www.exness.asia/
45.60.78.64301 Moved Permanently 0 B IP 45.60.78.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.asia domain
GET / HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.exness.asia/
Content-Length: 0
Connection: close
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18026
Expires: Sat, 25 Mar 2023 21:13:59 GMT
Date: Sat, 25 Mar 2023 16:13:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13440
Expires: Sat, 25 Mar 2023 19:57:33 GMT
Date: Sat, 25 Mar 2023 16:13:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7587
Expires: Sat, 25 Mar 2023 18:20:00 GMT
Date: Sat, 25 Mar 2023 16:13:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 15:27:45 GMT
content-type: application/json
age: 2748
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kPfGbClIC9vumIpt/0WEWX0nFmua2Qi8vSn3njXFC02f1d5LGorWD8PSQANsWYmML53nPgke29c=
x-amz-request-id: SHW3JP38HYBHMRCJ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 15:54:58 GMT
age: 1115
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/webpack-runtime-c731ced46fa8d60b1eb4.js
45.60.78.64200 OK 3.7 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/webpack-runtime-c731ced46fa8d60b1eb4.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (8004), with no line terminators
Hash 628ee63dc55e38071cefb859b62a9bfb
7ed571074d8682b87a7f0edb89f593b6c1bb33e9
7abcd761e135a8ba8e1ce6745ad279a3336c93f95a46d249c2a078af8dde4923
GET /d14bc70849dacfa2/webpack-runtime-c731ced46fa8d60b1eb4.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535a-1f44"
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
content-type: application/javascript
content-length: 3719
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:39 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 2CNN RT(1679760812734 202) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/8d38dc736450f75f29bc5d35e0243d65cbcf5bb5-f1a270e2218065a00d3e.js
45.60.78.64200 OK 3.5 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/8d38dc736450f75f29bc5d35e0243d65cbcf5bb5-f1a270e2218065a00d3e.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (6145)
Hash ffdf11ffa2610362842b0dba8d5319ff
e6615c850a85def34df31be552134065c8e04aa6
9047878bdcbfd5b4d2cb2bb8cb25f75e9f60f8ddc5c888a65b75e55fdaec6b81
GET /d14bc70849dacfa2/8d38dc736450f75f29bc5d35e0243d65cbcf5bb5-f1a270e2218065a00d3e.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-224d"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 3533
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:39 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 2CNN RT(1679760812734 210) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/34e28d7bc1f6ef0aa38e8280d29635590d1ff744-b47c5c42880eb54cda24.js
45.60.78.64200 OK 12 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/34e28d7bc1f6ef0aa38e8280d29635590d1ff744-b47c5c42880eb54cda24.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (33967)
Hash d69e559ca3264461ec002cd28ebfc8d7
064da569522c88be3d99ced77c08ddf6c7439b54
fb7b59596748cdcec5f024f2fae17c29423b6381eef77960e26461f4321fb16e
GET /d14bc70849dacfa2/34e28d7bc1f6ef0aa38e8280d29635590d1ff744-b47c5c42880eb54cda24.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-8d1e"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 12308
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:38 GMT
date: Sat, 25 Mar 2023 16:13:32 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13885114 2CNN RT(1679760812734 212) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/693e3458cd7526c869d8802d7c69fdec02cd46e2-7350b16f90eabeb08445.js
45.60.78.64200 OK 8.1 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/693e3458cd7526c869d8802d7c69fdec02cd46e2-7350b16f90eabeb08445.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (22272), with no line terminators
Hash 51bdf60bcb4a05574c58f19b586787b5
063e18305270bcee03ad71f948e8b87d0c20adfd
d429fc8bb41e12704254f011fc56afea66453a4d62be8ecb5cf087846bcacd7c
GET /d14bc70849dacfa2/693e3458cd7526c869d8802d7c69fdec02cd46e2-7350b16f90eabeb08445.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-5700"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 8104
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:39 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 2CNN RT(1679760812734 214) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/46f34eef1595ed29a4e04467def1b3a7ccbfc45a-a360fc66ed2cf652723f.js
45.60.78.64200 OK 24 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/46f34eef1595ed29a4e04467def1b3a7ccbfc45a-a360fc66ed2cf652723f.js
IP 45.60.78.64:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 61eea19228ae01eb959474202a74352e
872e020a2e5076d50bf7ac324f9bed681d28cef0
93fc049c900489438bdedb8c2feb7eee5c01a55e638359f0eeb3902a67a6abc8
GET /d14bc70849dacfa2/46f34eef1595ed29a4e04467def1b3a7ccbfc45a-a360fc66ed2cf652723f.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-1e83b"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 23793
content-encoding: gzip
cache-control: max-age=31356787, public
expires: Fri, 22 Mar 2024 14:26:39 GMT
date: Sat, 25 Mar 2023 16:13:32 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13880746 2CNN RT(1679760812734 208) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/component---src-templates-page-home-js-bb180ea6bcad7dc20573.js
45.60.78.64200 OK 9.8 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/component---src-templates-page-home-js-bb180ea6bcad7dc20573.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (33233), with no line terminators
Hash 1f1de6d3d66334fde2daf02b77daace5
4bef959e4a81262ba700a58f0bc0cc5cefa1d5b9
ec0916340a6764b75f4aeecaf0146b6b5ca6b4643b35a1d293b7780b8f4b727f
GET /d14bc70849dacfa2/component---src-templates-page-home-js-bb180ea6bcad7dc20573.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-81d1"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 9783
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:38 GMT
date: Sat, 25 Mar 2023 16:13:32 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13887482 2CNN RT(1679760812734 215) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/28032dbd205b248102a15127c70392043fb1ae0d-8ff7401485d84f4c2ee4.js
45.60.78.64200 OK 27 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/28032dbd205b248102a15127c70392043fb1ae0d-8ff7401485d84f4c2ee4.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (65417)
Hash 46a82f0f7d996895ba9a12ddbf4dc5cf
e63da901cba7ae5aa6d84c2ac2269b9307d253ae
e39dc71d04a5f657e3ca2b65d2d87704a8eefc72d504cf473855f02c859575c2
GET /d14bc70849dacfa2/28032dbd205b248102a15127c70392043fb1ae0d-8ff7401485d84f4c2ee4.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-1730b"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 27004
content-encoding: gzip
cache-control: max-age=31356787, public
expires: Fri, 22 Mar 2024 14:26:40 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13887724 2CNN RT(1679760812734 209) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/framework-6cd00bb5790b5c1e3040.js
45.60.78.64200 OK 67 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/framework-6cd00bb5790b5c1e3040.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (65448)
Hash 1986d6a6335d62bce67ef7fb7edd9469
5f970bcc96c39f43a13459d13c015ab23be674b9
6d2e291fea72d0d8bebe862a59f3d3e806ffa40b5aca166c28c62e6eae3fe960
GET /d14bc70849dacfa2/framework-6cd00bb5790b5c1e3040.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-337bc"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 66930
content-encoding: gzip
cache-control: max-age=31356786, public
expires: Fri, 22 Mar 2024 14:26:39 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13885185 2CNN RT(1679760812734 204) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/assets/peace.png
45.60.78.64200 OK 7.0 kB URL HTTP/2 www.exness.asia/assets/peace.png
IP 45.60.78.64:0
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 67294a8640c64ea007b0c278b111df95
05863f8930cfc25e6ebe9d6b7a51de4e75b23a1b
75cfb57b4260cf3a61b8de63202932bc6a208605e1f9da418e05dbac5e4ba6cf
GET /assets/peace.png HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-1b7f"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: image/png
content-length: 6984
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 3CNN RT(1679760812734 222) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/4AO9nRb4XGQIaZ8AJJvgs0/5de4814e71faf242458399afa445c711/linkedin-logo.svg
54.230.111.123200 OK 922 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/4AO9nRb4XGQIaZ8AJJvgs0/5de4814e71faf242458399afa445c711/linkedin-logo.svg
IP 54.230.111.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (681)
Hash 8843bbe0d9895c92ba5acaac84600465
6775f3d167fbf7200eaa9204c667fea143119bf7
5501ad0945c89b5db2c350076197e010a711444eefa8f6f071aefec5e12ac5d3
GET /1rkoumd4khui/4AO9nRb4XGQIaZ8AJJvgs0/5de4814e71faf242458399afa445c711/linkedin-logo.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 922
last-modified: Mon, 24 Oct 2022 15:45:02 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sat, 25 Mar 2023 02:56:28 GMT
cache-control: max-age=31536000
etag: "8843bbe0d9895c92ba5acaac84600465"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HvT2ubfS990_lvqJ9OMoRC3WMhuyRorO_XN3Vo-ylXYqKpTIX0KQQQ==
age: 47826
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/1sIgrg2tbX7cnLD1MnFdsU/5eea1eb63aac3cff5946859621f1ff5b/facebook-logo.svg
54.230.111.123200 OK 525 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/1sIgrg2tbX7cnLD1MnFdsU/5eea1eb63aac3cff5946859621f1ff5b/facebook-logo.svg
IP 54.230.111.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 0520adc31ff31381286a2bbdd2649dd5
30c34b43281d3b4d5ad0d081b75635dc636a38a3
0ff2305f97568f7de11e9776dee6e919a1629681bc133943f4dbd267ca0ddd58
GET /1rkoumd4khui/1sIgrg2tbX7cnLD1MnFdsU/5eea1eb63aac3cff5946859621f1ff5b/facebook-logo.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 525
last-modified: Mon, 24 Oct 2022 15:45:01 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sat, 25 Mar 2023 02:56:28 GMT
cache-control: max-age=31536000
etag: "0520adc31ff31381286a2bbdd2649dd5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Tt-AGfNWC4swg8ilq5kTsbSJt-aUqlHQnex32iItHNAe10AJOCg-7A==
age: 47826
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/67wBdsrxi0PZVHc1gLgIts/aa0ff4842495f341e83dcba7c2f47174/Sign.svg
54.230.111.123200 OK 871 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/67wBdsrxi0PZVHc1gLgIts/aa0ff4842495f341e83dcba7c2f47174/Sign.svg
IP 54.230.111.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (767)
Hash 914078292f503db046eb7e2a18942399
f097804f2fcab763083372d1f1c51569a016c01d
f73ef9a97519a1aa04826cac0a47e222a9ececa933fd4871efe86201ddecb5c5
GET /1rkoumd4khui/67wBdsrxi0PZVHc1gLgIts/aa0ff4842495f341e83dcba7c2f47174/Sign.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 871
date: Sat, 25 Mar 2023 02:56:32 GMT
last-modified: Mon, 24 Oct 2022 15:48:51 GMT
etag: "914078292f503db046eb7e2a18942399"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UdlUDrm5VjdPg6n-A2hMzrBPFoPpqoFLGl7LtQVUcwy28saJbutigg==
age: 47822
X-Firefox-Spdy: h2
static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364
54.230.111.72200 OK 1 B URL HTTP/1.1 static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364
