r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4809
Expires: Fri, 18 Nov 2022 00:07:34 GMT
Date: Thu, 17 Nov 2022 22:47:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2332
Cache-Control: max-age=130970
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:25 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:10:15 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6235
Expires: Fri, 18 Nov 2022 00:31:20 GMT
Date: Thu, 17 Nov 2022 22:47:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 17 Nov 2022 22:44:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 160
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: U1gPDKE/5PKWBG5suvnhHyKNokqGJ/5HNoBScZvg1lNMympizux6RDJ++8Srm4wC3x0xbmqV8cE=
x-amz-request-id: CF0HNYXQXSE8NBMQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 17 Nov 2022 22:15:19 GMT
age: 1926
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 17 Nov 2022 22:47:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 17 Nov 2022 22:44:49 GMT
cache-control: public,max-age=3600
age: 157
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1996
Cache-Control: max-age=125565
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:26 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 09:40:11 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8BDdUb6LI93PwQbwrRAKkA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yJU77wl5rXwcDFmSM2coTpwBUBQ=
67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.jp.android&ref=t5.lowtid.com&s1=6376b9eed808f23961709bea
23.235.251.114301 Moved Permanently 0 B URL HTTP/1.1 67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.jp.android&ref=t5.lowtid.com&s1=6376b9eed808f23961709bea
IP 23.235.251.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feed/?link=true&tid=67&subid=67.jp.android&ref=t5.lowtid.com&s1=6376b9eed808f23961709bea HTTP/1.1
Host: 67.us.blowingwind.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Location: https://redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.jp.android
Date: Thu, 17 Nov 2022 22:47:27 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d71175ebd9d6177b2a683008df27ef69
2b309ab024514415a306e8c228c446fa4cdc1fa2
e0d4505969f5f127b6c219bba211a55056ebe434256ca4a58eb0d85a44f3ce99
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D4505969F5F127B6C219BBA211A55056EBE434256CA4A58EB0D85A44F3CE99"
Last-Modified: Wed, 16 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12855
Expires: Fri, 18 Nov 2022 02:21:42 GMT
Date: Thu, 17 Nov 2022 22:47:27 GMT
Connection: keep-alive
redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.jp.android
198.211.113.186302 Found 224 B URL HTTP/1.1 redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.jp.android
IP 198.211.113.186:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with no line terminators
Hash 585810573a1a686b9cd3c49ef3d3e912
d5b8220a03ba07d2bee9346ae06e074f4285675c
a004b5fe2cfc5d4163625c61ce2c66699b52d0956b14bff1f18f21f71487a755
GET /click/invalid/?tid=67&subid=67.jp.android HTTP/1.1
Host: redir.tealwinds.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: 0
Location: https://t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
Vary: Accept
Content-Type: text/html; charset=utf-8
Content-Length: 224
Date: Thu, 17 Nov 2022 22:47:27 GMT
Connection: keep-alive
Keep-Alive: timeout=5
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 18 Nov 2022 00:03:02 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 18 Nov 2022 00:03:02 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 18 Nov 2022 00:03:02 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 18 Nov 2022 00:03:02 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591858fd-bcb1-4a79-bff2-51b044b4fbb0.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591858fd-bcb1-4a79-bff2-51b044b4fbb0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58e93b8944e96f1c5cd61caa7829ca96
c90e73a1a1ecf67e5e0bd374ae37d04caa3bb1c1
b38ee82e01744e77f69be21470d7a864a366a9c94c6c8dd9adf1877ad99199ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591858fd-bcb1-4a79-bff2-51b044b4fbb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8108
x-amzn-requestid: b0579a2a-5b57-40cb-9ab5-1ed1a58ca1fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MNGLUIAMFp7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4d-6aeb306b0e99303639416188;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D4wOoPonIvKX3I2cZNfRmhzJCCTTvVJ6lIttSFsG8jB2hUXQ_AO9Ig==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:04:41 GMT
age: 2567
etag: "c90e73a1a1ecf67e5e0bd374ae37d04caa3bb1c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55801be30fc7e7d24ba2418d00ce4ca2
31935f7d11269f0f4177a48d2c166e09fec1f377
05e58892cab261aca3abe7e29ff482b51f5f7e4261b8579e7b9f85487f53eeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7539
x-amzn-requestid: 96d0ad29-0b25-4e4b-93ea-da9fde83aa8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9V5E2boAMFbiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8f2-33f7f4592f8574486987e233;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r1X3PUyrso5VkyphYHqBQdYo6lmmIvTQdA_kPA5I-lds8qn9RtEIpw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
etag: "31935f7d11269f0f4177a48d2c166e09fec1f377"
content-type: image/jpeg
age: 2496
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 676b1603008690786aa36dc3113b7581
cbdc425467a5d41aba5e8e5c54354b4f03cd194a
7e5e7bf695ff31df6c97e502a44f4fa9197c6579b0c7a7c590457ea067d1cf1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8155
x-amzn-requestid: 5650af50-eb93-47d9-8322-8a2e263e12ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7vFU5IAMFYGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7e-759bbd5b5a22e07c1c181c0a;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XzJcm_AlMH4hb2urV7RORAjz7LR7NXZ2pAMEhx1foW2VJgj4mxVxJw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 2496
etag: "cbdc425467a5d41aba5e8e5c54354b4f03cd194a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c96e8dc581a03b62c5f0a7c8ac49916
9051be78c17480c8e5128836c2cda0c6b96b0261
99c330ef89dbe0ac0b957e419e85c2c7de20bb74e6437961f60779410f70ba0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14762
x-amzn-requestid: f60d1de2-407f-4e2f-bbb0-750f77d42878
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9VRGlUoAMFSqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ee-1ef9573e23c7774435cbc843;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q7BJuj9zJGgpNjNWlzye-YAQ6zJrH2_SmycSmPt3YQNCtF8bDPBM3Q==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:04:39 GMT
age: 2569
etag: "9051be78c17480c8e5128836c2cda0c6b96b0261"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 2496
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5zDWKjYmvVLCemXw5Swm2qkhw1mQtD5c07Fl7Krydo_XR5FFyHDu4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 07:15:37 GMT
age: 55911
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bfe7bbc17ab3d58f2f9dd4b433ccd071
adaa31d99c90eb8c18dcd724dd8a1a4de4a060c0
badc51ec9601f23b394411355fae622841a328a563831f1c922f3339cfeacdc5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BADC51EC9601F23B394411355FAE622841A328A563831F1C922F3339CFEACDC5"
Last-Modified: Wed, 16 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4692
Expires: Fri, 18 Nov 2022 00:05:40 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
51.161.115.163302 Found 0 B URL HTTP/1.1 t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p HTTP/1.1
Host: t2.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 17 Nov 2022 22:47:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: 1yh
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c44b21e08ec2a6eac574dfc244ed59ea
048735ed90f7670a5d087d5e9c1ac2f4805d559c
4dc7f6dbc81d59f0baaa06e1680e3c71dd074ce0b764914da101904eb2c18ec4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DC7F6DBC81D59F0BAAA06E1680E3C71DD074CE0B764914DA101904EB2C18EC4"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12120
Expires: Fri, 18 Nov 2022 02:09:28 GMT
Date: Thu, 17 Nov 2022 22:47:28 GMT
Connection: keep-alive
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p
51.83.143.92200 OK 491 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p
IP 51.83.143.92:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (537)
Hash bf6b4628f3ab314dc73962773fd8d6de
03a05b6e1774a8d3e260fcd125c2f5482f3ef49d
28220b227cedb268feacce9461c84e2448abd2cb5cc013b18bd5e59cc52e77aa
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Nov 2022 22:47:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=6376ba000e02a55dd675cfd1; expires=Sun, 20-Nov-2022 22:47:28 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p&bv=1
51.83.143.92302 Found 0 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p&bv=1
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_67p
Cookie: bt-603611c5b7eaf46891533240=6376ba000e02a55dd675cfd1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 17 Nov 2022 22:47:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 11kgq037yu
Raund: 2g2
Location: https://popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bafea73e1b539d3e8650b109d0765154
51553a7044f4c4e3446e1be7c5568808d73d8e1f
33d3fc384cdb3b69f0738a50cd785a57aa44fe0f4cc773ef478603fc6a715a23
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6389
Cache-Control: max-age=122401
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:28 GMT
Etag: "6375dc2c-116"
Expires: Sat, 19 Nov 2022 08:47:29 GMT
Last-Modified: Thu, 17 Nov 2022 07:01:00 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
pritha-ner.com/0646614100?adTagId=20111650-aa5d-11e6-a4a9-0e855f2e0669&fallbackUrl=https://popmyads.com/return/30
3.212.50.125302 0 B URL HTTP/1.1 pritha-ner.com/0646614100?adTagId=20111650-aa5d-11e6-a4a9-0e855f2e0669&fallbackUrl=https://popmyads.com/return/30
IP 3.212.50.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0646614100?adTagId=20111650-aa5d-11e6-a4a9-0e855f2e0669&fallbackUrl=https://popmyads.com/return/30 HTTP/1.1
Host: pritha-ner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Thu, 17 Nov 2022 22:47:28 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Location: https://go.money616.xyz/X15?sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
Server: UETLtVTH
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 44119d877a4f4ed09facf5dcc0d8815b
a49c6ff742a78c909a8453e0145380d7f357c441
fccaf4eda8f56fb2fbb4e1d8d72603725017d954f7762921d9c88d168082b7a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCCAF4EDA8F56FB2FBB4E1D8D72603725017D954F7762921D9C88D168082B7A6"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4942
Expires: Fri, 18 Nov 2022 00:09:51 GMT
Date: Thu, 17 Nov 2022 22:47:29 GMT
Connection: keep-alive
go.money616.xyz/X15?sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
18.184.197.212302 Found 0 B URL HTTP/1.1 go.money616.xyz/X15?sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
IP 18.184.197.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /X15?sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv HTTP/1.1
Host: go.money616.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
connection: close
x-content-type-options: nosniff
content-type: text/html; charset=utf-8
x-powered-by: Short.io link shortener
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
location: https://adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
content-length: 0
Date: Thu, 17 Nov 2022 22:47:29 GMT
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1f308bbeb1ebd3202fab0b5dea49620f
f472a5ce78525340ef4936f877b671c2dda230d4
8b98394bc0f82a2861776939c421270537a6ebf121b56da96f60c1d877b1a109
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 17 Nov 2022 22:47:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 10:25:03 GMT
Expires: Wed, 23 Nov 2022 10:25:02 GMT
