r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9076
Expires: Wed, 26 Oct 2022 11:18:33 GMT
Date: Wed, 26 Oct 2022 08:47:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2607
Cache-Control: max-age=91641
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:17 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:14:38 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10635
Expires: Wed, 26 Oct 2022 11:44:32 GMT
Date: Wed, 26 Oct 2022 08:47:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: u0cQ8AwHV8o6FXZtKAw/jGL9d1/H0XMy+6v3yBGm/ZTDFJsgmxQeFZzoTPX571LjrsyGdSjJQG4=
x-amz-request-id: CCGCV27S2P0KMPNX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 08:39:08 GMT
age: 489
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 08:47:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
48.us.tealwinds.xyz/feed/?link=true&tid=48&subid=48.503&ref=t2.blowingwnd.com&s1=6358f406cc908f64bc4cb469
23.235.251.114301 Moved Permanently 0 B URL HTTP/1.1 48.us.tealwinds.xyz/feed/?link=true&tid=48&subid=48.503&ref=t2.blowingwnd.com&s1=6358f406cc908f64bc4cb469
IP 23.235.251.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feed/?link=true&tid=48&subid=48.503&ref=t2.blowingwnd.com&s1=6358f406cc908f64bc4cb469 HTTP/1.1
Host: 48.us.tealwinds.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Location: https://redir.tealwinds.xyz/click/invalid/?tid=48&subid=48.503
Date: Wed, 26 Oct 2022 08:47:18 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4530
Cache-Control: max-age=88500
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:18 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:22:18 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b953d573d7a195218d10b4d2f56c84a8
d191f3485619de1e6a0ddac0eb87a49b909836b3
c753e6d5f95f6aa9eca822e2a450e867d80c6818aae70132b1a550182a9ae4d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C753E6D5F95F6AA9ECA822E2A450E867D80C6818AAE70132B1A550182A9AE4D3"
Last-Modified: Tue, 25 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4938
Expires: Wed, 26 Oct 2022 10:09:36 GMT
Date: Wed, 26 Oct 2022 08:47:18 GMT
Connection: keep-alive
push.services.mozilla.com/
35.167.231.108101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.167.231.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0PLaONq0gbgvG5kjLDxChA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QT+Z8V/E4kB8laBviP0uj2o0oFY=
redir.tealwinds.xyz/click/invalid/?tid=48&subid=48.503
198.211.113.186302 Found 222 B URL HTTP/1.1 redir.tealwinds.xyz/click/invalid/?tid=48&subid=48.503
IP 198.211.113.186:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with no line terminators
Hash 0c9e1d82d734ec8b4e2a0699a0c4777f
0cab14788eb4d5007b405b43d07a8817637d658d
3b80b645103faf7175803daa42d76ada01525d7d275b13e8b04ebea29e57b41a
GET /click/invalid/?tid=48&subid=48.503 HTTP/1.1
Host: redir.tealwinds.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: 0
Location: https://t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=48
Vary: Accept
Content-Type: text/html; charset=utf-8
Content-Length: 222
Date: Wed, 26 Oct 2022 08:47:18 GMT
Connection: keep-alive
Keep-Alive: timeout=5
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 98764e0b06a58462409196c4f21409f8