IP 54.230.111.72:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /beacon/site24x7rum-min.js?appKey=e47ee94188329d8e20aea6adf0456364 HTTP/1.1
Host: static.site24x7rum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=ISO-8859-1
Content-Length: 1
Connection: keep-alive
Date: Sat, 25 Mar 2023 14:14:47 GMT
Access-Control-Allow-Origin: *
Server: ZGS
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mzXGvHbA9F-ahS7ceXHHadiT-RBp7sHX54vrmQIVJxpKXnAye-FpPw==
Age: 7126
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.ctfassets.net/1rkoumd4khui/716Ez3vwKgD4FaYHqYM01E/e720b3b3efbd37aba41d62601bbc5f6f/CTA-Image.jpg?w=1920&h=784&fl=progressive&q=85&fm=jpg
54.230.111.123200 OK 55 kB URL HTTP/2 images.ctfassets.net/1rkoumd4khui/716Ez3vwKgD4FaYHqYM01E/e720b3b3efbd37aba41d62601bbc5f6f/CTA-Image.jpg?w=1920&h=784&fl=progressive&q=85&fm=jpg
IP 54.230.111.123:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, progressive, precision 8, 1919x784, components 3\012- data
Hash fa35a16279155375aa09a0d7fde98577
57f7b816de49805037c6f75bf9afaf3365a97010
8455a15b7a6b74567211d7c04fe6cb06e66f75ea14eeedb2a7986b86e25a202e
GET /1rkoumd4khui/716Ez3vwKgD4FaYHqYM01E/e720b3b3efbd37aba41d62601bbc5f6f/CTA-Image.jpg?w=1920&h=784&fl=progressive&q=85&fm=jpg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 54900
last-modified: Tue, 21 Feb 2023 21:38:06 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sat, 25 Mar 2023 16:13:33 GMT
cache-control: max-age=31536000
etag: "fa35a16279155375aa09a0d7fde98577"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N2wuhHWQKUPByjBC9-lHf5mMLwMPC3Gnx6uiwxrfNKZbAiPOk5c6fA==
age: 51298
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/1NZg0heS9jZcWDppfFGMHb/899dbae8bcfa370e9b07577c43854730/exness-home-page-banner-desktop.jpg?w=1920&h=760&fl=progressive&q=85&fm=jpg
54.230.111.123200 OK 71 kB URL HTTP/2 images.ctfassets.net/1rkoumd4khui/1NZg0heS9jZcWDppfFGMHb/899dbae8bcfa370e9b07577c43854730/exness-home-page-banner-desktop.jpg?w=1920&h=760&fl=progressive&q=85&fm=jpg
IP 54.230.111.123:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, progressive, precision 8, 1920x760, components 3\012- data
Hash f8855c64da742c67dda115a050f96a73
7ecfd76e929d92d51c53810c342689d91109f255
8afb71edf5bf7ff4d098edd359ae790a3c6a281d0e4a07357db52441f898653e
GET /1rkoumd4khui/1NZg0heS9jZcWDppfFGMHb/899dbae8bcfa370e9b07577c43854730/exness-home-page-banner-desktop.jpg?w=1920&h=760&fl=progressive&q=85&fm=jpg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 70766
last-modified: Wed, 15 Mar 2023 09:16:55 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sat, 25 Mar 2023 16:13:33 GMT
cache-control: max-age=31536000
etag: "f8855c64da742c67dda115a050f96a73"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LKEcgtpDikZmQMa9WPCjzlfVUy3cdP1MOwuqmRGDmTtoqaETaV2yUg==
age: 24926
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-KCTQSDQ
142.250.74.46200 OK 48 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-KCTQSDQ
IP 142.250.74.46:0
File type ASCII text, with very long lines (4146)
Hash aec86c7b348d8bdbe882af48d9a54fc5
5986ec3c4221ec6f6e12de4f7593614a7cd8de12
3cb980805185b517dcc702a606e2a4d4af4aada9f91902d6566dd2aea367d622
GET /optimize.js?id=OPT-KCTQSDQ HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:13:33 GMT
expires: Sat, 25 Mar 2023 16:13:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48311
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M94SM2
142.250.74.168200 OK 95 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M94SM2
IP 142.250.74.168:0
File type ASCII text, with very long lines (37461)
Hash 47f64910300dcfbdceeac27bcc4f8229
39dcf9e83476b5c2df71d71f892e71a777a977d7
6077b07b333082f361feb8c2ed33115c7b9248b2f02237d3c707fd0f4fc521dd
GET /gtm.js?id=GTM-M94SM2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:13:33 GMT
expires: Sat, 25 Mar 2023 16:13:33 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94980
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e6775cb573aaee995c89d41b6be93723
cad165485f34023136370b32999077f4928c68c5
c14056ae20c7cd552209571a3430df2711ec94a5f8ee42c1693a3bf2d04b30ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unpkg.com/pwacompat@2.0.17/pwacompat.min.js
104.16.123.175200 OK 3.4 kB URL HTTP/2 unpkg.com/pwacompat@2.0.17/pwacompat.min.js
IP 104.16.123.175:0
File type ASCII text, with very long lines (517)
Hash 3d22713dc9d14351cee2cec3fbfec425
080ff9b2804f897f7420215ebccde10799209d01
695fd4956b8e47b150eb56eccba36570741c0896ac63f118c61b8fbf1dd1fc66
GET /pwacompat@2.0.17/pwacompat.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.asia
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Thu, 27 Aug 2020 08:32:40 GMT
etag: W/"180a-4Z0I9COL/LWHBqDazLIh3caZrIw"
via: 1.1 fly.io
fly-request-id: 01GQ45HDW44XS1GG0XHG71VKS7-fra
cf-cache-status: HIT
age: 5657278
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8711e6c50fac4-OSL
content-encoding: br
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/6FkR7KJ85JygqJJwYQbzHt/c878a68f8f02459c8263de1799394768/deposits-withdrawals.png?w=1920&h=504&q=85&fm=webp
54.230.111.123200 OK 18 kB URL HTTP/2 images.ctfassets.net/1rkoumd4khui/6FkR7KJ85JygqJJwYQbzHt/c878a68f8f02459c8263de1799394768/deposits-withdrawals.png?w=1920&h=504&q=85&fm=webp
IP 54.230.111.123:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x504, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a928346860d5419788915a869e9428b
f2d5198d8e36b0739e435daf532eedd3471ffe74
42a87d90df8b43db90262dc74e2b0365d9e4f48b27bd6849716345f1356282f9
GET /1rkoumd4khui/6FkR7KJ85JygqJJwYQbzHt/c878a68f8f02459c8263de1799394768/deposits-withdrawals.png?w=1920&h=504&q=85&fm=webp HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 18296
last-modified: Tue, 21 Feb 2023 22:06:05 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sat, 25 Mar 2023 04:11:38 GMT
cache-control: max-age=31536000
etag: "0a928346860d5419788915a869e9428b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6RFNX3p9fFfTpmj3DsPiWOPEuDGBbqtbmD4rKYXjOWfo8OsY86SIeg==
age: 43316
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/08f69d84-6b48806adb51d9d49388.js
45.60.78.64200 OK 16 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/08f69d84-6b48806adb51d9d49388.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (46102)
Hash 38949983e69eb7eca698823794f61ad6
93cf1f497a8f853857963e5f2fb2fe42a374b31f
511a8794381381aa30246e86cb469a1f3eb4441cc69b281c29792fb1be29bc35
GET /d14bc70849dacfa2/08f69d84-6b48806adb51d9d49388.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-b46d"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 15490
content-encoding: gzip
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13887482 3VNN RT(1679760812734 642) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/1575-8d07d207f4903ccfbb60.js
45.60.78.64200 OK 14 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/1575-8d07d207f4903ccfbb60.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (51431)
Hash d5392da62b6cb1221c73629a45dd19df
1b19737681d182bdc4a5271ad45a64a46b0240ec
6a4d71856fac327659589b21a8cd17de8c01381014160d0280fec35b9f576bd2
GET /d14bc70849dacfa2/1575-8d07d207f4903ccfbb60.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-c93a"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 14281
content-encoding: gzip
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13887448 3VNN RT(1679760812734 645) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 15:14:33 GMT
age: 3541
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 27 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 873c9d477160f023b96935a42cbe1b9d
2548af0afd95326b592f2c5691bfdbec6b34a18f
29bfcc236697e92eb74f16ca38c0d18fc911e2f49152d6ef79d92eea0c5fa337
GET /d14bc70849dacfa2/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-6e99"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: image/png
content-length: 26712
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 3VNN RT(1679760812734 704) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 1.5 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 02f0db74dac5e0b417763513f0299f99
4fd218c117ba80c07525534f004fb5e71061f6fe
49ffe637116fd9a3bd5b458bfa98713efa868322b509f026fbe2c64e73fd3a22
GET /d14bc70849dacfa2/favicon-32x32.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-620"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: image/png
content-length: 1535
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13880746 3VNN RT(1679760812734 706) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
151.101.65.140200 OK 7.4 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.65.140:0
File type ASCII text, with very long lines (23347)
Hash 03d5db9dfd00a5719bb4c9261e6fa1bb
be9899225f59b4d3ef6fefcf0e66b72568353a94
e90f19642062e4311b58ede732592e8f29b7799661086a0bbfc68e259fd81398
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 21:56:14 GMT
etag: "03d5db9dfd00a5719bb4c9261e6fa1bb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 25 Mar 2023 16:13:34 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7356
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (40607), with no line terminators
Hash 04651bf0c51742f9007b1ae2b4486dee
6ffc71fcb5db1cf0283b60150a62f2c219ac3dbd
5d7392c44731e52810337eb1a3eb3ae1ffab31b8f8d55daba20d658701604666
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11894
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Feb 2023 18:31:53 GMT
accept-ranges: bytes
etag: "8072cff03442d91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DF64A6F77E644B458AFAF435DB57FF29 Ref B: OSL30EDGE0318 Ref C: 2023-03-25T16:13:34Z
date: Sat, 25 Mar 2023 16:13:33 GMT
X-Firefox-Spdy: h2
unpkg.com/pwacompat
104.16.123.175302 Found 78 kB IP 104.16.123.175:0
Hash dc16fbef4bb635abcc51edd2a894568a
a70165727dcc47f4f05200e04d21c50cf195ffe7
515fdacefad5b8e46f7ef39ebcecd954c1a9a3120c227bfe479cb058d16c2c6f
GET /pwacompat HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Origin: https://www.exness.asia
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /pwacompat@2.0.17
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GWCRPABEXR0XM9JB64DHFF6C-ams
cf-cache-status: HIT
age: 50
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8711d3b2bfac4-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/adj/N1741099.197812NSO.CODESRV/B27608524.334280788;sz=1x2;ord=55902110;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=?
142.250.74.134200 OK 14 kB URL HTTP/2 ad.doubleclick.net/ddm/adj/N1741099.197812NSO.CODESRV/B27608524.334280788;sz=1x2;ord=55902110;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=?
IP 142.250.74.134:0
File type ASCII text, with very long lines (31330), with CRLF, LF line terminators
Hash fa1090d4d5949e09b0484fd8b5c179a5
433d014a08ae59a8620ec739b1f3dabe5bdcb94c
f7171c836d3f696a973f287f63226c8dd19446a8b91185a7dc7865df28b56c46
GET /ddm/adj/N1741099.197812NSO.CODESRV/B27608524.334280788;sz=1x2;ord=55902110;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 14518
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:28:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11413
Expires: Sat, 25 Mar 2023 19:23:47 GMT
Date: Sat, 25 Mar 2023 16:13:34 GMT
Connection: keep-alive
11608044.fls.doubleclick.net/activityi;src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F?