Etag: "f472a5ce78525340ef4936f877b671c2dda230d4"
Cache-Control: max-age=473252,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76bc0227ccc2b4f9-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1f308bbeb1ebd3202fab0b5dea49620f
f472a5ce78525340ef4936f877b671c2dda230d4
8b98394bc0f82a2861776939c421270537a6ebf121b56da96f60c1d877b1a109
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 17 Nov 2022 22:47:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 10:25:03 GMT
Expires: Wed, 23 Nov 2022 10:25:02 GMT
Etag: "f472a5ce78525340ef4936f877b671c2dda230d4"
Cache-Control: max-age=473252,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76bc02292e61b4f9-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ad5587c7e8273938e0d5024523939e69
540dc7a1f247937bf5acd1b256ee0a3a2e566746
7edff1414ec1ead906971499ffe7e1adc8bf8a44bbf269603ac2332599f8464f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4809
Cache-Control: max-age=103180
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:29 GMT
Etag: "63759744-117"
Expires: Sat, 19 Nov 2022 03:27:09 GMT
Last-Modified: Thu, 17 Nov 2022 02:07:00 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ad5587c7e8273938e0d5024523939e69
540dc7a1f247937bf5acd1b256ee0a3a2e566746
7edff1414ec1ead906971499ffe7e1adc8bf8a44bbf269603ac2332599f8464f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4810
Cache-Control: max-age=103180
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:30 GMT
Etag: "63759744-117"
Expires: Sat, 19 Nov 2022 03:27:10 GMT
Last-Modified: Thu, 17 Nov 2022 02:07:00 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d6ec8dee2a1996c177b49398a45a4267
24de47e193eeba292a97cec6bca644c8188083b5
d371e3106f15dc34c50c96383c339653902a797faeeb4685c51eaaa506d59003
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
IP 142.250.74.168:0
Hash 9af34a467a83bd06a4d8c9a1d69d1a08
8b481ebe31c89182908d904fb10987ac55dd36f0
604f41fa5a4b28c3ee2d0b92c21a07cf58c86636c2e1c99d17172c8d4f15c939
GET /gtag/js?id=G-E9QBCJNBNS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 17 Nov 2022 22:47:30 GMT
expires: Thu, 17 Nov 2022 22:47:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75988
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
med.etoro.com/B15344_A89099_TClick_S166872524910000TNOTV415326358024V41.aspx
23.32.86.79301 Moved Permanently 241 B URL HTTP/1.1 med.etoro.com/B15344_A89099_TClick_S166872524910000TNOTV415326358024V41.aspx
IP 23.32.86.79:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 0bc5f64ce07b7b3ba3fed9ca0e83cfec
b348f158dbb211a0db81bffe624de6ed510719c9
759ab0791fd651c174c986aadf3f0a5b3174638dda32af67b6cebfa0f43cc05d
GET /B15344_A89099_TClick_S166872524910000TNOTV415326358024V41.aspx HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Content-Length: 241
Location: http://med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
X-Robots-Tag: noindex
Expires: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 17 Nov 2022 22:47:30 GMT
Connection: keep-alive
med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
23.32.86.79301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
IP 23.32.86.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41 HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
Expires: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 17 Nov 2022 22:47:30 GMT
Connection: keep-alive
med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
23.32.86.79301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41
IP 23.32.86.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aw.aspx?B=15344&A=89099&Task=Click&SubAffiliateID=166872524910000TNOTV415326358024V41 HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Content-Length: 0
Location: http://pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
P3P: CP=`NOI DSP COR NID ADMa OPTa OUR NOR`
X-Robots-Tag: noindex
Expires: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 17 Nov 2022 22:47:30 GMT
Connection: keep-alive
Set-Cookie: ASP.NET_SessionId=vj30ghiuzb3aq2bmmhjbb0hp; path=/; HttpOnly
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoro.com; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoro.com.cn; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etorocn.com.cn; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoroasia-securities.com; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoroasia.cn; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoroasia.com; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoroasia.com.cn; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; domain=.etoroasia-Investing.com; expires=Mon, 16-Jan-2023 00:00:00 GMT; path=/
RequestURL=URL=http://med.etoro.com/aw.aspx?b=15344&a=89099&task=click&subaffiliateid=166872524910000tnotv415326358024v41; domain=.etoro.com; expires=Sat, 17-Dec-2022 00:00:00 GMT; path=/
pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
104.18.35.149301 Moved Permanently 0 B URL HTTP/1.1 pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
IP 104.18.35.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term= HTTP/1.1
Host: pages.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 17 Nov 2022 22:47:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 17 Nov 2022 23:47:30 GMT
Location: https://pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Set-Cookie: __cf_bm=sbU8a1fywk5R0u9vFRw.SJrwdBkuP.d882RTJnK_.4Y-1668725250-0-AUKHJwnb4W6NxvniimMbSW0uAad06s4FS5lwmTWxN65caxe2Cf2PbzWAdFe4c1Q8mxB6qDZPEYk87ekWHmk+mXI9a/bWkg3uEm0vRZS4reJt; path=/; expires=Thu, 17-Nov-22 23:17:30 GMT; domain=.etoro.com; HttpOnly; SameSite=None
__cfruid=2205a57e5134d6ff05cf0086a2a3ac522d1c8ced-1668725250; path=/; domain=.etoro.com; HttpOnly
Server: cloudflare
CF-RAY: 76bc022f4ccdb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
104.16.148.64200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (2829)
Hash b9eadb6d05b9bafe419aa99f68097df2
d850dc819264475c6d1cbe6e8419a1016a659db2
a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:30 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 74003
expires: Fri, 18 Nov 2022 22:47:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc02316bf40afe-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 1cdc786dd1264609f9834f4aba53e2ef
fff15e833ab27c356e7723dce3441e194b6350bf
70768bac474def6b0ed3e517083dd9c2f1ae3f0fe714ea550c406ce89906adc9
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:30 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: HNx4bdEmRgn5g09KulPi7w==
last-modified: Wed, 16 Nov 2022 03:30:08 GMT
etag: 0x8DAC782DC96F3AF
x-ms-request-id: a6a8bb9a-001e-017b-7619-faf503000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 75492
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc02317bfc0afe-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d6ec8dee2a1996c177b49398a45a4267
24de47e193eeba292a97cec6bca644c8188083b5
d371e3106f15dc34c50c96383c339653902a797faeeb4685c51eaaa506d59003
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-3.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-3.png
IP 23.38.201.117:0
File type PNG image data, 322 x 432, 8-bit colormap, non-interlaced\012- data
Hash b7322c639dcf276550e310727cf76893
136b5f1a82788708f04b74a30fcefdadaff00e43
6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
GET /cache1/hp/v_251/images/instruments/t3-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XEodyMFkszRQ5oYN+PpkAr+vASOSIH7zSKlsN8lfURUN6ABr+ZqgmNOE5qIwIY96tJYOZrfabLg=
x-amz-request-id: 2YK9ATNWNWNS9PED
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "b7322c639dcf276550e310727cf76893"
x-amz-meta-sha256: 6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: WJKqYyPB3Pmwd_GBGVjxlhTSdkRKFxaP
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11012
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-3.png
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-3.png
IP 23.38.201.117:0
File type PNG image data, 450 x 392, 8-bit colormap, non-interlaced\012- data
Hash f61c9d2ed729320b71af181ff331cb79
182f5c37accdde48b36e7803de6251cc92319b86
11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
GET /cache1/hp/v_251/images/instruments/t1-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QROrT5IF56Csa721o8jMuaOPS7ZCnagTgFUTFVB4b3ma4ingHPumJlGoiqjQ2jXOXRPzYUzUSK0=
x-amz-request-id: 2YKAFMAN6R4H8ZRS
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "f61c9d2ed729320b71af181ff331cb79"
x-amz-meta-sha256: 11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jthOX30XbKwmR1pfLXfT3rWQNPkRpf8k
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 31786
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-4.png
23.38.201.117200 OK 43 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-4.png
IP 23.38.201.117:0
File type PNG image data, 660 x 684, 8-bit colormap, non-interlaced\012- data
Hash 43f62ee21492814c91e306a57be05ee7
77e0ddcffc72c83f9c6690f521a4594d0eacdf7a
55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
GET /cache1/hp/v_251/images/instruments/t3-4.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LkgMKfO3s4EjOHrBvcE0TM7FDH1RkEHtU3sdqN/lht+axSAI3K/FiHE5GLkMRUQBkiJVXgLr6TI=
x-amz-request-id: 2YK5PBRJPMGA132W
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "43f62ee21492814c91e306a57be05ee7"
x-amz-meta-sha256: 55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: ugasmCPfC.RaPCzskx2l5vg5R_w_.WeM
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 42876
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-1.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-1.png
IP 23.38.201.117:0
File type PNG image data, 744 x 504, 8-bit colormap, non-interlaced\012- data
Hash 5a95a095169c27431449bf549b99993d
91a11cffc857dcaa2b38fa901423b227870ac1e4
681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
GET /cache1/hp/v_251/images/instruments/t2-1.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: hMu+RaKQe3yqnZbwVdkRx9r+pXk+MVwAQEr20O9RXo8r4b+cd3EwZII3DcdkNZ+OCsf+wrR1WT8=
x-amz-request-id: 2YKDC81WHKSPXXSX
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "5a95a095169c27431449bf549b99993d"
x-amz-meta-sha256: 681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jrq6j8C8VCTZGrdVjEchvBequPG_ul7G
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11234
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2.png
IP 23.38.201.117:0
File type PNG image data, 668 x 938, 8-bit colormap, non-interlaced\012- data
Hash beb13238cf465f668c413a022f5633c8
31760dac17b8e58942c79708a4616c3a1df4b233
88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
GET /cache1/hp/v_251/images/instruments/t2-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: R2ut6Qv8hamrHIogLlOCe9ghA9JoB95G/cU3i/5CWzlX5mcjSEtsXL9BacX0Q8Ud+uhomxtNUyk=
x-amz-request-id: 2YKEBDX35CNMD7Q7
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "beb13238cf465f668c413a022f5633c8"
x-amz-meta-sha256: 88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: KxGRrkA9bsTgUQt._P0LFt1nLEkc81PQ
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21388
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2a.png
23.38.201.117200 OK 1.5 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2-2a.png
IP 23.38.201.117:0
File type PNG image data, 136 x 132, 8-bit colormap, non-interlaced\012- data
Hash 6bedb1b3afc69447f7ea0c00993b53a8
1281f1fd5df23a9a19bd8573619007d04f6047ac
55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
GET /cache1/hp/v_251/images/instruments/t2-2a.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GwjkNkVX6XNgDy/EqhZYqwuyAZXoWmIihRIgL8pVQAZ+cdLf2B1mRGgtE40Efk8PvJC/9bDdPjc=
x-amz-request-id: 2YK44W05FGBKPXY9
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "6bedb1b3afc69447f7ea0c00993b53a8"
x-amz-meta-sha256: 55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 5AD0vLlUA3qdeBajLOCFJX7KhZ97TVn1