2f11ec5303be623a6b1f356980528fd5ac390c38
c9f96b54ccdddd871a85bdc26c77230d305256fa0a3cab943382bac1d488f56f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9F96B54CCDDDD871A85BDC26C77230D305256FA0A3CAB943382BAC1D488F56F"
Last-Modified: Mon, 24 Oct 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21022
Expires: Wed, 26 Oct 2022 14:37:40 GMT
Date: Wed, 26 Oct 2022 08:47:18 GMT
Connection: keep-alive
t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=48
51.161.115.163302 Found 0 B URL HTTP/1.1 t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=48
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=48 HTTP/1.1
Host: t2.lowtid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 08:47:18 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12mpjzhhaf
Raund: 1z5
Location: https://pdxx-7fmavzpxk2xlm-4-2.lowsea.fun/emw/v1/dt?sid=888.no.firefox.&k=bfb&url=&xrw=&lid=6358f41655103c4d3b2d49be&fid=888
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c34f781e006cbac3dd92465218b87ddc
9c02a878aaeb9aca947ed0c18d32dcdc7ad878b2
13578981cea7d078952c9213f51ea87b86b3a14a2054f694c3c36dbc70498e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "13578981CEA7D078952C9213F51EA87B86B3A14A2054F694C3C36DBC70498E8F"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4970
Expires: Wed, 26 Oct 2022 10:10:09 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
pdxx-7fmavzpxk2xlm-4-2.lowsea.fun/emw/v1/dt?sid=888.no.firefox.&k=bfb&url=&xrw=&lid=6358f41655103c4d3b2d49be&fid=888
5.161.78.177307 Temporary Redirect 164 B URL HTTP/2 pdxx-7fmavzpxk2xlm-4-2.lowsea.fun/emw/v1/dt?sid=888.no.firefox.&k=bfb&url=&xrw=&lid=6358f41655103c4d3b2d49be&fid=888
IP 5.161.78.177:0
ASN #213230 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 813f9846b49c0ada805648edf1b2fdbd
caa24890460f73e6a72bb49426351e67e83b053d
8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3
GET /emw/v1/dt?sid=888.no.firefox.&k=bfb&url=&xrw=&lid=6358f41655103c4d3b2d49be&fid=888 HTTP/1.1
Host: pdxx-7fmavzpxk2xlm-4-2.lowsea.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
date: Wed, 26 Oct 2022 08:47:19 GMT
content-type: text/html
content-length: 164
location: https://cola.trffclb.com/a.php?p=c:xecd97ulmxry7e481&d=62ff4322ec41a549b07c0d74&pid=6358f41655103c4d3b2d49be&source=888.no.firefox.
set-cookie: emwxcid_4_1=tr2MDreMOL1OuJPWkW6DIaASSunRJvgJm39mlHLpHLVMyoYt2e; expires=Thu, Oct 26 2023 08:47:19 GMT; Max-Age=31536000; path=/; domain=lowsea.fun; SameSite=Lax
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 515c19fa2cb5f843683d97d6e4220b6f
d12f829bb4a85567eb295693dfd5d7b08f067053
b4c617070c50e940414f03f0d238dc0708ab99ec926054ea9e550ad3da588aeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4C617070C50E940414F03F0D238DC0708AB99EC926054EA9E550AD3DA588AEB"
Last-Modified: Tue, 25 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3641
Expires: Wed, 26 Oct 2022 09:48:00 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
cola.trffclb.com/a.php?p=c:xecd97ulmxry7e481&d=62ff4322ec41a549b07c0d74&pid=6358f41655103c4d3b2d49be&source=888.no.firefox.
51.83.143.92302 Found 0 B URL HTTP/1.1 cola.trffclb.com/a.php?p=c:xecd97ulmxry7e481&d=62ff4322ec41a549b07c0d74&pid=6358f41655103c4d3b2d49be&source=888.no.firefox.