216.58.211.6200 OK 257 B URL HTTP/2 11608044.fls.doubleclick.net/activityi;src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F?
IP 216.58.211.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (519), with no line terminators
Hash 37e6dbfd6a3843e6677c7f0a284642be
38ad3393c3a127151e070e9fa947854c90de0995
89685eec28484413a3165e27f1a17157b9163b796e20a16ed1714924417aac30
GET /activityi;src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F? HTTP/1.1
Host: 11608044.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 257
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:28:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.exness.asia/cdn/media/sw/public-service-worker.js?v=1679760827384
45.60.78.64200 OK 17 kB URL HTTP/2 www.exness.asia/cdn/media/sw/public-service-worker.js?v=1679760827384
IP 45.60.78.64:0
Hash 38f0796b8eaacc93989e95193d4fc27b
c2654fa731c4479f5bc47ca81798b9d5e6b361e0
bdc3f89838ceb05bc0219a5cfe6e5ebff7154477e6ae34f626ea01b8ce298730
GET /cdn/media/sw/public-service-worker.js?v=1679760827384 HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/javascript
x-amz-id-2: Ruxg922TsYhzZD3bP+BfHOxm/7Nrhhm7hKw1/FCv+5ItpVEsIvgrNCRR107mSnPpoRcdLlj6H5A=
x-amz-request-id: WB5V9XE7KV7JRNHA
last-modified: Tue, 07 Mar 2023 14:43:20 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: b0q7bAig1_yI_NaNkhVdG0Ztn8LONnO3
accept-ranges: bytes
etag: "092981f7bcfef649e1aa4850a6b259dd"
service-worker-allowed: /
x-cache: Hit from cloudfront
via: 1.1 db3ad39d2b444e5c9e38affc6638a5cc.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: uoWQ9n31KvwTMXQ6ed7tYVa0Z0TBIyJwY3EU5DY8bPHhwsszE3I6dw==
age: 29614
link: https://www.exness.com/cdn/media/sw/public-service-worker.js; rel="canonical"
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13887483 3NYN RT(1679760812734 647) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp-trk.com/t/tuu32r52?a=1679760827468&o=l5qz6oh2eqe
139.162.248.20200 OK 5.4 kB URL HTTP/1.1 sp-trk.com/t/tuu32r52?a=1679760827468&o=l5qz6oh2eqe
IP 139.162.248.20:0
File type ASCII text, with very long lines (15332), with no line terminators
Hash d127d1a5e414df8ff9030337d3fcc1b9
869ad285a7cb3ea99de8541ca6201466ce093fc2
c4cad56f312f20c6868a7096bb336654c41ba3b05d4f3d7d5d07d8fa81ae54f8
GET /t/tuu32r52?a=1679760827468&o=l5qz6oh2eqe HTTP/1.1
Host: sp-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: max-age=0, private, must-revalidate
content-encoding: gzip
content-length: 5371
content-type: application/javascript; charset=UTF-8
date: Sat, 25 Mar 2023 16:13:33 GMT
server: S
vary: accept-encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b1ff7d7498d05edff17b9dc0140e9c45
425e05641aa27b69db1a7191243966bfa31e34b1
0519969a6464d870dc43c359d22580f26c78e66041f342f9d3796f458caa9304
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 6e448364f9eac9c7d1c94544440663e4
b4eb174cd1e4ee32b283780e265964512020a97c
501540e0fcfc50e70c95eb061fd403824f3da97d4631067f4d2719fa824629c8
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 16:13:34 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 07:35:12 GMT
Expires: Sat, 01 Apr 2023 07:35:11 GMT
Etag: "b4eb174cd1e4ee32b283780e265964512020a97c"
Cache-Control: max-age=573096,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad87120b93cb51e-OSL
sp-trk.com/u
139.162.248.20200 OK 36 B IP 139.162.248.20:0
File type ASCII text, with no line terminators
Hash 7f7260f8061eb0c4b6c109cf697d48de
da1c8e0dcb519d6f1911759740cec541e12290ac
5a6977285d8165974b38e570596628ab428e082ce8246b407ec51a29826aaca4
GET /u HTTP/1.1
Host: sp-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-length: 36
content-type: application/javascript; charset=UTF-8
date: Sat, 25 Mar 2023 16:13:33 GMT
etag: MjY0NDgyNjUyODU3NzY2OTM2Ng
server: S
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7e3ff6b78faf64b75d13e5e4c390f7c5
1ec395988633a280be5876ea74b91b994ca88bda
470501dd8e4cb351f2b3effe7507b9582758ecf492d587545f740c13527289d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 57ddc6ada5753fd6177379a5432ae579
8f629cd38d50790e8f5de9e6e5daf2646f1da309
a5138589e978f8dd215c3c16df26d66a496ef32b0694e025f5d8d0cc621014c4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110634
Date: Sat, 25 Mar 2023 16:13:34 GMT
Etag: "641e168b-1d7"
Expires: Sun, 26 Mar 2023 22:57:28 GMT
Last-Modified: Fri, 24 Mar 2023 21:30:51 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gS03xMd1wf8woISY1CZz6WTi2ynsBxMRVbtWIfdS6-WZMJpjoDYzpg==
Age: 5197
adservice.google.com/ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F
142.250.74.34200 OK 258 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (518), with no line terminators
Hash c44ebf3eba2c9497aa0436bec987e158
d143076746c80d4df95da4bdeec05f796fb8483c
e5706cf5640435fd00be5bdfcc830bd5d300485c0e5e0ea3bca609751dec832f
GET /ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11608044.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0cea3c3dad3bba68db9008c62c2ee3bd
f6615d44d4f296710da017df311f82218e0d174a
deb8af38c206cbff4f022e010a2fe4a3e742e7e0fb8ad456696bb63ee0337686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 16:13:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 11:45:30 GMT
Expires: Wed, 29 Mar 2023 11:45:29 GMT
Etag: "f6615d44d4f296710da017df311f82218e0d174a"
Cache-Control: max-age=328914,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad871222dbdb4fd-OSL
sp-trk.com/i/tuu32r52?js=s%7C652&lc=https%3A%2F%2Fwww.exness.asia%2F&hl=1&tp=0&if=0&ov=s&te=0&so=landscape-primary&bp=Linux%20x86_64&lg=en-US&sw=1280&sh=1024&sl=0&st=0&sx=0&sy=0&ow=1280&oh=1024&aw=1280&ah=1002&cd=24&pr=1&tz=UTC&to=0&pc=16&ss=1&ls=1&tu=2644826526144973042&iu=2644826526144973042&il=https%3A%2F%2Fwww.exness.asia%2F&su=2644826526144973042&np=def&id=1&od=0&co=0&jv=0&ww=1280&wh=939&es=37&hq=1&cw=0&ex=gp&pb1=-486853473&pb2=-486853473&pn=1363184998&pt=31&pd=0&t=01&a=1679760827695&r=2644826526144973042&o=16wv1nj07cf&et=56&n=pv
139.162.248.20200 OK 35 B URL HTTP/1.1 sp-trk.com/i/tuu32r52?js=s%7C652&lc=https%3A%2F%2Fwww.exness.asia%2F&hl=1&tp=0&if=0&ov=s&te=0&so=landscape-primary&bp=Linux%20x86_64&lg=en-US&sw=1280&sh=1024&sl=0&st=0&sx=0&sy=0&ow=1280&oh=1024&aw=1280&ah=1002&cd=24&pr=1&tz=UTC&to=0&pc=16&ss=1&ls=1&tu=2644826526144973042&iu=2644826526144973042&il=https%3A%2F%2Fwww.exness.asia%2F&su=2644826526144973042&np=def&id=1&od=0&co=0&jv=0&ww=1280&wh=939&es=37&hq=1&cw=0&ex=gp&pb1=-486853473&pb2=-486853473&pn=1363184998&pt=31&pd=0&t=01&a=1679760827695&r=2644826526144973042&o=16wv1nj07cf&et=56&n=pv
IP 139.162.248.20:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9f8b218b0b6c8c837fe4874c38592d79
bee2a1c6374fa56aab90aa3593fd889549843572
c0e3e1e716a80377570409fe4e4212fa40af7006240b6a1d36ff391e1d8648b8
GET /i/tuu32r52?js=s%7C652&lc=https%3A%2F%2Fwww.exness.asia%2F&hl=1&tp=0&if=0&ov=s&te=0&so=landscape-primary&bp=Linux%20x86_64&lg=en-US&sw=1280&sh=1024&sl=0&st=0&sx=0&sy=0&ow=1280&oh=1024&aw=1280&ah=1002&cd=24&pr=1&tz=UTC&to=0&pc=16&ss=1&ls=1&tu=2644826526144973042&iu=2644826526144973042&il=https%3A%2F%2Fwww.exness.asia%2F&su=2644826526144973042&np=def&id=1&od=0&co=0&jv=0&ww=1280&wh=939&es=37&hq=1&cw=0&ex=gp&pb1=-486853473&pb2=-486853473&pn=1363184998&pt=31&pd=0&t=01&a=1679760827695&r=2644826526144973042&o=16wv1nj07cf&et=56&n=pv HTTP/1.1
Host: sp-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Content-type: text/plain; charset=utf-8
Origin: https://www.exness.asia
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
content-length: 35
content-type: application/json; charset=UTF-8
date: Sat, 25 Mar 2023 16:13:33 GMT
server: S
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.exness.asia/cdn/media/sw/ab_error_public.html
45.60.78.64200 OK 16 kB URL HTTP/2 www.exness.asia/cdn/media/sw/ab_error_public.html
IP 45.60.78.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (52033)
Hash 1436dd78c32be3cbea60c679833089cc
235dcdccc7e35c9fa6db191cef88f1a8462aa3f9
eed334c6abbbf507fdbfd410579915d1cd3759f6cef0ccb55f8c330d04bfe504
GET /cdn/media/sw/ab_error_public.html HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/cdn/media/sw/public-service-worker.js?v=1679760827384
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: "a04b2abcd8e36dd2795e0e3a5075dd88"
last-modified: Tue, 02 Nov 2021 06:25:49 GMT
content-type: text/html
content-length: 15833
content-encoding: gzip
service-worker-allowed: /
cache-control: max-age=3600, public
expires: Sat, 25 Mar 2023 17:13:33 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13884189 3VNN RT(1679760812734 1091) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.ipify.org/?format=jsonp&callback=getIP
64.185.227.155200 OK 29 B URL HTTP/2 api.ipify.org/?format=jsonp&callback=getIP
IP 64.185.227.155:0
File type ASCII text, with no line terminators
Hash 90a39389063c7c5716745c3b3bb4fba1
a0903c9a7e90fa3c6ddb04d0ce36abbd4c7a004f
eaa6745d9d0a7698235cd6af53aad1551d975506c8405d8303282fb6d2f7ab69
GET /?format=jsonp&callback=getIP HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 25 Mar 2023 16:13:34 GMT
vary: Origin
content-length: 29
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.12.97.27101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.12.97.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +o9hHLyyuuHTcswrFncSpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3Rg+FahCAWXITxELLdbTZ3X7Zik=
adservice.google.no/ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F
142.250.74.162200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11608044;type=pages;cat=allpa0;ord=8618574064148;gtm=45He33m0;auiddc=510414895.1679760827;u1=%2F;u2=undefined;u3=undefined;u4=undefined;u5=undefined;u6=undefined;~oref=https%3A%2F%2Fwww.exness.asia%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:34 GMT
expires: Sat, 25 Mar 2023 16:13:34 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b1ff7d7498d05edff17b9dc0140e9c45
425e05641aa27b69db1a7191243966bfa31e34b1
0519969a6464d870dc43c359d22580f26c78e66041f342f9d3796f458caa9304
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.exness.asia/d14bc70849dacfa2/page-data/sq/d/1067236220.json
45.60.78.64200 OK 20 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/sq/d/1067236220.json
IP 45.60.78.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6738)
Hash 9b701eb937dde2dff410c9d71e7b6221
7fa70c02a5b881a6b0aa31ee53178507f9d253b2
867c47eab04f362e58b48afcc4741a7becb7bd17d3c3e2b7489b8668cd3c0b37
GET /d14bc70849dacfa2/page-data/sq/d/1067236220.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
etag: W/"641c535a-1374"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13881142 pNYN RT(1679760812734 1084) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-2E5M7TYQGW>m=45je33m0&_p=394078839&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_name=home