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1473
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3-2.png
IP 23.38.201.117:0
File type PNG image data, 436 x 390, 8-bit colormap, non-interlaced\012- data
Hash dad8f4f5e1f7c6afaa7a1d02bbad4aae
7c47738ec815ba441c70d30967035c1a2c3a34ff
82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
GET /cache1/hp/v_251/images/instruments/t3-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Xp6JEjwmHzL3wkcP+paCQ2zOQgffVOetGc182x6PmN5nMEszffZ1BeQT3wqdVJkuYEmAUN5tlu8=
x-amz-request-id: 2YK4DYHHX57V0RMV
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:46 GMT
etag: "dad8f4f5e1f7c6afaa7a1d02bbad4aae"
x-amz-meta-sha256: 82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: g0y7XfXoDuuy0HKXlcn4alvh_oHyuxQN
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21261
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/assets/css/onetrust.css
23.38.201.117200 OK 2.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/assets/css/onetrust.css
IP 23.38.201.117:0
File type ASCII text, with very long lines (885)
Hash b3f403de6d79b34f32dba5e4effaabc2
7b436b6060e88daf19f12bd27cbe2533d25a2343
3ec0cde05873dde93c16f4b4f3b7ca7e236ba4e82ab595ee8f13b959f5b2813a
GET /cache1/assets/css/onetrust.css HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7vqiIPn64ptqVNwIM1fvJGjbv11IUdsOT6JKR8Cyxsr81DT/4uax9s7iGzI7fTeV0SwX20GmqJE=
x-amz-request-id: Z3V5BX28EG5962WS
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 12:30:17 GMT
etag: "66e8b2c112ebb5bb9b4fc326d3d5f87b"
x-amz-meta-sha256: 55c8a3b763077bf16466a3a9af5b7e5b2baba7d345cd90b50403058a633bda48
x-amz-meta-s3b-last-modified: 20220616T122823Z
x-amz-version-id: Qcu9.b5PJ70a2SNFK2gJjtsbcFrk1Lur
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
content-length: 2655
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1bg.jpg
23.38.201.117200 OK 72 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1934x1230, components 3\012- data
Hash 2b8c66295f644aad1bbd97bffcf8f910
f34b342b50c43263d6c130286958086addefd3d6
923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
GET /cache1/hp/v_251/images/instruments/t1bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KhJceQ7IU70yqIwniW3qgdmlttrjisBNVEUw3JuReWCAzi35WTZaxFMH0gZCYg3pR4DiAEfHemU=
x-amz-request-id: 6ZC4NYMTFPVT44F6
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "2b8c66295f644aad1bbd97bffcf8f910"
x-amz-meta-sha256: 923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: frfwFDrMQ.NJBLP5Lhg1Dkqab3LUF7MN
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 72188
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2bg.jpg
23.38.201.117200 OK 67 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t2bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 19c57357b906758af6469a6b2a2c8846
e360a5922a6d44ca6066ff5dff01ef2440fd7368
358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
GET /cache1/hp/v_251/images/instruments/t2bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Psn0VwpesA1R81AfCGfLxY85OzxxvnBO+YWZraJZu+n+0XMys3nQpF3iqWA23Rj1mcUCo8kehrA=
x-amz-request-id: 2YKDJXFWD0D9JFD3
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:45 GMT
etag: "19c57357b906758af6469a6b2a2c8846"
x-amz-meta-sha256: 358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: D_7Zfxto4dHrllws13BA_N9AssRyFt6H
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 66908
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
35.190.38.40200 OK 46 kB URL HTTP/2 adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv
IP 35.190.38.40:0
Hash 0ba978dd285df2fa5d60a55fbf8e67d8
7302b0e825acd2fbec36adcbe7b6155d25743e4a
64d86bcd5569627fe616b7ea761597bbeb77372b98c90c366a76177cb7879ba0
GET /jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 17 Nov 2022 22:47:29 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/cover-desktop-half.jpg
23.38.201.117200 OK 94 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/cover-desktop-half.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x2160, components 3\012- data
Hash b05c8e47e71ba8a0fe73a0da54f010ef
f26455efe60bcf1e74e693574e482b0a952e3de9
2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
GET /cache1/hp/v_251/images/hp-2022/cover-desktop-half.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Cn07zuwQ5J8zvN5nUkjh5jmrL50BI+Dx0iNTz250yz7wusLN1XlJ4ahLshc21YC2Zaz20Ej12gA=
x-amz-request-id: 6ZC28GFAAYZE1JEJ
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:35 GMT
etag: "b05c8e47e71ba8a0fe73a0da54f010ef"
x-amz-meta-sha256: 2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
x-amz-meta-s3b-last-modified: 20220920T161111Z
x-amz-version-id: IAgBqCEOaVAgre8wMOkO2KyA3m_c0Zd7
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 94463
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3bg.jpg
23.38.201.117200 OK 59 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t3bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 6d94c8cb40dfa33fccc8b4800f2c7e0e
745c0d98d4cde90d8717feadfa120e0cc20dab1f
a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
GET /cache1/hp/v_251/images/instruments/t3bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: botAu4agTxbcXhP4nhQiOHTBRWpfhYfqkprm8qvkG29yITVr9udN4HcOdhmxrnBhN3rxC6CLVpQ=
x-amz-request-id: 2YKDJSAHPFCWFV8W
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:47 GMT
etag: "6d94c8cb40dfa33fccc8b4800f2c7e0e"
x-amz-meta-sha256: a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: jEbhgN1B3_GUVHLFa3WG2pKKhG.rwb6h
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 59017
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-2.png
23.38.201.117200 OK 115 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/instruments/t1-2.png
IP 23.38.201.117:0
File type PNG image data, 588 x 638, 8-bit colormap, non-interlaced\012- data
Size 115 kB (115422 bytes)
Hash a0edff04cdbe03fe84f35b2368beedd9
6231c9d9265502517533892d8a0f42d5790c0310
51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
GET /cache1/hp/v_251/images/instruments/t1-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rvPmF+agKi4hdU26suM2GppVDMYciaGjjIBua3iH3JbiL8uXDMVgMZbckXcXkctizXXcmNy5pFM=
x-amz-request-id: 6ZC108NB4HCV794X
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:44 GMT
etag: "a0edff04cdbe03fe84f35b2368beedd9"
x-amz-meta-sha256: 51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: UNjk1Z_s1eAFS_FFYKC8KW9QEOLe3Xgu
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115422
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
104.16.148.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Hash 6439835da3e85cb6917ac06b2dab2b37
b65ad002a7c48559e9124256295c1c688e8f3084
bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:30 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 73153
expires: Fri, 18 Nov 2022 22:47:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc02323cbc0afe-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/logger/logger.js
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/others/logger/logger.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (5055), with no line terminators
Hash f620bec033fe844135374191b331937d
ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
GET /others/logger/logger.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 17 Nov 2022 22:52:30 GMT
date: Thu, 17 Nov 2022 22:47:30 GMT
content-length: 2285
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeb90&_p=834431200&cid=175865481.1668725249&ul=en-us&sr=1280x1024&_s=1&sid=1668725248&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F30%2Findex.html%3Faction%3D166872524910000TNOTV415326358024V41&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeb90&_p=834431200&cid=175865481.1668725249&ul=en-us&sr=1280x1024&_s=1&sid=1668725248&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F30%2Findex.html%3Faction%3D166872524910000TNOTV415326358024V41&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeb90&_p=834431200&cid=175865481.1668725249&ul=en-us&sr=1280x1024&_s=1&sid=1668725248&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F30%2Findex.html%3Faction%3D166872524910000TNOTV415326358024V41&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Thu, 17 Nov 2022 22:47:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash daa3ff4a21216e7cbf67269749d1f8bc
18c35816741418456056f6fa3e2db6c8c159377a
806ab589aaaca6353a04770d4b7ef66e3e1563a460a46c9493a5bd5bf6e34b9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4236
Cache-Control: max-age=167753
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:30 GMT
Etag: "637695bf-118"
Expires: Sat, 19 Nov 2022 21:23:23 GMT
Last-Modified: Thu, 17 Nov 2022 20:12:47 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 280
cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
104.17.224.78200 OK 0 B URL HTTP/2 cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
IP 104.17.224.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1
Host: cdn.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:31 GMT
content-type: text/css
content-length: 0
x-amz-id-2: 0YZ0H80/30MgBTG2ijPKvwK2o4c7bg1oKeBH6NC/Vct0AWcwyu8ktTQ8I/j+udXxbuBe4+WEVrY=
x-amz-request-id: K2GEEGSX18GPYAHC
last-modified: Thu, 20 Oct 2022 08:49:27 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=300
cf-cache-status: HIT
age: 50205
expires: Thu, 17 Nov 2022 22:52:31 GMT
accept-ranges: bytes
set-cookie: __cf_bm=ql.nyZhKblGeY9ri2VS_WHp41hK.khgQymvUUrSdxiY-1668725251-0-AfO3ZcDC/jCG3VAxB0Iymm4Nc59e+Ax4/fbBnW4rXmO75Bo7BjXGW9kYIP8UUV+QQkBS1cYn6rYSEn0Qg6+7jTU=; path=/; expires=Thu, 17-Nov-22 23:17:31 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76bc0232b865b506-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5facb6ee0e6777d94f93489d24cd703
550af3e8f8379f9736e5cd9cbb16ff29fc42c391
e318b2d093d2c696d974e357ca4906797f310ddc23c666b142dac5eb67b4be4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1400
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:31 GMT
Last-Modified: Thu, 17 Nov 2022 22:24:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Hash 4a61fe67108ddbb01a2ceaf3687ba30e
3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/header/close-grey.svg
23.38.201.117200 OK 658 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/header/close-grey.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 349bd042837d71f4ff6c0a747445ea2d
b687595dfa281d5d5ab769e2dc2620f324254b77
b4269bdcc584dcb3129fedf16cfcafdc6efe3590eb119a35936d3686755aca00
GET /cache1/hp/v_251/images/header/close-grey.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: S3rY1NcYcfKDly0ABfJlpfNMUULui2I3hw+ieGXiFUWBTduudpLg32kKb0DqgWmvjzySlQvSl2A=
x-amz-request-id: 2YK4W15MG76E23GS
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:30 GMT
etag: "349bd042837d71f4ff6c0a747445ea2d"
x-amz-meta-sha256: b4269bdcc584dcb3129fedf16cfcafdc6efe3590eb119a35936d3686755aca00
x-amz-meta-s3b-last-modified: 20221113T175717Z
x-amz-version-id: RuhX3EnY.IReQO9w7bO_.diRhjEMwYTo
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 658
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/flags-hd2022.png
23.38.201.117200 OK 17 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/flags-hd2022.png
IP 23.38.201.117:0
File type PNG image data, 830 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d14115558936d84e16ec7efd2f4f45
a6268986699c86e577ca5589a0fcf2880661f7ea
68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
GET /cache1/hp/v_251/images/flags-hd2022.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ECHA4xYTq7DaDAA/eyc0DDJs4hJ9s/q7XZSNxUBs4iGfjzfkyNaiYGNJvrOy3Q9BDic3Ng+cxwM=
x-amz-request-id: 2YK7QTDS9BR0D91B
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:28 GMT
etag: "69d14115558936d84e16ec7efd2f4f45"
x-amz-meta-sha256: 68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
x-amz-meta-s3b-last-modified: 20220920T150800Z