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /a.php?p=c:xecd97ulmxry7e481&d=62ff4322ec41a549b07c0d74&pid=6358f41655103c4d3b2d49be&source=888.no.firefox. HTTP/1.1
Host: cola.trffclb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 08:47:19 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12n1frmxnl
Raund: 2h2
Location: https://go.redanemone.xyz/redirect?feed=465513&url=cola.trffclb.com&subid=custom_12c7dmujng.no.linux.firefox&pub_clickid=6358f4174aa5f9021972cce5
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2224
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2224
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2224
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f8e8b2-cbee-42dd-a8d8-d4165e9a97ae.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f8e8b2-cbee-42dd-a8d8-d4165e9a97ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6dbedb2a47310dcc21ddb2f9c15ca08a
aa1c7300ce49a977fc7ed17534d48c04ec8c34fc
dc4edcfaa03bcccfd66cdacba33167877be7b0b746b9028fe9d82d71feefed2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f8e8b2-cbee-42dd-a8d8-d4165e9a97ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3695
x-amzn-requestid: 1f93357b-84e1-4d8a-acb9-1dd1cef05850
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alLEGEC7oAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585880-2b8258fe17c7b32b32f1e19b;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:43:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: N_LCkzwXowXaHNsLExt-MvDWM1OLJ_RFvTGD_s9KY16q9nHT0mEftQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:56:02 GMT
etag: "aa1c7300ce49a977fc7ed17534d48c04ec8c34fc"
content-type: image/jpeg
age: 39077
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 656b64fb178a96cdeab7d54d0d3df5ba
f628269fc4ba16b1c4b11a8bc965a7dba93755cb
eb1126cfc2a686ea8d845a4898d904a133ff3284578f3a42a45fe01138df6c8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: d7e1e331-09cc-4bdd-83a3-594b65e50d79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK-TEWXIAMFoCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358585b-6e2c04ed0d36eea85de94a22;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: b89C7sl-8jR1VviZlenbR1NYN96IhBfbU44KhRuy5oT2Db1NbFZqvQ==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:11:46 GMT
age: 38133
etag: "f628269fc4ba16b1c4b11a8bc965a7dba93755cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NQJHFIbLMzw0aGwCkVGIEIHOMHprTpvLkLQRKgrGeVj35sk7sW4IUg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:36:34 GMT
age: 29445
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db946866312c734e0c5f91ca76255b2f
e8b8236baab9106a426a415eb01494cc4cc91ad1
a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pf98qKWMjPBID3auXFKPhj1kt67xEWF_e2CpRMQ7_HkPJGzJ3cK1qw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 07:18:26 GMT
age: 5333
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31b4aeea1b2ae94ffa8c30670ae59c76
4fa5babe829c0a1d1666bea9962ab15898fdee06
4bf0180c987d1387746c0feebf244f3599a1e92e7e785bf50139158297956ac8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 6919dfeb-fcaa-4a8c-8314-1c1f5ea02d6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajLO3FAeIAMFbtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578bf8-0364907e17f894504adf64bf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NWg0cuQafdGfaKgypa0lUvJybQPS1XUMajdLc13AzxSUxjghMxnRzQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 07:16:53 GMT
age: 5426
etag: "4fa5babe829c0a1d1666bea9962ab15898fdee06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sVS9nFgRyVconkkFTOrCO2zA0cICFNQFB2E1q7SQcVQm5_Dm6khvrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:40 GMT
age: 39519