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2E5M7TYQGW>m=45je33m0&_p=394078839&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_name=home
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2E5M7TYQGW>m=45je33m0&_p=394078839&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_name=home HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Origin: https://www.exness.asia
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.exness.asia
date: Sat, 25 Mar 2023 16:13:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5716bd17f0cc1d649bcba4a6400ad0fa
752def7b1cf7d2f2e8213b28cb17f93e1015d333
ef78bd37975cc2a43c78562c8fcd9977f92a2ef525b87cfcef89f114f28eac3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=17121251&tm=gtm002&Ver=2&mid=34b961f8-ae0a-4b60-9aec-8a70df530cc8&sid=05f79e90cb2811ed8d0b7d16e6e3d1ad&vid=05f79340cb2811eda6192fc41f9a4f7e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Trading%20%7C%20Trade%20with%20Exness&kw=exness%20forex%20broker%20forex%20trading&p=https%3A%2F%2Fwww.exness.asia%2F&r=<=985&evt=pageLoad&sv=1&rn=696011
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=17121251&tm=gtm002&Ver=2&mid=34b961f8-ae0a-4b60-9aec-8a70df530cc8&sid=05f79e90cb2811ed8d0b7d16e6e3d1ad&vid=05f79340cb2811eda6192fc41f9a4f7e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Trading%20%7C%20Trade%20with%20Exness&kw=exness%20forex%20broker%20forex%20trading&p=https%3A%2F%2Fwww.exness.asia%2F&r=<=985&evt=pageLoad&sv=1&rn=696011
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=17121251&tm=gtm002&Ver=2&mid=34b961f8-ae0a-4b60-9aec-8a70df530cc8&sid=05f79e90cb2811ed8d0b7d16e6e3d1ad&vid=05f79340cb2811eda6192fc41f9a4f7e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Trading%20%7C%20Trade%20with%20Exness&kw=exness%20forex%20broker%20forex%20trading&p=https%3A%2F%2Fwww.exness.asia%2F&r=<=985&evt=pageLoad&sv=1&rn=696011 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=01640595FA156BD321F9174AFB426A80; domain=.bing.com; expires=Thu, 18-Apr-2024 16:13:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5376432DE3EB4A74A75F81B6CB9489EA Ref B: OSL30EDGE0318 Ref C: 2023-03-25T16:13:34Z
date: Sat, 25 Mar 2023 16:13:34 GMT
X-Firefox-Spdy: h2
gtm-n24g3w7-otgwz.uc.r.appspot.com/g/collect?v=2&tid=G-M71C3QBXSG>m=45je33m0&_p=394078839&_gaz=1&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_ss=2&epn.event_time=1679760827&ep.action_source=website&richsstsse
172.217.21.180200 OK 616 B URL HTTP/2 gtm-n24g3w7-otgwz.uc.r.appspot.com/g/collect?v=2&tid=G-M71C3QBXSG>m=45je33m0&_p=394078839&_gaz=1&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_ss=2&epn.event_time=1679760827&ep.action_source=website&richsstsse
IP 172.217.21.180:0
File type ASCII text, with very long lines (373)
Hash d9a36c60bc61bbcff0eafedfdd736bd9
8b30961347962627f7735080c9de8fc2c184ccbc
2f2012b1ae426ce897236f72f171cc9b4fe73e9e563f814bbfe4045043057ba5
GET /g/collect?v=2&tid=G-M71C3QBXSG>m=45je33m0&_p=394078839&_gaz=1&cid=1842627780.1679760828&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679760827&sct=1&seg=0&dl=https%3A%2F%2Fwww.exness.asia%2F&dt=Online%20Trading%20%7C%20Trade%20with%20Exness&en=page_view&_fv=1&_ss=2&epn.event_time=1679760827&ep.action_source=website&richsstsse HTTP/1.1
Host: gtm-n24g3w7-otgwz.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Origin: https://www.exness.asia
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPAU=1.2.1182433746.1679760814; Max-Age=7776000; Domain=exness.asia; Path=/; Secure
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://www.exness.asia
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
2.18.172.195200 OK 484 B IP 2.18.172.195:0
File type ASCII text, with very long lines (1095), with no line terminators
Hash e524dc72fce18b784da6f9faf16ef525
b5462ffa269648bed7935ea6b4cf0fa7cfe36c21
facd4e773e8e7ed257a31badbe841267f57f79942cd3444884477d68148af9db
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "e524dc72fce18b784da6f9faf16ef525"
x-amz-server-side-encryption: AES256
cache-control: max-age=7200
content-encoding: br
accept-ranges: bytes
content-type: application/javascript
content-length: 484
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-8.1.0-min.gz.js
54.230.245.209200 OK 21 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.1.0-min.gz.js
IP 54.230.245.209:0
File type ASCII text, with very long lines (65182)
Hash 52d13b3f149cd71cdc2ace1f983fb635
fd5ef91eba4c74381f57251a971719e400e20f8f
2a96990ef73f583fdc7dbc9da1a5ba58c5ef4fe5a1f8f427c9f6d6f622fb75f9
GET /libs/amplitude-8.1.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Origin: https://www.exness.asia
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 20794
date: Thu, 16 Mar 2023 06:42:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 19 Mar 2021 16:52:50 GMT
etag: "52d13b3f149cd71cdc2ace1f983fb635"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: Y3JfLSTGzoWjquuu6XiQpg1VwRbVcxA7
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _NxMWnuI7ZT4rUCdffKOTVUV438vMdsakPuBsVLKQ7qxuQpeTj7D1Q==
age: 811848
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3486835036.json
45.60.78.64200 OK 5.6 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3486835036.json
IP 45.60.78.64:0
File type JSON data\012- , ASCII text, with very long lines (15063)
Hash e80f66b3a63d2069f1e52ed69b1f9261
d78dae02972c333058553125dcb6fce3131ab592
e8fbb704dfd0428705b57d90454a3125bbd13819e6c81a3d0203b7796e4b3d87
GET /d14bc70849dacfa2/page-data/sq/d/3486835036.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
etag: W/"641c535a-6b0"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13887767 nNYN RT(1679760812734 1089) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 25 Mar 2023 16:05:11 GMT
expires: Sat, 25 Mar 2023 18:05:11 GMT
cache-control: public, max-age=7200
age: 504
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/r20230322/r20110914/elements/html/omrhp.js
142.250.74.66200 OK 4.1 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/r20230322/r20110914/elements/html/omrhp.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (2821)
Hash f41e0448f1bc353114d52efe3d7c33ba
94f27e2c899619aa4116c96c17734573ccf31307
336f969c184fc9680f0c5b90b5dca62e4c264be5dd24b94b0d1b68163ebdd222
GET /pagead/js/r20230322/r20110914/elements/html/omrhp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 4115
x-xss-protection: 0
date: Fri, 24 Mar 2023 16:15:58 GMT
expires: Fri, 07 Apr 2023 16:15:58 GMT
cache-control: public, max-age=1209600
age: 86257
etag: 1914039858798321668
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
x-amz-server-side-encryption: AES256
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sat, 25 Mar 2023 16:13:35 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1648-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
bat.bing.com/p/action/17121251.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/17121251.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/17121251.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 84B08CD6531B4F3A895DC58E8CFBBFC4 Ref B: OSL30EDGE0318 Ref C: 2023-03-25T16:13:34Z
date: Sat, 25 Mar 2023 16:13:34 GMT
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/app-bbf43432c963db2cb635.js
45.60.78.64200 OK 42 B URL HTTP/2 www.exness.asia/d14bc70849dacfa2/app-bbf43432c963db2cb635.js
IP 45.60.78.64:0
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /d14bc70849dacfa2/app-bbf43432c963db2cb635.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "641c535b-a1789"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 190483
content-encoding: gzip
cache-control: max-age=31356801, public
expires: Fri, 22 Mar 2024 14:26:54 GMT
date: Sat, 25 Mar 2023 16:13:33 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13885178 2CNN RT(1679760812734 206) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/852410746/?random=1679760814464&cv=10&fst=1679760814464&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&auid=1182433746.1679760814
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/852410746/?random=1679760814464&cv=10&fst=1679760814464&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&auid=1182433746.1679760814
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/852410746/?random=1679760814464&cv=10&fst=1679760814464&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&auid=1182433746.1679760814 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/852410746/?random=1679760814464&cv=10&fst=1679760000000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&is_vtc=1&random=237399901
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:28:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
216.58.207.194200 OK 50 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 216.58.207.194:0
File type ASCII text, with very long lines (3399)
Hash 1300547bdd24747a1050f3bcf61ed6bd
bca14bfd2016dacf5b54edaf1d51835ba00c8420
2c02b0fea6efd77d65b682a58b6e9bd462c5f74da83157020b98e5f4eca38103
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
timing-allow-origin: *
content-length: 49540
date: Sat, 25 Mar 2023 16:13:35 GMT
expires: Sat, 25 Mar 2023 16:13:35 GMT
cache-control: private, max-age=3000
etag: "1679493709445325"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvw4XdjwHOZpehB_0GKhlqkNuy8j4doUSEVq2c6QVe12-EHYA_C6uea9IMt5u3SOKfjsL4gg6Z9Jgqki3vfV9IBSjisHZaskLeGebVgCqFyDyuokhnSiNz0d_sf4IQwYoZUWSu2KNXDdKRx&sai=AMfl-YS6Lg-2VFHPE1JI30RwEcZTt3y8TD9mZ6cJ68pdPADPwEDCcJvqEhEThLOr6gRSsB1Ppd8a1grE9i-yQ3A&sig=Cg0ArKJSzCW2u4gDt1iMEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=1&cisv=r20230322.50293&arae=0&ftch=1&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvw4XdjwHOZpehB_0GKhlqkNuy8j4doUSEVq2c6QVe12-EHYA_C6uea9IMt5u3SOKfjsL4gg6Z9Jgqki3vfV9IBSjisHZaskLeGebVgCqFyDyuokhnSiNz0d_sf4IQwYoZUWSu2KNXDdKRx&sai=AMfl-YS6Lg-2VFHPE1JI30RwEcZTt3y8TD9mZ6cJ68pdPADPwEDCcJvqEhEThLOr6gRSsB1Ppd8a1grE9i-yQ3A&sig=Cg0ArKJSzCW2u4gDt1iMEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=1&cisv=r20230322.50293&arae=0&ftch=1&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvw4XdjwHOZpehB_0GKhlqkNuy8j4doUSEVq2c6QVe12-EHYA_C6uea9IMt5u3SOKfjsL4gg6Z9Jgqki3vfV9IBSjisHZaskLeGebVgCqFyDyuokhnSiNz0d_sf4IQwYoZUWSu2KNXDdKRx&sai=AMfl-YS6Lg-2VFHPE1JI30RwEcZTt3y8TD9mZ6cJ68pdPADPwEDCcJvqEhEThLOr6gRSsB1Ppd8a1grE9i-yQ3A&sig=Cg0ArKJSzCW2u4gDt1iMEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=1&cisv=r20230322.50293&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sat, 25 Mar 2023 16:13:35 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:28:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 25 Mar 2023 16:13:35 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1679760827535&id=t2_9pb48ns2&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=3e8a4887-81c6-45db-9665-08004817015d&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