x-amz-version-id: 9vizyBZLY_7vmO2dUMYwjK63AIZewb5K
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 16703
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Hash 1f385d1ea2e1c06cda506bafc17a4a94
0dc0ebf0502018976383091908379054b5a3cfed
e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.26.85200 OK 12 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.26.85:0
Hash eb282b1a3d99ef4fac1f5a1b554f7e0b
1fc5fe6d81f12a5ed525cc70ab3fab2c4bed3f67
0a24019fe8f1504e6370cf3d9e85932d977b77c2db5bcf99a4c12a8f39dae8b6
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:31 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76bc0232ee99b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash e20f6e1c0681c07f69d37c428c0684d3
4aa36ecd12f2e7d3592807a0a3879914252faeb5
c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31844, version 1.0\012- data
Hash 9d7f82d9510b57b2d00f328d87ef3869
2a031c8ae51e62d8dc30fa0bb47f57a3695224c1
c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
GET /cache1/fonts/madera2/Madera-Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: d6poWwwwj9abPq/ES4oNvQTY1I4y2hMv1EdVnTf07kpNv7a2N1tn1ySx9pMV8KWPcG6wwi1unZI=
x-amz-request-id: K8KWP566ERFJBVE1
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:29 GMT
etag: "9d7f82d9510b57b2d00f328d87ef3869"
x-amz-meta-sha256: c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
x-amz-meta-s3b-last-modified: 20220203T192736Z
x-amz-version-id: VMc3owpvYk5nHUjZ.xX4Wq.u2RPawBMa
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31844
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash da146a61ffac0224202bbdb14446a60d
dc4f7682100153f6b19b085a4e4f96ef34f18e39
8e000d9186b79b80cadaea2c9c725577d94388a7c5f27e9de44e11b8fe40fe2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1175
Cache-Control: max-age=151375
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:31 GMT
Etag: "637661bb-2d7"
Expires: Sat, 19 Nov 2022 16:50:26 GMT
Last-Modified: Thu, 17 Nov 2022 16:30:51 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 727
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Hash db85a0ddc6f6973df4bc98a1b2ed9d65
c6bba41edc8501b76aed9bff58597edef1c2502f
26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/waypoints.min.js
23.38.201.117200 OK 2.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/waypoints.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (8887), with no line terminators
Hash 1d2137aea2d4a9fca68a7b135e2cb9f3
e97ca29d385352fc286f1711bbdc45584161a316
ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
GET /cache1/hp/v_251/js/waypoints.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4jyoriNuOQDluhVmeKbAdwI7b1knyfI40Zc6DIVLhVc2DObXGGKkk4xXasMfKp7N3wShJB0CjrI=
x-amz-request-id: SK3F98EM1CPRMZRA
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:16 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: gMkoheIrh.j.zL8_U5CPh02ZuY2VtYGx
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-length: 2635
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/slick.min.js
23.38.201.117200 OK 9.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/slick.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 17232e2fe3e81d95e6f1cb7c4d5b9e57
510e1569ab0187ef5712a7630d673536e8c519ac
4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
GET /cache1/hp/v_251/js/slick.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 0N03trrDHydqpQf5BwXcasnLyb6OZrTPIUgi4sbA1qv0fhHe0Rekn71pp+fVw2w/KGheWhsFAh0=
x-amz-request-id: SK38GK6Q9A8ANX7E
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:15 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: _uLeGHTadqNo6x3uMpwMlci.fzdUG0sr
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-length: 9568
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/jquery-3.5.1.min.js
23.38.201.117200 OK 31 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/jquery-3.5.1.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (65451)
Hash e96fc85ce0a9070920b87b1072dd9e1d
afd9871c95caf6a26ae56e8c661789d00c510162
43e3ac1190912814c4b67ca3512c14745d1b41ce4740d3df73ead62561ca31dd
GET /cache1/hp/v_251/js/jquery-3.5.1.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: I1OwF7TCl6uJJX4PxLDEgsPpyDxD8+9AxQHjRw8bmqkTilDOPjzTvVSo3ELQYeVWPUEG7VxEwhs=
x-amz-request-id: SK30ZSEXQFQ57QAC
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:13 GMT
etag: "dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-meta-sha256: f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
x-amz-meta-s3b-last-modified: 20210919T132249Z
x-amz-version-id: VPuS8T0KcknbdFULoS_fgFdaFk3vHm2H
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-length: 30950
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/favicon/apple-touch-icon.png
23.38.201.117200 OK 18 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/favicon/apple-touch-icon.png
IP 23.38.201.117:0
Hash 4f00b93b2ac05c5421bc9f923476b83d
0fcb2fe976c059f88c890209b347abb9519a9e8a
e323fc76ab2556dbfefe6d4ab3ab4fa2ca0a2027c78de6dc93b4bbdb8fddd798
GET /cache1/hp/v_251/images/favicon/apple-touch-icon.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 1LIK5gOOvG9n+F+EmXPkI/nHeLUUa4xwC3R20b3TyFWhvyhu5P6MksrOwVM7lEuDAdDpaQH7HQE=
x-amz-request-id: R7GEFYA8218R9CFF
x-amz-replication-status: COMPLETED
last-modified: Tue, 15 Nov 2022 08:20:19 GMT
etag: "f89c4f2f3fb702a34b20d6c4f9610547"
x-amz-meta-sha256: c015dcd22c5fc66ef26e0ec9a850c8a73f86801c5683aee6b4e412cb512d8394
x-amz-meta-s3b-last-modified: 20221114T161528Z
x-amz-version-id: djO778uFRUtYp0ME6wtwadxH9PMw8852
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4395
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/favicon/favicon-16x16.png
23.38.201.117200 OK 50 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/favicon/favicon-16x16.png
IP 23.38.201.117:0
Hash b837cbfb4dca9d3c969323d794043c09
ae5d52286d31d58cb34354eb19ea08be15cbf35b
ce1d9a060ed22b71bfdfba436f30c30bf445d982a1590b7ee6e0e1cdd4f383fc
GET /cache1/hp/v_251/images/favicon/favicon-16x16.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: PaOV482KFfQSI7lg7FM5ki74Qy9CkRPnHCw4lUJxgWHn/OdGskfK8kITJstQ6GcYgcIEs14Tr08=
x-amz-request-id: KZ9YTPWEVT219QTM
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:27 GMT
etag: "6f73b13c53883dda26ced7b25bdf69ef"
x-amz-meta-sha256: 4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
x-amz-meta-s3b-last-modified: 20221113T175717Z
x-amz-version-id: VMSHnDqqTbusaUTJlj0ya06esWr6szbM
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1020
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
138.128.247.123200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 138.128.247.123:0
File type Unicode text, UTF-8 text, with very long lines (61000), with no line terminators
Size 142 kB (142347 bytes)
Hash 09e8b17fe8fb4fd2f6bd3e814adeb976
05f09e2001c9bfc7bd0ada6831b4edaeb1fc2f08
fd0952431ab51c8c8a234b8df7917f7b0bba2a67c06e9fa27697ce7b476fb571
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 18 Nov 2022 22:47:31 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 18:06:07 GMT
etag: "6aab4-6361600f-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142347
date: Thu, 17 Nov 2022 22:47:31 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
23.38.201.117200 OK 8.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
IP 23.38.201.117:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (58123)
Hash c0615779640b68ebe19798fa6b47c73c
553486b8b4a7e7700bed881de95de7ffd2014efd
675dfe45bbda6e78ded072f97b82155a0ad754724358b27b21669dd71b44cb2d
GET /cache1/hp/v_251/css/style-newhp.min.css?v=1668377940 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 8ZzPDTokviim5kRNM8xjyUHs6lkIA5WfLtu3r4BUUQvaUCwhe+s0zs6XH54EiLUpA1IeRKAdxqM=
x-amz-request-id: SDRCD2TD8VK4P920
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 14:59:43 GMT
etag: "e8d678f657ee29f94e89efef54641ae2"
x-amz-meta-sha256: 4b10fc5a5312440d7071fb98fa7b2ffba1e6ec547a14569fcc99f8d66f8198d3
x-amz-meta-s3b-last-modified: 20221113T220201Z
x-amz-version-id: .0a_71aUcIbW3l8h.gdGf2bpVymaDHZN
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-length: 8225
X-Firefox-Spdy: h2
script.hotjar.com/modules.55241fd65a1af5a1837b.js
18.165.227.27200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.55241fd65a1af5a1837b.js
IP 18.165.227.27:0
File type ASCII text, with no line terminators
Hash 39de187da647ae88fb08950ed4589fc8
1b9fa3d6473d82eebb61646dd73b9f1bd32fabfd
2d92c2af512a7a5b13e6bf646c5327d8cd52536d830344acb1dbe89782a29c29
GET /modules.55241fd65a1af5a1837b.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68617
date: Thu, 17 Nov 2022 11:06:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5f82b1a8e62b6a241154cb066c4d1ad8"
last-modified: Thu, 17 Nov 2022 11:05:52 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 57b0dc7306dda022079bc29562d534f2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P5
x-amz-cf-id: G5v0IJndP-QnQwC3Tl9c87jyPTH26HUHRn0k4wnt0l9FMw0Tj9_0vQ==
age: 42084
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 39 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
File type gzip compressed data, from Unix\012- data
Hash c8d3568eb158839d20108cd7ab0fb2b0
3ff6011fab0565226fc48fecd7e4ffb7d625a71c
2bb23aabdd05c24f18be856d3ea5f681b411c49ef81d7ecfda3d775ee2e42221
GET /cache1/hp/v_251/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2588672-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: vBH3jo+erAeJiZFMd1nETDoTw0Edf331OidK23kSmSWmgRziZi1haHR2PWWxwqg8BRVOd9UDWMw=
x-amz-request-id: SDRC2J7D94HH8KFH
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:19 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: RohbqVWM_oLxAjowCY3K2nqiEZRtSQFx
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-range: bytes 2588672-2625182/2625183
content-length: 36511
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 2.9 MB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 2.9 MB (2935398 bytes)
Hash dac9307a834cf7e7a53ce666185025d0
ccb3305d6fd873df7502a9a883f35854e9ff45d2
1e30de0dd202cdbe1c9784362bf5bf30493f2e9f3f5453c455c5d9b561a7e04e
GET /cache1/hp/v_251/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: vBH3jo+erAeJiZFMd1nETDoTw0Edf331OidK23kSmSWmgRziZi1haHR2PWWxwqg8BRVOd9UDWMw=
x-amz-request-id: SDRC2J7D94HH8KFH
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:19 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: RohbqVWM_oLxAjowCY3K2nqiEZRtSQFx
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
content-range: bytes 0-2625182/2625183
content-length: 2625183
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/social-icon.svg
23.38.201.117200 OK 5.1 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/social-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2125)
Hash 750fadde7ed0d8a59cb37992f69df5b7
c59d2044108d649ce3c10e1ae1084f20eaa7b6b4
aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
GET /cache1/hp/v_251/images/hp-2022/social-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: U2YJvYYmfjRWAnjkpSa2gibpMBuoXlY3bEC/xNQYz1BZRE5bO8T0rePjUaHDiN7B+Tigthxh8jE=
x-amz-request-id: SDREZ6813RYTR77N
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "750fadde7ed0d8a59cb37992f69df5b7"
x-amz-meta-sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: UvvD6pK_YXCErxSNHtsKxJTQ2ENyriuv
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 5136
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reliability-icon.svg
23.38.201.117200 OK 7.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reliability-icon.svg
IP 23.38.201.117:0
Hash f07033a1b3ed121fdcf923333e868622
51e67768a8bad7e90888b59f52f1e38fbb4226f0
83dea15b612931f6eafeb2b94e671557ffa3cbd3d246e2dae63a21793edd7c27
GET /cache1/hp/v_251/images/hp-2022/reliability-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ww2q2WsRGOqRLmFYtj0DCnxQJf+XjFeaL/x/44GVJS+HnVR77o7heK367Ucg7DjEorFU7bGWxiE=