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d36b45db73014b7b3a5c72b9c2b3293
1209acde9dc24094889aba433af3b635b77c0dbb
99cf614ba3f60f7ef9ec3e6097ca65cbd3fb06157186ca5b943fecf1f7b984c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99CF614BA3F60F7EF9EC3E6097CA65CBD3FB06157186CA5B943FECF1F7B984C3"
Last-Modified: Tue, 25 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16589
Expires: Wed, 26 Oct 2022 13:23:48 GMT
Date: Wed, 26 Oct 2022 08:47:19 GMT
Connection: keep-alive
go.redanemone.xyz/redirect?feed=465513&url=cola.trffclb.com&subid=custom_12c7dmujng.no.linux.firefox&pub_clickid=6358f4174aa5f9021972cce5
198.134.116.30302 Found 0 B URL HTTP/1.1 go.redanemone.xyz/redirect?feed=465513&url=cola.trffclb.com&subid=custom_12c7dmujng.no.linux.firefox&pub_clickid=6358f4174aa5f9021972cce5
IP 198.134.116.30:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=465513&url=cola.trffclb.com&subid=custom_12c7dmujng.no.linux.firefox&pub_clickid=6358f4174aa5f9021972cce5 HTTP/1.1
Host: go.redanemone.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 08:47:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Age: 0
Location: http://c.srvpcn.com/click?id=cdcf863jdlhtnitlmhag&e=42eb96c0-5e48-45c8-903d-cb90fe35c04c&px=34
Pragma: no-cache
c.srvpcn.com/click?id=cdcf863jdlhtnitlmhag&e=42eb96c0-5e48-45c8-903d-cb90fe35c04c&px=34
54.144.72.99303 See Other 0 B URL HTTP/1.1 c.srvpcn.com/click?id=cdcf863jdlhtnitlmhag&e=42eb96c0-5e48-45c8-903d-cb90fe35c04c&px=34
IP 54.144.72.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?id=cdcf863jdlhtnitlmhag&e=42eb96c0-5e48-45c8-903d-cb90fe35c04c&px=34 HTTP/1.1
Host: c.srvpcn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Wed, 26 Oct 2022 08:47:21 GMT
Content-Length: 0
Connection: keep-alive
Location: http://bilqi-omv.com/zcvisitor/cd41f841-550a-11ed-904b-12dd5323ec9f/e3e39f70-3459-11e9-9a51-0a15cb739170?campaignid=fdb48d70-48cc-11ed-a334-0a918cbcbb97
bilqi-omv.com/zcvisitor/cd41f841-550a-11ed-904b-12dd5323ec9f/e3e39f70-3459-11e9-9a51-0a15cb739170?campaignid=fdb48d70-48cc-11ed-a334-0a918cbcbb97
3.212.50.125302 0 B URL HTTP/1.1 bilqi-omv.com/zcvisitor/cd41f841-550a-11ed-904b-12dd5323ec9f/e3e39f70-3459-11e9-9a51-0a15cb739170?campaignid=fdb48d70-48cc-11ed-a334-0a918cbcbb97
IP 3.212.50.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/cd41f841-550a-11ed-904b-12dd5323ec9f/e3e39f70-3459-11e9-9a51-0a15cb739170?campaignid=fdb48d70-48cc-11ed-a334-0a918cbcbb97 HTTP/1.1
Host: bilqi-omv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Wed, 26 Oct 2022 08:47:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://go.money616.xyz/s3?sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q
Server: MhiNryYo
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash afca6d9bee0dd0c84961fbb9093acd16
ebcaee36d1c93c0a5c8d0eb18d23ce59f11909e9
6445a1096de132d65ca533a8d6753f23cff832dc75d65151f0add23b7df2bb91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6445A1096DE132D65CA533A8D6753F23CFF832DC75D65151F0ADD23B7DF2BB91"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18
Expires: Wed, 26 Oct 2022 08:47:39 GMT
Date: Wed, 26 Oct 2022 08:47:21 GMT
Connection: keep-alive
go.money616.xyz/s3?sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q
18.184.197.212200 OK 1.6 kB URL HTTP/1.1 go.money616.xyz/s3?sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q
IP 18.184.197.212:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (384)
Hash 258a33ea71190840bdfb5ea52bb3fb89
e25ccd88bd07c5c3ea7f6e838f361ef798629f34
77f9f235551391cae70a38f4921cdef222107eabf1df16447450b734e96ddcc7
GET /s3?sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q HTTP/1.1
Host: go.money616.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
connection: close
x-content-type-options: nosniff