151.101.65.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1679760827535&id=t2_9pb48ns2&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=3e8a4887-81c6-45db-9665-08004817015d&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
IP 151.101.65.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1679760827535&id=t2_9pb48ns2&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=3e8a4887-81c6-45db-9665-08004817015d&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sat, 25 Mar 2023 16:13:35 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/6466-bd62caa0850bba10f824.js
45.60.78.64200 OK 1.2 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/6466-bd62caa0850bba10f824.js
IP 45.60.78.64:0
File type ASCII text, with very long lines (2679), with no line terminators
Hash 1c2afcc4d6f9cbf7399507cd054fe380
d7c5be70d71e9ae13ffb31c9d7a9d86307ac8361
06e7a5745259516a39d85381be48309ab0718bc940c686701f73a44a28fca495
GET /d14bc70849dacfa2/6466-bd62caa0850bba10f824.js HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.2.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e; ip=91.90.42.154; ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0; amp_2b7904=cTa3_w2HZ0mBSSzuA01l-4...1gscooafo.1gscooafo.0.0.0; _gid=GA1.2.1905605939.1679760829; _dc_gtm_UA-8651572-1=1
TE: trailers
HTTP/2 200 OK
etag: "641c535b-a77"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: application/javascript
content-length: 1239
content-encoding: gzip
date: Sat, 25 Mar 2023 16:13:34 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13880746 3VNN RT(1679760812734 2291) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/852410746/?random=1679760814464&cv=10&fst=1679760000000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&is_vtc=1&random=237399901
142.250.74.132302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/852410746/?random=1679760814464&cv=10&fst=1679760000000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&is_vtc=1&random=237399901
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/852410746/?random=1679760814464&cv=10&fst=1679760000000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&is_vtc=1&random=237399901 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:13:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/852410746/?random=1679760814464&cv=10&fst=1679760000000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=45j91e33m1&url=https%3A%2F%2Fwww.exness.asia%2F&tiba=Online%20Trading%20%7C%20Trade%20with%20Exness&data=event_time%3D1679760827%3Baction_source%3Dwebsite&is_vtc=1&random=237399901&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 8ce0c100daa7ca79c7043221bc182e72
44a5661cdc3cde89512f04a41a960687b66bff23
04b302fa376a302eec872172a89d516c7c89337ce03c4cfcc45deff0f40b1268
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6318
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:35 GMT
Etag: "641d969b-139"
Last-Modified: Sat, 25 Mar 2023 14:28:17 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 312
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14538
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:13:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14538
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:13:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14538
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:13:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:18 GMT
age: 66797
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 26549
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 66787
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 66787
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3167757750.json
45.60.78.64200 OK 6.5 kB URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3167757750.json
IP 45.60.78.64:0
Hash 8e4e723dbd457074996c9cdaeab8a19c
b78e8f635f026e9cf721389909d490ae78478950
c0d9ea468d20b848418dfcb00e5210f00df06b334859351c4105c1144a6710c3
GET /d14bc70849dacfa2/page-data/sq/d/3167757750.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
etag: W/"641c535a-1c4"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13887765 nNYN RT(1679760812734 1089) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 66787
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=d58298cb-c1d5-49ab-8599-d52c056f8685; Max-Age=63072000; Expires=Mon, 24 Mar 2025 16:13:35 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c58ef3e8a5d17aac
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: 59e3e47c17128ce8978912b63a40e3dcbb2113532eddc592219f49f1bd384cc2
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.7ba116b9.js
2.18.172.195200 OK 17 kB URL HTTP/2 s.pinimg.com/ct/lib/main.7ba116b9.js
IP 2.18.172.195:0
File type ASCII text, with very long lines (57623), with no line terminators
Hash 9c6e2e41656c92a4def190e70014e481
bc40c5adbae494009a92c17c4eaf6738ef5fae78
9fbc31b741e5ca4a4c23684e1be0d209028f838fbb2813aa18ccbb1a659acf79
GET /ct/lib/main.7ba116b9.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
etag: "9c6e2e41656c92a4def190e70014e481"
x-amz-server-side-encryption: AES256
content-encoding: br
accept-ranges: bytes
content-type: application/javascript
content-length: 17420
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 314 B IP 192.229.221.95:0
Hash 5456fb97383b2958c3776d9360ea71df
fca93e376dd6d713a37d2e693656cfdd02be27ec
121856eb87b2cb1534a6932c784f7def0232b94b7182d723cfd0821cb7fc17a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6326
Cache-Control: max-age=160019
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:36 GMT
Etag: "641ed30d-13a"
Expires: Mon, 27 Mar 2023 12:40:35 GMT
Last-Modified: Sat, 25 Mar 2023 10:55:09 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 9e7d01affe58ad84c7e7946530540ebc
bce72809e3a7f3bcdba60103a37a77161235c9f6
a912e27c1d357cc0e15e88a6bce0609564c97b9317f4178feaab276a95343824
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5000
Cache-Control: max-age=117652
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:36 GMT
Etag: "641e32bc-1d7"
Expires: Mon, 27 Mar 2023 00:54:28 GMT
Last-Modified: Fri, 24 Mar 2023 23:31:08 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
exness.my.salesforce.com/embeddedservice/5.0/esw.min.js
161.71.1.149200 OK 8.5 kB URL HTTP/1.1 exness.my.salesforce.com/embeddedservice/5.0/esw.min.js
IP 161.71.1.149:0
File type C source, ASCII text, with very long lines (754)
Hash 370c25988d5438d0008e18e8ce4b3f8d
db57c3f150982fbc4aefebbdb81f2f00c4ab7bbe
97cc37d86d4e2028aaebc939a777bf8030cd84f905521bed118db007f9e9acaf
GET /embeddedservice/5.0/esw.min.js HTTP/1.1
Host: exness.my.salesforce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 16:13:36 GMT
Set-Cookie: CookieConsentPolicy=0:1; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
LSKey-c$CookieConsentPolicy=0:1; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
BrowserId=_xVq1ssnEe2fcv2GWTQ9qQ; domain=.salesforce.com; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
BrowserId_sec=_xVq1ssnEe2fcv2GWTQ9qQ; domain=.salesforce.com; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000; secure; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 26 Mar 2023 16:13:36 GMT
Last-Modified: Thu, 06 Oct 2022 23:37:30 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3878482%26time%3D1679760828898%26url%3Dhttps%253A%252F%252Fwww.exness.asia%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJ9FQWvYGerSAAAAYcZi_g1LRGIDDfT0DCAAMjcFzWV5TUmM_jcLAQqHtHOWqHlRPRZryYtWfg_Uw; Max-Age=2592000; Expires=Mon, 24 Apr 2023 16:13:36 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIM4hmUB_jm5gAAAYcZi_g1SZ7lIHdUeV2AenCgWSZiK6E1loRW0fVrDV3r1U58bBIBQgHQ_wS4SPS0sZszvQ; Max-Age=2592000; Expires=Mon, 24 Apr 2023 16:13:36 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&ff3460e7-073b-407e-8855-26517fbee86e"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 24-Mar-2024 16:13:36 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2491:u=1:x=1:i=1679760816:t=1679847216:v=2:sig=AQGhOWTFZDbdemSvB17kWziK8NNaGQbH"; Expires=Sun, 26 Mar 2023 16:13:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAX3u8rBgCYP93me9RqUAw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 404B22252E8F495DB343559CFD613567 Ref B: OSL30EDGE0206 Ref C: 2023-03-25T16:13:36Z
date: Sat, 25 Mar 2023 16:13:35 GMT
content-length: 0
X-Firefox-Spdy: h2
api.ipify.org/?format=json
64.185.227.155200 OK 21 B URL HTTP/2 api.ipify.org/?format=json
IP 64.185.227.155:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
access-control-allow-origin: https://www.exness.asia
content-type: application/json
date: Sat, 25 Mar 2023 16:13:36 GMT
vary: Origin
content-length: 21
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29
104.244.42.195200 OK 91 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29
IP 104.244.42.195:0
Hash 1edbaa56ee671b0660e55c8e98655744
05eb3a4806a20a58226ee2790c5e89f462cc37c4
2a9c21563b340986ecc5fc798eefb0db223a08366cd61c5a81e44f1719c2e860
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=64d04e14-729b-43cc-b897-a1b6e0844df3&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6b900c23-47d2-4b8f-9723-1f05e4cb459d&tw_document_href=https%3A%2F%2Fwww.exness.asia%2F&tw_iframe_status=0&txn_id=o19sj&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167976081623821024; Max-Age=63072000; Expires=Mon, 24 Mar 2025 16:13:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167976081623821024; Max-Age=63072000; Expires=Mon, 24 Mar 2025 16:13:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_r5yrCiTaEGes8OD2WtcboQ=="; Max-Age=63072000; Expires=Mon, 24 Mar 2025 16:13:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167976081623821024; Max-Age=63072000; Expires=Mon, 24 Mar 2025 16:13:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0adc9363231443f3
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: f42d23539d2304009373c7154c7e4142c6513e7490ea203817924ca63ffc6ab5
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%227ba116b9%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679760829489
151.101.64.84200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%227ba116b9%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679760829489