x-amz-request-id: SDRBNGK2P8F9ZDG2
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: O3Bx6huNLuja5SMYX1F8OmXJ91mpt5r5
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reputation-icon.svg
23.38.201.117200 OK 3.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/reputation-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Hash 7dc0a2667b5de60ff9a96c6ebcca9a7b
cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
GET /cache1/hp/v_251/images/hp-2022/reputation-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KKJEsoY61ZqiohyWLYIgzka2ckbaHCvhxSa1oPXvoW4eRvObiongSge/4nV0pZ5dqvxdvmoluno=
x-amz-request-id: SDR874QSW89S0SPG
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:40 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: e.z8pwD4b5XogKGwrwZLOkb8PE6gqTLi
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/globe-icon.svg
23.38.201.117200 OK 3.4 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/images/hp-2022/globe-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Hash d8016306372e33ba7354032b4de316ac
7caeb070e9f95ab00ca267ad95c37530d3be361e
3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
GET /cache1/hp/v_251/images/hp-2022/globe-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_251/css/style-newhp.min.css?v=1668377940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xznfG9Yk5frcJNMgv80Bcue9zrRUPFL7HrZJ/kY0nhAbIHm9dxAoSAllSAfW+/0ySQtZWF9JEZ8=
x-amz-request-id: SDR5D2SSRGXGG7JH
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:00:36 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: 9fqiF5HDVyZixrJsoA8dh7T5UeDgkTE5
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
IP 23.38.201.117:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socials \012- data
Hash 379e2da7fbcf7192af131dab8664fa44
191a7c64f76a91ab3ac7418ef12e16155ffe916b
8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
GET /cache1/fonts/socials/socials.ttf?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: VqG8Xoz+PNUpc5ek0EHqjuCErGzCqKx3w2Mb/U3IRKb02qkQEhEC1dsBPpa357J3lamLhU00/dI=
x-amz-request-id: ABP0NYTQMK8XRN5V
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "379e2da7fbcf7192af131dab8664fa44"
x-amz-meta-sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: 64DCSoh81dgHS5BU7pf3T55ups5kO3ge
accept-ranges: bytes
content-type: application/x-font-ttf
server: AmazonS3
content-length: 2232
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
IP 23.38.201.117:0
File type Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Hash b63c50623057857a66071527d3d19e34
60a97e3734cf76a48f1605076590257bfd370f5e
1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:32 GMT
date: Thu, 17 Nov 2022 22:47:32 GMT
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.209.212200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.209.212:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 572
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:32 GMT
content-length: 0
server: Kestrel
access-control-allow-origin: https://www.etoro.com
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin, Origin
request-context: appId=cid-v1:fd70748c-8efd-4b7f-a0f0-36ea0c443ced
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.209.212200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.209.212:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 663
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:32 GMT
content-length: 0
server: Kestrel
access-control-allow-origin: https://www.etoro.com
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin, Origin
request-context: appId=cid-v1:fd70748c-8efd-4b7f-a0f0-36ea0c443ced
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 33566e4345d0815812806f6451daad61
74374f32195064e777a75fd6f3112b076e56eb6f
8bbdc2a8b27f773d6f883a40f043daa3530ac4a7d597471c4c73376496f8e5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5996
Cache-Control: max-age=135351
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:32 GMT
Etag: "6376104f-117"
Expires: Sat, 19 Nov 2022 12:23:23 GMT
Last-Modified: Thu, 17 Nov 2022 10:43:27 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
143.204.68.26200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP 143.204.68.26:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079
GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3e01624605be2cc1fb592922856a08c6.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ZsLV_uYWemg3oR8M_Ya1i_acm8bjDB8Az7-OrVcVPToo6Pg_-15Ofg==
age: 1160726
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
104.16.148.64200 OK 102 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
IP 104.16.148.64:0
Size 102 kB (102254 bytes)
Hash 8d62107df8b889e5d80477dde96df402
fbabda80aef176d60da69798e11721469445568d
ca60b2da5ca399b87cccae29b08653d4fde101e81f0501570d059b2840b0377b
GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:32 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 75459
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc023b4ab00afe-OSL
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/etoro.com/config.json
147.185.239.229200 OK 158 B URL HTTP/2 cdn.acsbapp.com/cache/app/etoro.com/config.json
IP 147.185.239.229:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8292b5e9709a3a90150d5e82ad9d9fe2
33ea76c0ac97305f07eb4debca67faec6ea721f6
624106ed90093bbac7652d612c016191a01858cf8108b650bb4b00c99d81e76c
GET /cache/app/etoro.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 18 Nov 2022 22:47:32 GMT
content-type: application/json
last-modified: Thu, 17 Nov 2022 22:45:12 GMT
etag: "9e-6376b978-c8898edffa48978c;;;"
accept-ranges: bytes
content-length: 158
date: Thu, 17 Nov 2022 22:47:32 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
js-agent.newrelic.com/552.2d6a2503-1220.js
151.101.86.137200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/552.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (21423)
Hash 097ef34c5f5d635a147bca3721bd605b
3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2
3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
GET /552.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PnZFPtaQ6Oa8SvsR598yLCynwQMleyjLyE8+/6kXxv1ZfRit6gnSEEKUHnQ2vqYi8syHn+Nxcq4=
x-amz-request-id: XM6WHM0J4M8X38WQ
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 184
x-timer: S1668725253.554079,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 7b4d0389cd3bdfc36b615a0b060eed3c
a13bee7f9604f7dc3b55ddbbad915fd605ab9a4b
bd7cccf2a2ad2ff6c00b8fd8238da52e11e19f36d1e30447f7c4561576788a57
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:33 GMT
content-type: application/x-javascript
content-length: 14384
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: e00Dic0738NrYVoLBg7tPA==
last-modified: Tue, 14 Dec 2021 12:34:59 GMT
etag: 0x8D9BEFE24E4B72A
x-ms-request-id: 42befd17-e01e-00f6-6ee7-f0fff0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 72796
expires: Fri, 18 Nov 2022 22:47:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc02428f5d0afe-OSL
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/1871831?s=0.25&r=0.07376239899917936
99.84.9.107204 No Content 67 kB URL HTTP/2 vc.hotjar.io/sessions/1871831?s=0.25&r=0.07376239899917936
IP 99.84.9.107:0
Hash 5429ba4a7de077858956b1b8b28d0dd8
efda84289c21675929cd9723298707da8076e13b
b883af538b5fa1335d619031a20c1a5d53d68868f0357d680b647886a7520073
GET /sessions/1871831?s=0.25&r=0.07376239899917936 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Thu, 17 Nov 2022 22:47:33 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 415cafe4893fa18caeab8a2e966de6c0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C2
x-amz-cf-id: DlFUuEvfmJbD0gCK4b3eZW9-H0ZQYwqSl_AE1AMTzh-Mhk592cBEGw==
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 5521c152bc1efa1baa93129bb8717e19
d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
GET /scripttemplates/6.27.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:33 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: VSHBUrwe+huqkxKbuHF+GQ==
last-modified: Mon, 29 Nov 2021 20:30:50 GMT
etag: 0x8D9B3772216FA2F
x-ms-request-id: 247cd6ec-501e-004e-2dec-ec1d03000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73153
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc024368630afe-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37703)
Hash 71e3871d634182b17c1b15ca3d58f7e4
4063bf0afb25a8c96bdd33f6d24ca832067c7806
c20f40887a2fdad6ea7070063acf1150881e18405c91338338e88be4195583b5
GET /scripttemplates/6.27.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:33 GMT
content-type: application/json
content-length: 11602
content-encoding: gzip
content-md5: ceOHHWNBgrF8GxXKPVj35A==
last-modified: Mon, 29 Nov 2021 20:30:52 GMT
etag: 0x8D9B377239B4147
x-ms-request-id: a3c3cc4e-901e-00f9-2cec-ec1206000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73153
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc024368670afe-OSL
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/en.build.json
147.185.239.229200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 147.185.239.229:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 52bdf84f0be5da69da591fc15e745787
e6c82caac2991c051c8a019e05c9938fe177ef1e
ab2c5a322cf6efa7cece1d7fec1a6cc588c31346141ca08954ae221a3b52a26e
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 18 Nov 2022 22:47:33 GMT
content-type: application/json
last-modified: Sun, 06 Nov 2022 16:24:03 GMT
etag: "3b8a8-6367dfa3-a3d2937a110a7bb5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25891
date: Thu, 17 Nov 2022 22:47:33 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.7.185302 Found 0 B URL HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.7.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 17 Nov 2022 22:47:33 GMT
content-length: 0
location: /turnstile/v0/75e640aa/api.js?onload=_cf_chl_turnstile_l&render=explicit
cache-control: max-age: 300
vary: Accept-Encoding
server: cloudflare
cf-ray: 76bc02441968b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
142.250.74.168200 OK 108 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N7SQ5DP
IP 142.250.74.168:0
File type ASCII text, with very long lines (5136), with no line terminators
Size 108 kB (107549 bytes)
Hash 0e492c0627f894cb066d2850ca99f0d4
3cc89785cddf1ea1af761c28a81d9a13d6c6e48b
ed33548f92d0f01aeb6a3875a85111607afcb41d172fdd63dd5b7e54938896f6
GET /gtm.js?id=GTM-N7SQ5DP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 17 Nov 2022 22:47:33 GMT
expires: Thu, 17 Nov 2022 22:47:33 GMT
cache-control: private, max-age=900
last-modified: Thu, 17 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
web1.acsbapp.com/apps/app/dist/media/logomono.svg
138.128.247.123200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP 138.128.247.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 17 Nov 2023 22:47:33 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Thu, 17 Nov 2022 22:47:33 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/general/js/seo.js
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/others/general/js/seo.js
IP 23.38.201.117:0
File type C source, ASCII text, with very long lines (366), with CRLF line terminators
Hash f22c155ea9a463fee325cc2f52cb2c5b
67913d0b1cdaa875752a36f5c22fc21884cd6b22
115d84510217e73948fabbc05aa6041071564a86dee31d7abb282d764ff4f7a7
GET /others/general/js/seo.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: IbCrnl2jHtt3ARkbdDtJdY1t/iT+eA6L1pkPIeISKQrHurrfYzN0CE54ZOlbBo/E9qrm76WQ/M0=
x-amz-request-id: 69QVGW75ZMC6VK3N
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2017 14:31:16 GMT
etag: "bb01557076c5f1cc6976325a60a0be7c"
x-amz-meta-s3b-last-modified: 20170110T142820Z
x-amz-version-id: SSqunX8tv_w4z_1vK9cbzCWNqGZTmd8y
