUQElwfYkyd2uelHuc0oHbZ1fcMyz8rrfbiremJ2PUR1XBlqqYoKH9XsmuVi7FufNuQ=
x-amz-request-id: SK3ASG0ZHYJJWDEG
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:14 GMT
etag: "4f575e57b4700b8a722eb50bf3f057fb"
x-amz-meta-sha256: f740e1b602d45a120d58866a4c7bb38c8e1e80eff72e1f2d7490f79a7b70f3ea
x-amz-meta-s3b-last-modified: 20221113T175734Z
x-amz-version-id: BbL965sPnV3WFb1A0ZsE3XpiGzkilqpk
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 23:43:00 GMT
date: Sun, 29 Jan 2023 23:43:00 GMT
X-Firefox-Spdy: h2
repelispluss.me/wp-content/themes/torofilm/public/js/jquery.js?ver=1666242440
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-content/themes/torofilm/public/js/jquery.js?ver=1666242440
IP 172.67.221.126:0
GET /wp-content/themes/torofilm/public/js/jquery.js?ver=1666242440 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=86926
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 10:49:21 GMT
last-modified: Thu, 20 Oct 2022 05:07:20 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 154413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lA4B5oLVi3dl9ytSD%2F%2F3UhOjHG873iNGzaYd%2FoBmCUAOWncMwiX%2BXofqL566nrkqkwz1YxesipKaHecHmajfTsarO%2F8bz2H%2FMJXiTdP6vojxVh7sKuuGWqghC%2F0whop%2BKNU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b99a66b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
repelispluss.me/wp-includes/js/comment-reply.min.js?ver=6.1.1
172.67.221.126200 OK 0 B URL HTTP/2 repelispluss.me/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 172.67.221.126:0
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: repelispluss.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://repelispluss.me/movies/perro-perdido/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:42:54 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
expires: Mon, 29 Jan 2024 02:46:36 GMT
last-modified: Sat, 22 Oct 2022 04:33:35 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 96978
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igCDMRjdJpSyBpi8ZNycu5UZD4h0mY2eUEbE3wKB526dxGq2Q5r9fCLZDRF8CYT%2FnJi7jafpCG34ol41tT114yYEUWiuwufj7YoXTcnzRs183yjK5HxyaCPigP%2Fb3gUcL14%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d3b9aa6bb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2