IP 151.101.64.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%227ba116b9%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679760829489 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 6301160554910095
date: Sat, 25 Mar 2023 16:13:36 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
api.iafstats.com/exchange/user_event
107.154.192.67200 OK 0 B URL HTTP/2 api.iafstats.com/exchange/user_event
IP 107.154.192.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /exchange/user_event HTTP/1.1
Host: api.iafstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 453
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Sat, 25 Mar 2023 16:13:36 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.exness.asia
access-control-allow-methods: POST, GET, DELETE, OPTIONS
access-control-allow-headers: Authorization, Content-Type
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
set-cookie: nlbi_2831379=qeG6L3vKgnkQN3EEd2GMZgAAAAB9MLXFi6DgmVi9eOR5xMFJ; path=/; Domain=.iafstats.com
visid_incap_2831379=WLJ/Z0AqS0Ce9+A6GSFxtbAdH2QAAAAAQUIPAAAAAAD6yDVA5x/AuIKKDhnRjihQ; expires=Sat, 23 Mar 2024 22:16:35 GMT; HttpOnly; path=/; Domain=.iafstats.com
incap_ses_7233_2831379=0YXNKqBA+mXQD5XlxMdgZLAdH2QAAAAAkRVFJ9V6jpAkRC60pLBdOA==; path=/; Domain=.iafstats.com
x-cdn: Imperva
x-iinfo: 11-12685607-12651567 pNNN RT(1679760814845 1259) q(0 0 0 -1) r(0 0) U6
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1679760829486&dep=2%2CPAGE_LOAD
151.101.64.84200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1679760829486&dep=2%2CPAGE_LOAD
IP 151.101.64.84:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2613423494547&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1679760829486&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpqUTJNMk01WXpjdFl6WmpNaTAwWmpRekxUazFabVV0TkRrNFpUZGhaVE16WVdaaQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.exness.asia
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 4732919163550208
date: Sat, 25 Mar 2023 16:13:36 GMT
x-cdn: fastly
content-length: 372
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3878482%26time%3D1679760828898%26url%3Dhttps%253A%252F%252Fwww.exness.asia%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3878482%26time%3D1679760828898%26url%3Dhttps%253A%252F%252Fwww.exness.asia%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3878482%26time%3D1679760828898%26url%3Dhttps%253A%252F%252Fwww.exness.asia%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F&liSync=true
set-cookie: bcookie="v=2&7b7df1df-aec7-46e5-820c-577a27dbdcc0"; Domain=.linkedin.com; Expires=Sun, 24-Mar-2024 16:13:36 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2023032516133655c00530-6ae9-41ab-879c-8ce420238c9dAQFyVmamBQsIi1sVv1fuzMOMZEBuFKeW"; Domain=.www.linkedin.com; Expires=Sun, 24-Mar-2024 16:13:36 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Nzk3NjA4MTY7MjswMjGU0BqM6DtV3NIYLv/Sh84tdvI5Jf3MjMtq0kPHRK1R7g==; Domain=.linkedin.com; Expires=Thu, 21 Sep 2023 16:13:36 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2491:u=1:x=1:i=1679760816:t=1679847216:v=2:sig=AQGhOWTFZDbdemSvB17kWziK8NNaGQbH"; Expires=Sun, 26 Mar 2023 16:13:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAX3u8rEO93B5li0++5Etw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2A9DADA8ADEE4ADEAE95499BED19BC0B Ref B: OSL30EDGE0206 Ref C: 2023-03-25T16:13:36Z
date: Sat, 25 Mar 2023 16:13:35 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 12be5365efe5cbaba1dd696a1f9ad350
a3c7730ba19d99dac488cc3ac5a863240b86c116
03cf51ebffb7f352d08d8ed9da54ce2b51693004df5d6ea4b4e6ca70d1579d31
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 16:13:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 04:47:37 GMT
Expires: Sat, 01 Apr 2023 04:47:36 GMT
Etag: "a3c7730ba19d99dac488cc3ac5a863240b86c116"
Cache-Control: max-age=601937,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 912
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad8712ecaf6b52d-OSL
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0cdb7f6abb54e0540d799cc6c3cbec94
c7cb1f2ea5c0067506d7f30ef38d321aa2075dea
4473d75ffa050a0b7cffc423bdc3772ec616dbb157af10ad263f7de279b5f781
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 169
Cache-Control: max-age=170454
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:36 GMT
Etag: "641f13dd-1d7"
Expires: Mon, 27 Mar 2023 15:34:30 GMT
Last-Modified: Sat, 25 Mar 2023 15:31:41 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
service.force.com/embeddedservice/5.0/utils/common.min.js
161.71.2.38200 OK 1.9 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/utils/common.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (550)
Hash 89b63ed2ddd042494ab14b557e53565f
df1c57587176c8a50dc263225811637cec1f4fc7
d62250f0f4b780503fa876ccafc2affff1b8ef601cc3760a8b4f870a2f404d3f
GET /embeddedservice/5.0/utils/common.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:52:10 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:52:10 GMT
Last-Modified: Thu, 17 Feb 2022 23:57:30 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58886
Content-Length: 1918
service.force.com/embeddedservice/5.0/esw.min.css
161.71.2.38200 OK 4.0 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/esw.min.css
IP 161.71.2.38:0
File type ASCII text, with very long lines (8794), with no line terminators
Hash 5d8ed4bfc01e918da939485ec4efabc7
0eb986fbe6b1ffe59a4af333b1f85cedca731ccc
b0e6c32e2e7332b92afe96cb807a296a9f39c32b09d0bcb4bdaee1ad724851bf
GET /embeddedservice/5.0/esw.min.css HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:50:49 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:50:49 GMT
Last-Modified: Fri, 27 Aug 2021 14:11:56 GMT
Content-Type: text/css
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58967
Content-Length: 4027
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3878482&time=1679760828898&url=https%3A%2F%2Fwww.exness.asia%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: bcookie="v=2&56ef5e63-f3e4-45bb-873b-8f11200760b2"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 24-Mar-2024 16:13:36 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2491:u=1:x=1:i=1679760816:t=1679847216:v=2:sig=AQGhOWTFZDbdemSvB17kWziK8NNaGQbH"; Expires=Sun, 26 Mar 2023 16:13:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAX3u8rIXwrpT6/XdmhP+w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 50F7698C92334B18A694418CBA85C25B Ref B: OSL30EDGE0206 Ref C: 2023-03-25T16:13:36Z
date: Sat, 25 Mar 2023 16:13:36 GMT
content-length: 0
X-Firefox-Spdy: h2
service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js
161.71.2.38200 OK 5.9 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (626)
Hash 99eead40b035e42e52e141e769d9d2c8
8a5a1759498e09c1865aa754593a5e000faa34f7
f2c067fb39b4b174aff60194ae84ba8e884eb241397db1ae317dc0efc88714da
GET /embeddedservice/5.0/client/liveagent.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:53:25 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:53:25 GMT
Last-Modified: Wed, 17 Aug 2022 20:11:18 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58811
Content-Length: 5913
api2.amplitude.com/
35.166.103.89200 OK 7 B IP 35.166.103.89:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api2.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1004
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:36 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-641f1db0-3ee975982afccff9203ed41e
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
161.71.2.38200 OK 160 B URL HTTP/1.1 service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
IP 161.71.2.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c5e5f0bb616249865a3a902fe9d5f4d
36c7522dd1692877cb70f200a5e8e6c92ff5a0be
2903cfaf1f3408626b260ab93df0977c1dfb280135185d8b16f35f0fb56ea14b
GET /embeddedservice/5.0/esw.html?parent=https://www.exness.asia/ HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 16:13:36 GMT
Set-Cookie: CookieConsentPolicy=0:0; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
LSKey-c$CookieConsentPolicy=0:0; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
BrowserId=_27778snEe2ABPcp3o3iuA; domain=.force.com; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000
BrowserId_sec=_27778snEe2ABPcp3o3iuA; domain=.force.com; path=/; expires=Sun, 24-Mar-2024 16:13:36 GMT; Max-Age=31536000; secure; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: upgrade-insecure-requests
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 26 Mar 2023 16:13:36 GMT
Last-Modified: Fri, 02 Aug 2019 08:43:42 GMT
Content-Type: text/html;charset=UTF-8
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
ct.pinterest.com/ct.html
151.101.64.84200 OK 323 B IP 151.101.64.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 8110997268768210
date: Sat, 25 Mar 2023 16:13:36 GMT
x-cdn: fastly
content-length: 323
X-Firefox-Spdy: h2
www.exness.asia/manifest.webmanifest
45.60.78.64200 OK 274 B URL HTTP/2 www.exness.asia/manifest.webmanifest
IP 45.60.78.64:0
Hash 6581dbee47420b989d06dff55024fa0e
05316a8e1f178f0351c90f5036b2c03f3f9e9c28
f859fcd5e89f5d353e7ddc1a5b3a52aa6229fd7f5198c601d1b36ace14d91e43
GET /manifest.webmanifest HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.2.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e; ip=91.90.42.154; ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0; amp_2b7904=cTa3_w2HZ0mBSSzuA01l-4...1gscooafo.1gscooam6.0.2.2; _gid=GA1.2.1905605939.1679760829; _dc_gtm_UA-8651572-1=1; ln_or=eyIzODc4NDgyIjoiZCJ9; _pin_unauth=dWlkPVpqUTJNMk01WXpjdFl6WmpNaTAwWmpRekxUazFabVV0TkRrNFpUZGhaVE16WVdaaQ
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:36 GMT
content-type: application/manifest+json
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
etag: "641c535b-389"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13887765 pNYN RT(1679760812734 3433) q(0 0 0 -1) r(0 0) U12
X-Firefox-Spdy: h2
service.force.com/embeddedservice/5.0/eswFrame.min.js
161.71.2.38200 OK 2.0 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/eswFrame.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (571)
Hash 32ad3d620a33f8209533c5c4267c6043
6a1523cf674cf53793acc8013cb8e6330698a825
57618e565437f511f5a81d68fbd3c2b537e647df012b6162fb141f4f06511fd8
GET /embeddedservice/5.0/eswFrame.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:48:15 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:48:15 GMT
Last-Modified: Thu, 06 Oct 2022 23:37:30 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 59121
Content-Length: 2002
service.force.com/embeddedservice/5.0/frame/session.esw.min.js
161.71.2.38200 OK 882 B URL HTTP/1.1 service.force.com/embeddedservice/5.0/frame/session.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (547)