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 17 Nov 2022 22:52:33 GMT
date: Thu, 17 Nov 2022 22:47:33 GMT
content-length: 2209
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
99.84.0.246200 OK 12 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 99.84.0.246:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 6d231d01533de87f1978527ff1582e85
2681a231f71539018d1e7ef81b21035159e70067
dd8eda4130a189c4da20100752803ccb737e26f5c93f97f8db822f29f545be19
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11968
server: CloudFront
date: Thu, 17 Nov 2022 22:47:34 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 18 Nov 2022 22:14:11 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 c91d54ce23c019ce0642e64447d9f9ba.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C2
x-amz-cf-id: Gb8cNpH6dI5lghlkwMAUKnmPPRec4nv2hT8f_YGrGKCugxNQHD_f0w==
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 09cff602dd1574b69254c3035cfb4bfa
107243dbcd1d6a7ab889081ceac60fc67eeff301
42692bbddbc42461e19b0db51ef00f920ea9291d36b5b891bc6b38eba2e29944
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6484
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Last-Modified: Thu, 17 Nov 2022 20:59:30 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f8e60a799876f30da96e12beb8ff5c03
5d86f33db1ec9ae549ba1caf96a790559cfa8205
96e48bb49aef4771e738a0f24b5d7390a351e5c8b61774f4a63527f961fcdfea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
18.172.153.14200 OK 40 kB URL HTTP/2 zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
IP 18.172.153.14:0
Hash 7d9124eadb9861ec5d1a04388dd9c080
f151f939584c47b6f5276603e58c3dac958b4c76
16fb1f5241a2cad7b93003ab4e502f11d30b611ece90a33058822c648e4fef0b
GET /i/3c2d8da22b7aa416fab4696fbd547cc9.js HTTP/1.1
Host: zero.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30231
content-encoding: gzip
server: Caddy
date: Thu, 17 Nov 2022 21:01:39 GMT
cache-control: max-age=43200
expires: Fri, 18 Nov 2022 09:01:39 GMT
etag: "14351-RIWjsv313PWYI4RyEPNyETuIUAc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5cd71a2ac63eabf2336afda85c353f66.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P5
x-amz-cf-id: RnBny3vGjsJ4o-jBBFddNZYOENh4-d7k8Vw8pVD0JxGnmbVQomHlGQ==
age: 6355
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
99.86.116.119200 OK 4.6 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 99.86.116.119:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 98d98b3499058b76d58073cf8ede2f10
2ec5bc839a187c2a4d93499567e8fff091a6bcc4
ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 4593
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 17 Nov 2022 15:51:47 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 d5601700fc8f561e27a6c14284b0ddce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-C1
X-Amz-Cf-Id: Lo2VKXHJ1Fv1nNPOXEmc66PRQyMoRkYNb1vbOJWejBcJtF5XJ8H9sg==
Age: 24948
9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
142.250.74.70200 OK 275 B URL HTTP/2 9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (562), with no line terminators
Hash 1ab2a97338ed3a74084554ba95e3c920
9607de2f32b9ca12b92257f1469eaf7e688b6f80
1f91225ca593af121d56d4553e90970bb0eb6b267a9de6ed812906ed9c7efe0d
GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1
Host: 9944765.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 17 Nov 2022 22:47:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 275
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 17-Nov-2022 23:02:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.adalyser.com/adalyser.js?cid=etoro
54.77.147.26200 OK 12 kB URL HTTP/2 c0.adalyser.com/adalyser.js?cid=etoro
IP 54.77.147.26:0
File type ASCII text, with very long lines (31834)
Hash 5301983312500f1fa818e866832a8ede
96c054b07049abe3b764dbcf0f8189055de98e78
24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
GET /adalyser.js?cid=etoro HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:34 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f8e60a799876f30da96e12beb8ff5c03
5d86f33db1ec9ae549ba1caf96a790559cfa8205
96e48bb49aef4771e738a0f24b5d7390a351e5c8b61774f4a63527f961fcdfea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 537f94c4439b8bc3d8ca5c99c34ce9bc
ff9d041493d90d569f64e7b66e43aef56d833564
51d1cc7df811c2dd88b2198748a479f0cc327558751ec838700e737ec67a482c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3094
Cache-Control: max-age=118390
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Etag: "6375d966-1d7"
Expires: Sat, 19 Nov 2022 07:40:44 GMT
Last-Modified: Thu, 17 Nov 2022 06:49:10 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 537f94c4439b8bc3d8ca5c99c34ce9bc
ff9d041493d90d569f64e7b66e43aef56d833564
51d1cc7df811c2dd88b2198748a479f0cc327558751ec838700e737ec67a482c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3094
Cache-Control: max-age=118390
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Etag: "6375d966-1d7"
Expires: Sat, 19 Nov 2022 07:40:44 GMT
Last-Modified: Thu, 17 Nov 2022 06:49:10 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=9cc30fa8-486a-4598-a1c4-4ea6faafe0bc&u_sclid=835f1f8c-67a5-468e-9a11-a8c676f454f3
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=9cc30fa8-486a-4598-a1c4-4ea6faafe0bc&u_sclid=835f1f8c-67a5-468e-9a11-a8c676f454f3
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=2b300842-74be-4e72-8ed5-3bab9449a996&u_scsid=9cc30fa8-486a-4598-a1c4-4ea6faafe0bc&u_sclid=835f1f8c-67a5-468e-9a11-a8c676f454f3 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:34 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 537f94c4439b8bc3d8ca5c99c34ce9bc
ff9d041493d90d569f64e7b66e43aef56d833564
51d1cc7df811c2dd88b2198748a479f0cc327558751ec838700e737ec67a482c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3094
Cache-Control: max-age=118390
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Etag: "6375d966-1d7"
Expires: Sat, 19 Nov 2022 07:40:44 GMT
Last-Modified: Thu, 17 Nov 2022 06:49:10 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
c0.adalyser.com/tracking/track/v3/p?stm=1668725252834&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1668725252831%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22166872524910000TNOTV415326358024V41%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A2%2C%22sid%22%3A%224e262a30-969e-47f3-9cc7-219c9c3213a2%22%2C%22duid%22%3A%2238471653-ba3c-4934-bc7d-b8f8cee479f0%22%2C%22cw%22%3A1668725252831%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
54.77.147.26200 OK 43 B URL HTTP/2 c0.adalyser.com/tracking/track/v3/p?stm=1668725252834&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1668725252831%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22166872524910000TNOTV415326358024V41%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A2%2C%22sid%22%3A%224e262a30-969e-47f3-9cc7-219c9c3213a2%22%2C%22duid%22%3A%2238471653-ba3c-4934-bc7d-b8f8cee479f0%22%2C%22cw%22%3A1668725252831%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com
IP 54.77.147.26:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /tracking/track/v3/p?stm=1668725252834&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cid=etoro&p=%7B%22et%22%3A1668725252831%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Unknown%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%2289099%22%2C%22me%22%3A%22Networks%22%2C%22ca%22%3A%22166872524910000TNOTV415326358024V41%22%2C%22co%22%3A%220%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A2%2C%22sid%22%3A%224e262a30-969e-47f3-9cc7-219c9c3213a2%22%2C%22duid%22%3A%2238471653-ba3c-4934-bc7d-b8f8cee479f0%22%2C%22cw%22%3A1668725252831%7D&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&domain=www.etoro.com HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:34 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
etag: W/"2b-B//0C13UlayirE4cP7xgqg"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4867bbb88730b6b7c4ce63d01131b13d
13205cb9c213ebb2915cedc56c64c65dccd3b8c4
f6df6058ca9dd6ce5e9034a5996d6e22ddbc9e5be85a245c55efb2bfbccbf99a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
142.250.74.130200 OK 275 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (561), with no line terminators
Hash 2888301990c4b794774d7d3454f5ef45
9a0cf2d83268e6dc1097bcbf7607a2728e8ef514
3be969207e485fb819f87c8bf994dcfafac7d29c32750eeac9d8454ac8d25c18
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 17 Nov 2022 22:47:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 275
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 51 kB IP 142.250.74.35:0
Hash a80651a1c0ee1fffdf4344ddefd9151f
4a3f541e1ba4a06fa8eb8e5f6c817d2e3022ca78
a1dea8c80fbf3d419fd064f3bb7221a9934809817ea0ef061590af87d2db75df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
104.16.148.64200 OK 4.8 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
IP 104.16.148.64:0
File type ASCII text, with very long lines (11123)
Hash ae501ead331272c77e46b5bdbd8393f0
5ef8e0c44e719a25c1d9118706e608759fbeae71
37dbde029ceadad6fbea75b7c1fadac91a33776ebca50a8ff2cc9dd194068666
GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:33 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73153
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76bc0243686d0afe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/39.2d6a2503-1220.js
151.101.86.137200 OK 2.8 kB URL HTTP/2 js-agent.newrelic.com/39.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (7169)
Hash a0a406e7bdf3e14f047e46bcea27640c
c1fbc88d260f16a092c1b7b0e58e4291401478e8
2309d4e82574d5402ec3454a76051987336fe3b4e4d546f6565a3a443c6d4049
GET /39.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KxfPNXIQ38SSfzz490TMAo2ltA9W5l6OlU9HI6h8SfmvQBHsTP/3JrzkCdnsVJAOdxSfq1TwUMk=
x-amz-request-id: ESHWVX2RDYQJKTJS
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "0448380a8f2cd0426bbdf04dd45b5408"
x-amz-version-id: rKoZQfJFmGD6aC9Xn3l7.fk4j9L96MM_
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 85
x-timer: S1668725255.512167,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2755
X-Firefox-Spdy: h2
js-agent.newrelic.com/0.2d6a2503-1220.js
151.101.86.137200 OK 2.3 kB URL HTTP/2 js-agent.newrelic.com/0.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (5198)
Hash 852267b16c136b977ccd94900c6c6308
e013e1b2c6de5b625ebbfe2e7cf3cfb09cee6c16
9bb09a133a1b33e9cecb06aa44e1ea67b3ad4ea74df5c6a89b1580064364cced
GET /0.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: f1JzRiK4HoHej55UIxY8kufnlKMhSjW2G+Vtj2sq4OUFu6SREeWg9kZpjawiQxSTZPEfmKoLolg=
x-amz-request-id: XM6JN6V8R5PG7B8J
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "cc9b3d207e9ea2c79974f46bf474e6dd"
x-amz-version-id: 5C7ygpPS6JvoVHQoGDIm5lCTgaPcqmFc
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 84
x-timer: S1668725255.512629,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2349
X-Firefox-Spdy: h2
js-agent.newrelic.com/571.2d6a2503-1220.js
151.101.86.137200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/571.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (2412)
Hash d392a55faa7a0a2a43781a495891c9aa
1998ba6f85354606c186fa1a29285676f0b596f0
33b4cb21373961aa88430ff72406d46e95ceddf50afc086598ea5bdc3a311815
GET /571.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Cn07g451pzP+BuOyXbJ5c0o8ExPUm1rBYP/GYVQDFxcy7KzhZDW/Ep1gB0iV/QBa/UCWbkhew68=
x-amz-request-id: XM6J6T5Z32K8FRFH
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "04b00905b32fd8d29459545bc125cff6"
x-amz-version-id: ySPuP7kOqGri8HjzDqW2TYirQNYv9NMF
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 88
x-timer: S1668725255.513003,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1108
X-Firefox-Spdy: h2
js-agent.newrelic.com/820.2d6a2503-1220.js
151.101.86.137200 OK 3.0 kB URL HTTP/2 js-agent.newrelic.com/820.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (7460)
Hash 7d1295a839190615b34d5a62acceee4f
eef26f5c6d2ae14cb81b3a9b669da224faceacd0
4d59d58f31b6638fbc3792a0b5fddca6e8eafc19a0c9e9aabadb5ad4d9197198
GET /820.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: mfz69jbwDdVjAOvigezanDeGlG58lNEgRQZJ5bHuLqr3T+YzVd1KlatkpX7gSSdNs3YsWLt1rsw=
x-amz-request-id: 7DG6EGGM14MJB93M
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "897a1a72a47e4f4a24c05aec49af638f"
x-amz-version-id: P6j2S.7Iht6lmVHyZ_zkYmp136j6E8IA
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 337
x-timer: S1668725255.513360,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2979
X-Firefox-Spdy: h2
js-agent.newrelic.com/790.2d6a2503-1220.js
151.101.86.137200 OK 6.1 kB URL HTTP/2 js-agent.newrelic.com/790.2d6a2503-1220.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (17591)
Hash b3193d37837e2f200e10db13deff83a9
d8577b8a972583e81cfd8e31436dcd039aa049b2
5ba2e421fa78af3094294f4f8e30ba63225537da3ad68e35fbab63b2d22a0288
GET /790.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rOIosPuuEwyY2i5sNYqTXHwZXDs2re4AJB6+I1QFfF9D8vToAF8QBmtRttIasr2/YRes+1f0bv4=
x-amz-request-id: 9HYGKVEA32SEPK1W
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "af8c077a247e90dff929d7af81c94f57"
x-amz-version-id: TFyNie.wEelbO4xbna5bJ14MRDIkKCak
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 194
x-timer: S1668725255.513652,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6064
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=165841BBB82662DE142853E4B971631A; domain=.bing.com; expires=Tue, 12-Dec-2023 22:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AB9957BAAF604FF7B3832E20B9A6D172 Ref B: OSL30EDGE0309 Ref C: 2022-11-17T22:47:34Z
date: Thu, 17 Nov 2022 22:47:34 GMT
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.3 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (16620), with no line terminators
Hash a73a09a868a98d7505575c520aaf6616
ed4e4c3fe9ad7ed18564e5f9aed6a9a68b522c7f
8b22d2e0e3e79c7ea27bf76720b302fd18ba1240fbf8dd99e54ced655d17c8e4
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "c83bb35b39c166b49387a9cb3633d4be:1668418404.864545"
Last-Modified: Mon, 14 Nov 2022 09:17:09 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 17 Nov 2022 23:07:34 GMT
Date: Thu, 17 Nov 2022 22:47:34 GMT
Content-Length: 5276
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4bf9d7f716bc1adeca873e97debe0555
3b3fed135b3a3c3d485e6ec86a12c0de80822430
c0b75f37ec5d15fd96047d4f0b5dbafb6636b4f8adfa39dd5b84465925d83dce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1155
Cache-Control: max-age=121455
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Etag: "6375ecf2-1d7"
Expires: Sat, 19 Nov 2022 08:31:49 GMT
Last-Modified: Thu, 17 Nov 2022 08:12:34 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 17 Nov 2022 22:41:09 GMT
expires: Fri, 18 Nov 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 385
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=72357
date: Thu, 17 Nov 2022 22:47:34 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1659-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: mfjTd8p/4hIvJWsRntLva0Xr4+ncJv3sYAcroSkMT6tCuNTYnYXC9XECJ6dNSQI8hVCL/LaoY5aYtgCqI77mNQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Thu, 17 Nov 2022 22:47:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1005612/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1005612/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58514)
Hash 12754452f7c59e9b88d148540186beee
39560125abe70685172ed880d8207fc015fdf227
2a07c7133683cefbe4dc3e06dfd312f5336afbf5f1c09ca3758d223cfba14618
GET /libtrc/unip/1005612/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SVsTudcwqpp1kkv7oIouprHFOrI7vCn53UrDc1iOFgyCgv9NAYV//GMo/pEhfCbDlPLS0DqwzRA=
x-amz-request-id: ZZHS0ZSVGX1Q5QH6
x-amz-replication-status: PENDING
last-modified: Sun, 13 Nov 2022 11:26:14 GMT
etag: "bbd77f6b2cd73dc2ea68ac2310d70370"
x-amz-version-id: cbp69NHEKSeb23KBW8Zos7b2kePS1wbg
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
age: 110
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1668725255.629234,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 12
content-length: 17951
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1&z=208799410
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1&z=208799410
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1&z=208799410 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 17 Nov 2022 22:47:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4bf9d7f716bc1adeca873e97debe0555
3b3fed135b3a3c3d485e6ec86a12c0de80822430
c0b75f37ec5d15fd96047d4f0b5dbafb6636b4f8adfa39dd5b84465925d83dce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1155
Cache-Control: max-age=121455
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Etag: "6375ecf2-1d7"
Expires: Sat, 19 Nov 2022 08:31:49 GMT
Last-Modified: Thu, 17 Nov 2022 08:12:34 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1668725252819&hl=2&op=0&ag=1317291471&rand=539251122099920620727500950216297951010202186876058676719705001601802594162&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=202ypBkRKf&pto=4032&ver=48&gac=194174629.1668725253&mei=&ap=&duid=1.1668725252.8hLwVar3aCRBwcKd&suid=1.1668725252.eU1kEDs192ov2h1j&tuid=1.1668725252.nJ2FWlGZ9kOcuqJe&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C3728%2C178&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 1.1 kB URL HTTP/2 one.pointlessplay.com/ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1668725252819&hl=2&op=0&ag=1317291471&rand=539251122099920620727500950216297951010202186876058676719705001601802594162&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=202ypBkRKf&pto=4032&ver=48&gac=194174629.1668725253&mei=&ap=&duid=1.1668725252.8hLwVar3aCRBwcKd&suid=1.1668725252.eU1kEDs192ov2h1j&tuid=1.1668725252.nJ2FWlGZ9kOcuqJe&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C3728%2C178&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (3302), with no line terminators
Hash b1dc43b6edcd2e042ba18c4ba97695f0
76afff6e600981bb1b3ea0fd0e07c095d1fe6359
912a478c8802bb24ce86af58d2dc3cda8bdfadc80e3c29adee502fa0c71cca52
GET /ct?id=10929&url=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1668725252819&hl=2&op=0&ag=1317291471&rand=539251122099920620727500950216297951010202186876058676719705001601802594162&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=202ypBkRKf&pto=4032&ver=48&gac=194174629.1668725253&mei=&ap=&duid=1.1668725252.8hLwVar3aCRBwcKd&suid=1.1668725252.eU1kEDs192ov2h1j&tuid=1.1668725252.nJ2FWlGZ9kOcuqJe&fbc=->m=WyJPbmVUcnVzdExvYWRlZCIsIk9wdGFub25Mb2FkZWQiLCJPbmVUcnVzdEdyb3Vwc1VwZGF0ZWQiXQ%3D%3D&it=67%2C3728%2C178&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: one.pointlessplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 17 Nov 2022 22:47:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=9034db5758cf5ab412c23c7891800f6e; Max-Age=29030400; Path=/; Expires=Thu, 19 Oct 2023 22:47:34 GMT; HttpOnly; Secure; SameSite=None
content-length: 1106
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 95d3d654014df633bc231e7d537b8633
7ac79b7a469d9ac50633fb92062ca4ce48c9cdee
1ebb72c177b2452abb4b674d2edf9d195053bcb024f24224b29bc080075af036
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05289172c1455c4134e496c6f4606efd
ce1bb33256b0754f9acc01e7e9f3e5dc85f89244
a8b4411a0310cc376efe2aec7c0830b8d3b63b8827631b0ff43ec092f1f80f82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12065
x-amzn-requestid: 45c97153-71c7-4985-a1ad-fc21a509d153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K5FyVIAMFtDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-0f9d22dd544a4580570f3089;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dxT2WJB7m5tUhgBn2PwTIN4Zskzm3X7CW-29hl1nCyNPbKt5j6q5iA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:02:57 GMT
age: 2677
etag: "ce1bb33256b0754f9acc01e7e9f3e5dc85f89244"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeb90&_p=80876964&_gaz=1&ul=NA&cid=194174629.1668725253&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sid=1668725252&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.affwizz_medium=Networks&up.affwizz_source=89099&up.session_referer=
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeb90&_p=80876964&_gaz=1&ul=NA&cid=194174629.1668725253&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sid=1668725252&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.affwizz_medium=Networks&up.affwizz_source=89099&up.session_referer=
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V>m=2oeb90&_p=80876964&_gaz=1&ul=NA&cid=194174629.1668725253&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&sid=1668725252&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.affwizz_medium=Networks&up.affwizz_source=89099&up.session_referer= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Thu, 17 Nov 2022 22:47:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1
142.250.150.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1
IP 142.250.150.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V&cid=194174629.1668725253>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Thu, 17 Nov 2022 22:47:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
privacyportal-de.onetrust.com/request/v1/consentreceipts
104.18.27.85201 Created 0 B URL HTTP/2 privacyportal-de.onetrust.com/request/v1/consentreceipts
IP 104.18.27.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-de.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 6237
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Thu, 17 Nov 2022 22:47:34 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76bc024aac5bb500-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash dd2e66e9e5eb9bf0fb24a426a930d2d2
4de2872ca6cf1b50e48ebd12ae5565a6355d2ec6
9bf99aed9adc6aef0b8784c2b879d785c2b2aef3b3919cbbc6cedbf54d8dea1e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 17 Nov 2022 22:47:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 17 Nov 2022 19:47:08 GMT
Expires: Fri, 18 Nov 2022 19:47:08 GMT
ETag: "4de2872ca6cf1b50e48ebd12ae5565a6355d2ec6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1220.PROD&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=4514&ck=0&s=ccdea809ef9115b2&ref=https://www.etoro.com/&ap=9&be=535&fe=1569&dc=582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668725248788,%22n%22:0,%22f%22:377,%22dn%22:377,%22dne%22:377,%22c%22:377,%22s%22:377,%22ce%22:377,%22rq%22:420,%22rp%22:504,%22rpe%22:504,%22dl%22:513,%22di%22:1066,%22ds%22:1116,%22de%22:1123,%22dc%22:2103,%22l%22:2103,%22le%22:2113%7D,%22navigation%22:%7B%7D%7D&fcp=747&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1220.PROD&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=4514&ck=0&s=ccdea809ef9115b2&ref=https://www.etoro.com/&ap=9&be=535&fe=1569&dc=582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668725248788,%22n%22:0,%22f%22:377,%22dn%22:377,%22dne%22:377,%22c%22:377,%22s%22:377,%22ce%22:377,%22rq%22:420,%22rp%22:504,%22rpe%22:504,%22dl%22:513,%22di%22:1066,%22ds%22:1116,%22de%22:1123,%22dc%22:2103,%22l%22:2103,%22le%22:2113%7D,%22navigation%22:%7B%7D%7D&fcp=747&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/8e1edcd9e2?a=16546562&v=1220.PROD&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=4514&ck=0&s=ccdea809ef9115b2&ref=https://www.etoro.com/&ap=9&be=535&fe=1569&dc=582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668725248788,%22n%22:0,%22f%22:377,%22dn%22:377,%22dne%22:377,%22c%22:377,%22s%22:377,%22ce%22:377,%22rq%22:420,%22rp%22:504,%22rpe%22:504,%22dl%22:513,%22di%22:1066,%22ds%22:1116,%22de%22:1123,%22dc%22:2103,%22l%22:2103,%22le%22:2113%7D,%22navigation%22:%7B%7D%7D&fcp=747&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 17 Nov 2022 22:47:35 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76bc024b2b65b517-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