Hash cec719e5771159a32a168b34ef4f6794
6450fafe3a2ff2734c59f0d954165d2c70e851c3
ee1d997f0db8278898bd416d9284093eccc4be898cb47095bc8d4c1d1f24b589
GET /embeddedservice/5.0/frame/session.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:52:05 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:52:05 GMT
Last-Modified: Wed, 17 Aug 2022 20:10:20 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58891
Content-Length: 882
service.force.com/embeddedservice/5.0/frame/broadcast.esw.min.js
161.71.2.38200 OK 779 B URL HTTP/1.1 service.force.com/embeddedservice/5.0/frame/broadcast.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (533)
Hash e84acdd4fccc4c1cb30bb39606f42b03
fa53513e50f920d0dec00b491e7908c7280ba209
21ff90e6ccb87d025b244105e78ba582a7bdc606c8b563ec0bb8d4c95bc98ca5
GET /embeddedservice/5.0/frame/broadcast.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:50:48 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:50:48 GMT
Last-Modified: Thu, 18 Feb 2021 00:07:24 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58968
Content-Length: 779
service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js
161.71.2.38200 OK 5.3 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (566)
Hash 1fa4fec40c71235da1eefd4d8579368e
aa9757ddaa501d0c9e261f445f88db2ec78de722
2645eca0a46697f9c855af59d89a6c994e8f1e1caa8e6ae5917463b750ca1398
GET /embeddedservice/5.0/frame/chasitor.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:53:46 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:53:46 GMT
Last-Modified: Thu, 26 Jan 2023 18:19:10 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58790
Content-Length: 5265
service.force.com/embeddedservice/5.0/client/invite.esw.min.js
161.71.2.38200 OK 4.5 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/client/invite.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (547)
Hash 2999bf17d31bae4ae17daba548e9a2ce
28d6574046f0ca2a2b5f5626f5913ae0d65cebaf
e54bda495e68a92d495ac1a8f2201186ebf2a39f6d0bd027f1de4737d0098be2
GET /embeddedservice/5.0/client/invite.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:53:21 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:53:21 GMT
Last-Modified: Fri, 24 Sep 2021 16:25:36 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 58815
Content-Length: 4540
service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js
161.71.2.38200 OK 231 B URL HTTP/1.1 service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (472)
Hash 1dc6a69e0eeee1afc8edef265f86bcce
176d52f50705cd035cc7c0be81f743dc1d66b44d
61ec245c1b0bb67263139213ae642284fb6f5a0f5240e39ce29345dce0035708
GET /embeddedservice/5.0/frame/filetransfer.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:49:02 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:49:02 GMT
Last-Modified: Tue, 18 Aug 2020 17:12:46 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 59074
Content-Length: 231
www.exness.asia/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 27 kB URL HTTP/2 www.exness.asia/icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 873c9d477160f023b96935a42cbe1b9d
2548af0afd95326b592f2c5691bfdbec6b34a18f
29bfcc236697e92eb74f16ca38c0d18fc911e2f49152d6ef79d92eea0c5fa337
GET /icons/icon-512x512.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.2.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e; ip=91.90.42.154; ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0; amp_2b7904=cTa3_w2HZ0mBSSzuA01l-4...1gscooafo.1gscooam6.0.2.2; _gid=GA1.2.1905605939.1679760829; _dc_gtm_UA-8651572-1=1; ln_or=eyIzODc4NDgyIjoiZCJ9; _pin_unauth=dWlkPVpqUTJNMk01WXpjdFl6WmpNaTAwWmpRekxUazFabVV0TkRrNFpUZGhaVE16WVdaaQ
TE: trailers
HTTP/2 200 OK
etag: "641c535b-6e99"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: image/png
content-length: 26712
date: Sat, 25 Mar 2023 16:13:36 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13887483 3CNN RT(1679760812734 3631) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
api2.amplitude.com/
35.166.103.89200 OK 7 B IP 35.166.103.89:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api2.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1056
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:36 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-641f1db0-7381b9e13e61d02f4433cbb0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
www.exness.asia/icons/icon-48x48.png?v=b474837a95da9ba4361183564c5d180e
45.60.78.64200 OK 2.5 kB URL HTTP/2 www.exness.asia/icons/icon-48x48.png?v=b474837a95da9ba4361183564c5d180e
IP 45.60.78.64:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 3cd02e9634dfa93217be1514586b394d
6a0afde42f98b47a64888c1e2144e0795afac65a
e497c4e135ccd7a1df1e3982a82cc59b14faa7dc35b8240f9fe2dc2197c36e9a
GET /icons/icon-48x48.png?v=b474837a95da9ba4361183564c5d180e HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.2.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e; ip=91.90.42.154; ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0; amp_2b7904=cTa3_w2HZ0mBSSzuA01l-4...1gscooafo.1gscooam6.0.2.2; _gid=GA1.2.1905605939.1679760829; _dc_gtm_UA-8651572-1=1; ln_or=eyIzODc4NDgyIjoiZCJ9; _pin_unauth=dWlkPVpqUTJNMk01WXpjdFl6WmpNaTAwWmpRekxUazFabVV0TkRrNFpUZGhaVE16WVdaaQ
TE: trailers
HTTP/2 200 OK
etag: "641c535b-9ec"
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
content-type: image/png
content-length: 2525
date: Sat, 25 Mar 2023 16:13:36 GMT
x-cdn: Imperva
x-iinfo: 11-13887714-13880746 3VNN RT(1679760812734 3633) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
service.force.com/embeddedservice/5.0/utils/inert.min.js
161.71.2.38200 OK 2.5 kB URL HTTP/1.1 service.force.com/embeddedservice/5.0/utils/inert.min.js
IP 161.71.2.38:0
File type ASCII text, with very long lines (626)
Hash 0595f061ed61246c426e086646bffea9
c20499de5345a184ddd1ae365b533e8ace04de53
83cbe64d620a3cdb42530711f691926a833d09cf868855162aa2e7451a3b1382
GET /embeddedservice/5.0/utils/inert.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: BrowserId_sec=_27778snEe2ABPcp3o3iuA
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 23:48:59 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sat, 25 Mar 2023 23:48:59 GMT
Last-Modified: Tue, 18 Aug 2020 17:12:46 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 59078
Content-Length: 2469
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 4a1f89dbbec68d318987667d35f3d160
3eb6dc8fcbc74be5f08f435341ce9b9e6d08e47d
c7f5beb69e9202849c59c4cd1f717e6b8465ecc5174793e9a0af3231ba114fb6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1003
Cache-Control: max-age=116873
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:37 GMT
Etag: "641e3f4f-1d7"
Expires: Mon, 27 Mar 2023 00:41:30 GMT
Last-Modified: Sat, 25 Mar 2023 00:24:47 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 4a1f89dbbec68d318987667d35f3d160
3eb6dc8fcbc74be5f08f435341ce9b9e6d08e47d
c7f5beb69e9202849c59c4cd1f717e6b8465ecc5174793e9a0af3231ba114fb6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 976
Cache-Control: max-age=116846
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:13:37 GMT
Etag: "641e3f4f-1d7"
Expires: Mon, 27 Mar 2023 00:41:03 GMT
Last-Modified: Sat, 25 Mar 2023 00:24:47 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
d.la1-c2-lo2.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5734I000000kACC]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5724I000000kAAL&org_id=00D58000000Kpf3&version=48
161.71.1.52200 OK 285 B URL HTTP/1.1 d.la1-c2-lo2.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5734I000000kACC]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5724I000000kAAL&org_id=00D58000000Kpf3&version=48
IP 161.71.1.52:0
File type ASCII text, with very long lines (346), with no line terminators
Hash afc5e510bb3e9f54334d5c191a180f03
9ffd319c120b43ad618d6f6239bea4a25911d0f0
56487babe7c5d372de6923791051a8a41ecb5b8e5aeb4829d56aaa2d1aee452f
GET /chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5734I000000kACC]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5724I000000kAAL&org_id=00D58000000Kpf3&version=48 HTTP/1.1
Host: d.la1-c2-lo2.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!YXvHOW0HLKAvU01e4V1SbhxzlcvV5RY/ml5axNlm90rp9YRCyYkXklYFcBrV59wCaNuqPHels9TzHi0=; path=/; Httponly; Secure
www.exness.asia/d14bc70849dacfa2/page-data/app-data.json
45.60.78.64200 OK 0 B URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/app-data.json
IP 45.60.78.64:0
GET /d14bc70849dacfa2/page-data/app-data.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
etag: W/"641c535b-32"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13844263 pNYN RT(1679760812734 218) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
api.iafstats.com/collector/dataCollector.js
107.154.192.67200 OK 0 B URL HTTP/2 api.iafstats.com/collector/dataCollector.js
IP 107.154.192.67:0
GET /collector/dataCollector.js HTTP/1.1
Host: api.iafstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Sat, 25 Mar 2023 16:13:35 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 16 Mar 2023 11:30:04 GMT
etag: W/"6412fdbc-3cc35"
expires: Sat, 25 Mar 2023 16:14:35 GMT
cache-control: max-age=60, no-cache
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
x-content-type-options: nosniff
set-cookie: nlbi_2831379=Z6eTYWzFF2BoNvWDd2GMZgAAAABI/52OG07yyy9xR0f71EDc; path=/; Domain=.iafstats.com
visid_incap_2831379=PBY8ImMwSEqhRQ/Mdrsixa4dH2QAAAAAQUIPAAAAAADnScoH8yKdhOmlguZW4pCi; expires=Sat, 23 Mar 2024 22:16:35 GMT; HttpOnly; path=/; Domain=.iafstats.com
incap_ses_7233_2831379=dIqTEkW3+SltD5XlxMdgZK4dH2QAAAAAtof1PxScMtNpkCB3fFoT7w==; path=/; Domain=.iafstats.com
x-cdn: Imperva
x-iinfo: 11-12685607-12685160 3NNN RT(1679760814845 37) q(0 0 0 -1) r(1 1) U2
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/5SRBOGgNhC0GybBgqBoPlc/7afe32e6c19a4fe104cf9dc783d9c052/twitter-logo.svg
54.230.111.123200 OK 0 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/5SRBOGgNhC0GybBgqBoPlc/7afe32e6c19a4fe104cf9dc783d9c052/twitter-logo.svg
IP 54.230.111.123:0
GET /1rkoumd4khui/5SRBOGgNhC0GybBgqBoPlc/7afe32e6c19a4fe104cf9dc783d9c052/twitter-logo.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 25 Mar 2023 03:15:35 GMT
last-modified: Mon, 24 Oct 2022 15:45:02 GMT
etag: W/"e9f9a63a4c1c4e917b00912a1cfe0a27"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yY8mitN5PCVJI1Lst1vJ8NC96SsK_MbxLhLEJMfLZ4HdcQZOoD7NYQ==
age: 46679
X-Firefox-Spdy: h2
d.la1-c2-lo2.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D58000000Kpf3&EmbeddedServiceConfig.configName=Global_Chat&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48&EmbeddedServiceConfig.language=en