108.156.28.36200 OK 61 B URL HTTP/2 cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
IP 108.156.28.36:0
File type PNG image data, 73 x 56, 8-bit/color RGB, non-interlaced\012- data
Hash f4aeacd4f611340dbeeabee5a54b0551
5262455cc2447d730c18262252d6c30ff20a966b
003a5c3a5765fedf3da0ad119e7298a3d4c03968f412466654448428ca64fb0a
OPTIONS /partner/2929684/domain/etoro.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 17 Nov 2022 08:12:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a6a1a17bbe377bf7c4423397c71959da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: VTxhMQNqUlkKu7GlH1ROfWOyiqcm8SLHhaPDQbpx13AAPtqcO9Zmdg==
age: 52504
X-Firefox-Spdy: h2
s.yimg.com/wi/config/10118123.json
188.125.94.206200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10118123.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21e2ae430121102daa2c1810b5cf910b
ffef080cc2eacc942a9bcb67561f790c34ed3fb0
a44e6042de416123c90209eb39d7fdbe79665819ffbb07646cc939bb2dfa84e0
GET /wi/config/10118123.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2QEpfV2g7jhRCYC3df+NSIORVVcnopZDRoNfdbs3VgV/ozApwqak7j/cyqo4GYXIO3UcOdMTJUw=
x-amz-request-id: FCJN52QA4EGXCF85
date: Thu, 17 Nov 2022 22:35:33 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Oct 2022 22:00:29 GMT
x-amz-expiration: expiry-date="Sat, 18 Nov 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "21e2ae430121102daa2c1810b5cf910b"
x-amz-server-side-encryption: AES256
x-amz-version-id: PPtAZrGHQpA8i..pPqBYS_TW.49B0pC2
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 723
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
108.156.28.36200 OK 375 B URL HTTP/2 cdn.linkedin.oribi.io/partner/2929684/domain/etoro.com/token
IP 108.156.28.36:0
Hash 2adbaded5f6d96d079e9123596cee247
923aec43f9f8b5b8c47e48c85dd39e9e29582b97
2240a612f26ccc44a6f3afdbac78a9b816c3b7f601cd6867a468658009f3d65f
GET /partner/2929684/domain/etoro.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 17 Nov 2022 22:07:10 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a6a1a17bbe377bf7c4423397c71959da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: AvuuMPBuwyOzE15wksLDwQm5w0E4GUAmo9qoqBgdbERaJsBCjsBXJw==
age: 2425
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 54d52e1de272d0cb67c786e7c16b31a0
b9f0687efad6ac828b7f7b749403682590c45679
65b2623029602a448ca72e836b5c6d4d9e6ef52020a00d4566399cb3224fd1cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5124
Cache-Control: max-age=138748
Content-Type: application/ocsp-response
Date: Thu, 17 Nov 2022 22:47:35 GMT
Etag: "637620ff-139"
Expires: Sat, 19 Nov 2022 13:20:03 GMT
Last-Modified: Thu, 17 Nov 2022 11:54:39 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
104.18.35.149302 Found 0 B URL HTTP/2 pages.etoro.com/social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
IP 104.18.35.149:0
GET /social-connect/superlink_English.php?utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term= HTTP/1.1
Host: pages.etoro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AffiliateWizAffiliateID=AffiliateID=89099&ClickBannerID=0&SubAffiliateID=166872524910000TNOTV415326358024V41&Custom=&ClickDateTime=2022-11-17T22:47:30.3920576Z&UserUniqueIdentifier=; RequestURL=URL=http://med.etoro.com/aw.aspx?b=15344&a=89099&task=click&subaffiliateid=166872524910000tnotv415326358024v41
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 17 Nov 2022 22:47:30 GMT
content-type: text/html
location: https://pages.etoro.com/lp/welcome/?dl=30001923&utm_medium=Networks&utm_source=89099&utm_content=0&utm_serial=166872524910000TNOTV415326358024V41&utm_campaign=166872524910000TNOTV415326358024V41&utm_term=
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
set-cookie: __cf_bm=eTZ7OlqEZOn3.bZX2P1Ht8Ptp385w4atHzp9rvh8aLk-1668725250-0-AaSCGDV1CwbX+rVyxJg422rG86giiyXiXdHv8mcOC+Shk5n01oZ/wVl+SLZQTyXzrspRk+TIdmUkKyR9qxovTqTmr3Djz7Sa70f79asduOin; path=/; expires=Thu, 17-Nov-22 23:17:30 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None
__cfruid=2205a57e5134d6ff05cf0086a2a3ac522d1c8ced-1668725250; path=/; domain=.etoro.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76bc022f6870b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
IP 35.190.43.134:0
GET /collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:34 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js-agent.newrelic.com/368.2d6a2503-1220.js
151.101.86.137200 OK 0 B URL HTTP/2 js-agent.newrelic.com/368.2d6a2503-1220.js
IP 151.101.86.137:0
GET /368.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GUwozRedGseijuU5ypA/WbbnDIf/u5E5/2u5+kb3ugz/wj5jQhWm8oFz9CQSV79o7P1yeeJAp+M=
x-amz-request-id: K9T2FMDPRF0ZCE4Q
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "16b4f3676c3859e1378a2ccdebbad675"
x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 17 Nov 2022 22:47:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 184
x-timer: S1668725255.510696,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1443
X-Firefox-Spdy: h2
adspredictiv.com/jump/next.php?stamat=m%257CY743E-IiaQdH8AH0dEdHP3xP.7cd%252C7H0PozvLiGV-YkDx825CHjXHsSctWIGDQyh13bePJRrt9Tvxs0cLjZJpooUskY1nUmlsopmiQg5eKM-4S4i4UZqfQA8Y57vzI4LGytTHYjHNNOC_JsQiEnLgBNvQmiuZ&cbpage=https://adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv&cbur=0.4799987262053107&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=
35.190.38.40302 Found 0 B URL HTTP/2 adspredictiv.com/jump/next.php?stamat=m%257CY743E-IiaQdH8AH0dEdHP3xP.7cd%252C7H0PozvLiGV-YkDx825CHjXHsSctWIGDQyh13bePJRrt9Tvxs0cLjZJpooUskY1nUmlsopmiQg5eKM-4S4i4UZqfQA8Y57vzI4LGytTHYjHNNOC_JsQiEnLgBNvQmiuZ&cbpage=https://adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv&cbur=0.4799987262053107&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=
IP 35.190.38.40:0
GET /jump/next.php?stamat=m%257CY743E-IiaQdH8AH0dEdHP3xP.7cd%252C7H0PozvLiGV-YkDx825CHjXHsSctWIGDQyh13bePJRrt9Tvxs0cLjZJpooUskY1nUmlsopmiQg5eKM-4S4i4UZqfQA8Y57vzI4LGytTHYjHNNOC_JsQiEnLgBNvQmiuZ&cbpage=https://adspredictiv.com/jump/next.php?r=6415938&sub1=chartreuse-ox&sub2=whiskey-seg-4l0ult0cv&cbur=0.4799987262053107&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref= HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 17 Nov 2022 22:47:29 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://adspredictiv.com/script/i.php?stamat=m%257C%252C%252CAidnY3a7oGU3B_-GH0dEdHP3xP.77c%252C1m4aZR5-YeToX4xJGfFNX6Jhi11-OfVlau4S1hCAMubGiMeB60hGizC6V4pCQUUj-iQko0Ld-2056KxSP_T__IOqDEeodMOgCmTW1NRw9UlIa80Dk-xsZEXFC0o4ktehH_NKx62JLidkSjx1Wgp-2D1-5wOsr1RthztHydqbnmvsLwmqijE2xTVqsmjy6_pbSsy2GgSXwqQZcaqZAVDGLGAQyrIRyEcMz5Box6lyWqmvaCcREWdTmO_XEGKvaxlZhO39ouns3bERCoXapHJMmsqb_GBiHJyYG9MtMiUXgf6kXcSeV4FxTXK6yt2CEq4eCNJ2rqJ_GrEuL3gcVcvBUBCO973NR0ICNCdqSgUq8FQeRUwmN-_YpPbb_VmqZacAlgLlr31osmUA7CQQiTJkNDo8D4Bwi5e3AlQKqyWJC1pV0o1uw40jeT-mUipyN1dnrGp8IHUaRI9O-WphQhtaJJwN3a3pAV-sttA_jlWdWKz-U6Et28YAeAWMWINLXVi1977e24spxjmNUkCSYCTZZ0Wi0Yw9xUIkspYeMCJj5cV4bntftwcZa4jyujVU72mv
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1871831.js?sv=6
13.224.245.61200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1871831.js?sv=6
IP 13.224.245.61:0
GET /c/hotjar-1871831.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 17 Nov 2022 22:47:18 GMT
cache-control: max-age=60
etag: W/9752a92821e760ecb35a8d6e8836e65f
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f9fbffaafd0471bd66d58758a9ad82f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C3
x-amz-cf-id: NCEMU4TxvEJyv54MT_UmjU9dlYlgfDR_JvIWFqcmU6ZqWYYLyB6low==
age: 13
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
104.18.18.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP 104.18.18.132:0
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:32 GMT
content-type: application/javascript
cf-ray: 76bc023a995db524-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"cba895d710939d3f383adf1461af832f"
last-modified: Wed, 09 Nov 2022 04:14:07 GMT
strict-transport-security: max-age=0
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: yADmpMRcJu2yASGV_gZ-qxqQqgO1sLRsGfYPN6mnohLS_b0Zg8KMPA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
goosebomb.com/gogate/etoro/30/index.html?action=166872524910000TNOTV415326358024V41
172.67.144.202200 OK 0 B URL HTTP/2 goosebomb.com/gogate/etoro/30/index.html?action=166872524910000TNOTV415326358024V41
IP 172.67.144.202:0
GET /gogate/etoro/30/index.html?action=166872524910000TNOTV415326358024V41 HTTP/1.1
Host: goosebomb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 17 Nov 2022 22:47:30 GMT
content-type: text/html
x-guploader-uploadid: ADPycdtvREDG7kuWj5CI9Sz4TgLegMZ0ULRWJia8eTki4Ro48X_lIda7mSNlf9ll9pzjzPSCZPPERaMmT3cXkXx1vxR2OA
expires: Thu, 17 Nov 2022 23:47:29 GMT
cache-control: public, max-age=3600
last-modified: Tue, 09 Mar 2021 12:58:00 GMT
x-goog-generation: 1615294680212970
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1290
x-goog-meta-goog-reserved-file-mtime: 1614945425
content-language: en
x-goog-hash: crc32c=UoRtCQ==, md5=3Wwo7SVOo9a6wHpjc59h4w==
x-goog-storage-class: STANDARD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4gP2OJso8PdWCmqAhb%2BlZujXzvh0SlKi7rEl1HsnZ%2FB1rcqEUpuCgMNVfClXp745yPKqh7DrnfqyFcsTJHHxDELhhbTwF8p7tnBxZYFMKM7oENY4EPqKKEre64ziGHb8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76bc022b9f050afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_251/js/script.min.js?v=1668362576
23.38.201.117200 OK 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_251/js/script.min.js?v=1668362576
IP 23.38.201.117:0
GET /cache1/hp/v_251/js/script.min.js?v=1668362576 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 5xlR2WO6yUQElwfYkyd2uelHuc0oHbZ1fcMyz8rrfbiremJ2PUR1XBlqqYoKH9XsmuVi7FufNuQ=
x-amz-request-id: SK3ASG0ZHYJJWDEG
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 15:01:14 GMT
etag: "4f575e57b4700b8a722eb50bf3f057fb"
x-amz-meta-sha256: f740e1b602d45a120d58866a4c7bb38c8e1e80eff72e1f2d7490f79a7b70f3ea
x-amz-meta-s3b-last-modified: 20221113T175734Z
x-amz-version-id: BbL965sPnV3WFb1A0ZsE3XpiGzkilqpk
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 17 Nov 2023 22:47:31 GMT
date: Thu, 17 Nov 2022 22:47:31 GMT
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&upid=jxpewqr&upv=1.1.0&td1=visit
35.71.131.137302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&upid=jxpewqr&upv=1.1.0&td1=visit
IP 35.71.131.137:0
GET /track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&upid=jxpewqr&upv=1.1.0&td1=visit HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 17 Nov 2022 22:47:34 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&upid=jxpewqr&upv=1.1.0&td1=visit
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=1533a895-32cb-476c-84f4-04391d3abd5d; domain=.adsrvr.org; expires=Fri, 17-Nov-2023 22:47:34 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
188.125.94.206200 OK 0 B IP 188.125.94.206:0
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pkhV/BAsYCbK2wHte9oJ7z66U6clbElA/gnmChGP1+85Bsh8minr/sEdyNjaPOqV0frLKD5n+d8=
x-amz-request-id: 5FT47YT92PCE2BM3
date: Thu, 17 Nov 2022 22:44:59 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 156
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cb=88441375530941970term=value
44.236.199.214200 0 B URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cb=88441375530941970term=value
IP 44.236.199.214:0
GET /spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F%3Fdl%3D30001923%26utm_medium%3DNetworks%26utm_source%3D89099%26utm_content%3D0%26utm_serial%3D166872524910000TNOTV415326358024V41%26utm_campaign%3D166872524910000TNOTV415326358024V41%26utm_term%3D%26from_lp%3DwhiteLP&cb=88441375530941970term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Thu, 17 Nov 2022 22:47:34 GMT
connection: close