161.71.1.52200 OK 0 B URL HTTP/1.1 d.la1-c2-lo2.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D58000000Kpf3&EmbeddedServiceConfig.configName=Global_Chat&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48&EmbeddedServiceConfig.language=en
IP 161.71.1.52:0
GET /chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D58000000Kpf3&EmbeddedServiceConfig.configName=Global_Chat&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48&EmbeddedServiceConfig.language=en HTTP/1.1
Host: d.la1-c2-lo2.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!12hLnX8rJZT2A1Ze4V1SbhxzlcvV5ZL331f/17Fr30wPXExYLn+BAslEmdhenJ59Nty3TE6MWw3EI4U=; path=/; Httponly; Secure
100005813.collect.igodigital.com/collect.js
52.207.41.202200 OK 0 B URL HTTP/2 100005813.collect.igodigital.com/collect.js
IP 52.207.41.202:0
GET /collect.js HTTP/1.1
Host: 100005813.collect.igodigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/javascript
last-modified: Fri, 24 Mar 2023 20:48:53 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/2EDIRcj8UyBewxQ5PwWwey/03e24ca9892ba7f7392fca88595e8041/instagram-logo.svg
54.230.111.123200 OK 0 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/2EDIRcj8UyBewxQ5PwWwey/03e24ca9892ba7f7392fca88595e8041/instagram-logo.svg
IP 54.230.111.123:0
GET /1rkoumd4khui/2EDIRcj8UyBewxQ5PwWwey/03e24ca9892ba7f7392fca88595e8041/instagram-logo.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 24 Oct 2022 15:45:02 GMT
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
date: Sat, 25 Mar 2023 02:56:28 GMT
cache-control: max-age=31536000
etag: W/"0fbde7dd588b26c37631971b6ec17126"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o5vmWhjUQxDZs9PL6vpqpNo0ZKPbWLGcQ_JuplzNtxBjPsjSxmeULQ==
age: 47826
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/34ZyBxeF5sLLP1PfsYo7Nr/991743aaf951110d026684d2e93e5d1c/ExnessLogoBlack.svg
54.230.111.123200 OK 0 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/34ZyBxeF5sLLP1PfsYo7Nr/991743aaf951110d026684d2e93e5d1c/ExnessLogoBlack.svg
IP 54.230.111.123:0
GET /1rkoumd4khui/34ZyBxeF5sLLP1PfsYo7Nr/991743aaf951110d026684d2e93e5d1c/ExnessLogoBlack.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 24 Oct 2022 15:49:13 GMT
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
date: Sat, 25 Mar 2023 00:35:17 GMT
cache-control: max-age=31536000
etag: W/"76707d3279ea696db5c09afbcb7fc779"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6ZHfoyPFphGLsd0w3MOrZM9BrPboT4tQZJAw4IcYb8e7LzyFylDWng==
age: 56297
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/RMLjSYPHMxMmU9eAeUhLy/42c774f09670050ddd0620531faa1901/youtube-logo.svg
54.230.111.123200 OK 0 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/RMLjSYPHMxMmU9eAeUhLy/42c774f09670050ddd0620531faa1901/youtube-logo.svg
IP 54.230.111.123:0
GET /1rkoumd4khui/RMLjSYPHMxMmU9eAeUhLy/42c774f09670050ddd0620531faa1901/youtube-logo.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 25 Mar 2023 01:29:18 GMT
last-modified: Mon, 24 Oct 2022 15:45:03 GMT
etag: W/"bd5e945d1032c41a9b54d971019cc650"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g482Mw3ij3TKIVzrEB6KCMxYW-e36Aff0LElKe3z-ZK3pxFm5bVC6Q==
age: 53056
X-Firefox-Spdy: h2
images.ctfassets.net/1rkoumd4khui/6RWvUpDlMJ6qQv5BK6ea7d/7a6d39a9104757ebd31804c213b31502/ExnessLogoWhite.svg
54.230.111.123200 OK 0 B URL HTTP/2 images.ctfassets.net/1rkoumd4khui/6RWvUpDlMJ6qQv5BK6ea7d/7a6d39a9104757ebd31804c213b31502/ExnessLogoWhite.svg
IP 54.230.111.123:0
GET /1rkoumd4khui/6RWvUpDlMJ6qQv5BK6ea7d/7a6d39a9104757ebd31804c213b31502/ExnessLogoWhite.svg HTTP/1.1
Host: images.ctfassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 25 Mar 2023 03:15:41 GMT
last-modified: Mon, 24 Oct 2022 15:49:10 GMT
etag: W/"c854b56424dbc711c9e3e664937db59e"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Bqw8XufFWBteD-1gzgiDIXGV0G5t37sPHtL2T81C_nrUzH_saLQl0Q==
age: 46673
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3137483302.json
45.60.78.64200 OK 0 B URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/sq/d/3137483302.json
IP 45.60.78.64:0
GET /d14bc70849dacfa2/page-data/sq/d/3137483302.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
etag: W/"641c535a-1374"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13882129 pNYN RT(1679760812734 1087) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
www.exness.asia/
45.60.78.64200 OK 0 B IP 45.60.78.64:0
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.asia domain
GET / HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: text/html
last-modified: Thu, 23 Mar 2023 13:25:47 GMT
etag: W/"641c535b-2b780"
x-frame-options: DENY
x-xss-protection: 1; mode=block
link: </d14bc70849dacfa2/webpack-runtime-c731ced46fa8d60b1eb4.js>; rel=preload; as=script, </d14bc70849dacfa2/framework-6cd00bb5790b5c1e3040.js>; rel=preload; as=script, </d14bc70849dacfa2/app-bbf43432c963db2cb635.js>; rel=preload; as=script, </d14bc70849dacfa2/46f34eef1595ed29a4e04467def1b3a7ccbfc45a-a360fc66ed2cf652723f.js>; rel=preload; as=script, </d14bc70849dacfa2/28032dbd205b248102a15127c70392043fb1ae0d-8ff7401485d84f4c2ee4.js>; rel=preload; as=script, </d14bc70849dacfa2/8d38dc736450f75f29bc5d35e0243d65cbcf5bb5-f1a270e2218065a00d3e.js>; rel=preload; as=script, </d14bc70849dacfa2/34e28d7bc1f6ef0aa38e8280d29635590d1ff744-b47c5c42880eb54cda24.js>; rel=preload; as=script, </d14bc70849dacfa2/693e3458cd7526c869d8802d7c69fdec02cd46e2-7350b16f90eabeb08445.js>; rel=preload; as=script, </d14bc70849dacfa2/component---src-templates-page-home-js-bb180ea6bcad7dc20573.js>; rel=preload; as=script, </d14bc70849dacfa2/page-data/app-data.json>; rel=preload; as=fetch; crossorigin, </d14bc70849dacfa2/page-data/index/page-data.json>; rel=preload; as=fetch; crossorigin
x-router-node: pw-epw-dqdx9
x-geo-country: NO
referrer-policy: same-origin, strict-origin-when-cross-origin
set-cookie: country=NO;Path=/;Max-Age=2628000
language=en;Path=/;Max-Age=2628000
nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; path=/; Domain=.exness.asia
visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; expires=Sat, 23 Mar 2024 22:33:32 GMT; HttpOnly; path=/; Domain=.exness.asia
incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; path=/; Domain=.exness.asia
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, private
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13844263 pNYN RT(1679760812734 24) q(0 0 0 1) r(0 0) U12
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3878482/domain/exness.asia/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3878482/domain/exness.asia/token
IP 54.230.111.112:0
GET /partner/3878482/domain/exness.asia/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.asia
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.exness.asia/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/json
date: Sat, 25 Mar 2023 12:10:12 GMT
access-control-allow-origin: *
cache-control: public, max-age=41497
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uE69Ne7mLrpx-qzZT6l2U8qnsDfzr7tnyB6rxvvz7PrUmA1r9o5Shg==
age: 14603
X-Firefox-Spdy: h2
unpkg.com/pwacompat@2.0.17
104.16.123.175302 Found 0 B URL HTTP/2 unpkg.com/pwacompat@2.0.17
IP 104.16.123.175:0
GET /pwacompat@2.0.17 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.exness.asia
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 25 Mar 2023 16:13:33 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /pwacompat@2.0.17/pwacompat.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01G4XKWX33QFXTA5NC3NSAW46S-fra
cf-cache-status: HIT
age: 25204558
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8711dfbe7fac4-OSL
X-Firefox-Spdy: h2
www.exness.asia/d14bc70849dacfa2/page-data/sq/d/2834441798.json
45.60.78.64200 OK 0 B URL HTTP/2 www.exness.asia/d14bc70849dacfa2/page-data/sq/d/2834441798.json
IP 45.60.78.64:0
GET /d14bc70849dacfa2/page-data/sq/d/2834441798.json HTTP/1.1
Host: www.exness.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Cookie: country=NO; language=en; nlbi_1069075=yh82UgaIzg1+YnrVX/7UyAAAAADB0l9enCvjDZFXouPTi8fu; visid_incap_1069075=Kj4ggGXeT36tx0sJ3KgNQqwdH2QAAAAAQUIPAAAAAAAW5TJj1kJI7UkOh+bMOk2J; incap_ses_7235_1069075=F9ntGzQGR0N6I+IvwuJnZKwdH2QAAAAArfL2RFigy0OfViQue/L/yg==; _gaexp=GAX1.2.dWvLk2e0QkuKK6ZRb4Azbg.19490.0; _gcl_au=1.1.510414895.1679760827; _rdt_uuid=1679760827535.3e8a4887-81c6-45db-9665-08004817015d; _ga_2E5M7TYQGW=GS1.1.1679760827.1.0.1679760827.0.0.0; _ga=GA1.1.1842627780.1679760828; _ga_M71C3QBXSG=GS1.1.1679760827.1.0.1679760827.60.0.0; _uetsid=05f79e90cb2811ed8d0b7d16e6e3d1ad; _uetvid=05f79340cb2811eda6192fc41f9a4f7e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: application/json
last-modified: Thu, 23 Mar 2023 13:25:46 GMT
etag: W/"641c535a-372"
x-frame-options: DENY
x-xss-protection: 1; mode=block
referrer-policy: same-origin
cache-control: public, max-age=60, immutable
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 11-13887714-13844263 pNYN RT(1679760812734 1086) q(0 0 0 -1) r(0 0) U18
X-Firefox-Spdy: h2
nova.collect.igodigital.com/c2/100005813/track_page_view?payload=%7B%22title%22%3A%22Online%20Trading%20%7C%20Trade%20with%20Exness%22%2C%22url%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22referrer%22%3A%22%22%2C%22user_info%22%3A%7B%7D%7D
52.207.41.202202 Accepted 0 B URL HTTP/2 nova.collect.igodigital.com/c2/100005813/track_page_view?payload=%7B%22title%22%3A%22Online%20Trading%20%7C%20Trade%20with%20Exness%22%2C%22url%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22referrer%22%3A%22%22%2C%22user_info%22%3A%7B%7D%7D
IP 52.207.41.202:0
GET /c2/100005813/track_page_view?payload=%7B%22title%22%3A%22Online%20Trading%20%7C%20Trade%20with%20Exness%22%2C%22url%22%3A%22https%3A%2F%2Fwww.exness.asia%2F%22%2C%22referrer%22%3A%22%22%2C%22user_info%22%3A%7B%7D%7D HTTP/1.1
Host: nova.collect.igodigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.exness.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 25 Mar 2023 16:13:34 GMT
content-type: image/gif
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-disposition: inline
content-transfer-encoding: binary
cache-control: private
set-cookie: igodigitaltc2=fe284494-cb27-11ed-a631-da33dcda6cd2; domain=.igodigital.com; path=/; expires=Fri, 25 Mar 2033 16:13:34 GMT; Secure; SameSite=None
igodigitalst_100005813=fe284a3e-cb27-11ed-a631-da33dcda6cd2; domain=.igodigital.com; path=/; expires=Sat, 25 Mar 2023 17:13:34 GMT; Secure; SameSite=None
igodigitalstdomain=39646; domain=.igodigital.com; path=/; expires=Sat, 25 Mar 2023 17:13:34 GMT; Secure; SameSite=None
x-request-id: 8498bc04-2812-4edd-ac2b-90fbc4336c75
x-runtime: 0.010418
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2