content-type: text/html; charset=utf-8
x-powered-by: Short.io link shortener
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
content-length: 1571
Date: Wed, 26 Oct 2022 08:47:21 GMT
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4b4947263357a5cf383a519dcca40228
cfacf43717b7f1d77314dae8390737274d913315
3edf03c09f18dfb6c8677c751e99f9ab6e26890c438338338dcfb218b8d7162a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 22:25:06 GMT
Expires: Sat, 29 Oct 2022 22:25:05 GMT
Etag: "cfacf43717b7f1d77314dae8390737274d913315"
Cache-Control: max-age=307663,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7601ed40eda9b4ee-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4b4947263357a5cf383a519dcca40228
cfacf43717b7f1d77314dae8390737274d913315
3edf03c09f18dfb6c8677c751e99f9ab6e26890c438338338dcfb218b8d7162a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 22:25:06 GMT
Expires: Sat, 29 Oct 2022 22:25:05 GMT
Etag: "cfacf43717b7f1d77314dae8390737274d913315"
Cache-Control: max-age=307662,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7601ed424f70b4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 316d58d16e4307ff8a1517369d706049
c630ac85ebf594b30f78fe9df578b7af4946ace0
48082b810b54fe430343de8871974d4258ca002e44a93bee1fb9bd72514b03f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4950
Cache-Control: max-age=150129
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:22 GMT
Etag: "63588835-117"
Expires: Fri, 28 Oct 2022 02:29:31 GMT
Last-Modified: Wed, 26 Oct 2022 01:07:01 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
adspredictiv.com/jump/next.php?stamat=m%257CdTI2NuIhaQdHkAH0dEdHP3xP.36a%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWVyZXFTmcjo4pMbYhNGMKKWbZJB4xmjtSqxD27qC5W1bbvo7eHG4syGtHvXgrAck0hDk_PIiNZIAOPTwTLsXyVA%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q&cbur=0.24548292630949076&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F
35.190.38.40302 Found 280 B URL HTTP/2 adspredictiv.com/jump/next.php?stamat=m%257CdTI2NuIhaQdHkAH0dEdHP3xP.36a%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWVyZXFTmcjo4pMbYhNGMKKWbZJB4xmjtSqxD27qC5W1bbvo7eHG4syGtHvXgrAck0hDk_PIiNZIAOPTwTLsXyVA%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q&cbur=0.24548292630949076&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F
IP 35.190.38.40:0
Hash 2e0dbe6fe3ae76177e22caa657763952
238cbf9f39410aef383358e0de2116608cb36d44
137bf189c86f26c4e3b6dd72ca451d64103515bcd360123df000efa74150b9e9
GET /jump/next.php?stamat=m%257CdTI2NuIhaQdHkAH0dEdHP3xP.36a%252C7H0PozvLiGV-YkDx825CHq_5mNyzZhovkYDfyjWLDI0Sb21IYsIWB7DkTq9zqOvWVyZXFTmcjo4pMbYhNGMKKWbZJB4xmjtSqxD27qC5W1bbvo7eHG4syGtHvXgrAck0hDk_PIiNZIAOPTwTLsXyVA%252C%252C&cbpage=https://adspredictiv.com/jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q&cbur=0.24548292630949076&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=https%3A%2F%2Fgo.money616.xyz%2F HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 26 Oct 2022 08:47:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://adspredictiv.com/script/i.php?stamat=m%257C%252C%252CQjNqN2IyoGU3B5-GH0dEdHP3xP.071%252CZcy_qoUcsBPHaua8ZXfiEKSCzHYOvji8O2W_89ukti6kmvSHqz9DkRFupZiw5Y8qwB481vQ6XHCk0Qw--QLEDKjXrm-EQxwq34Ip5RttxjKRPsFrh8ytrfLgnOOE7IXohbQMAqYnEp_JHDELD_t46xRA-7wySoMn6S2CIYq_Lm5IL0FXnWeso3rTGL5GIaYbtfRleFkCwvE5U15IGFlkWL-g_4oW0-K2evh_nWZg7mLrbt94p-QQ8S33e8pPNWLYi-mbefiic-O_OREu48VvUqdZiWKSoP8Vx3_U8g97yXUGkv90sx927NY7fG8Btq8DF7qiha8JFuPtvdjGT7Drxpb-6ip39CX7XDWBXIqIUBtggwwEWUnaK7f4pP4__PRfjWj_XBSY9rU8_RZQV0FcHDdfU_OAnv_48wC_uM1rBSUiT7WICOISwt7RrlV2-Xuwx8EkBhvhobaCq2w1qqPnAbMv0nZcOPP7PLZdSPCGPPzWhKk0WWY3tUavV6QlMeRsFW7GO7hFSwyzY7BrIxXJlb0eRr9V3qJ8Tg0N_ElAM3fFxsDHCw1wMDDkb5_3GkH4fVgWXoiURXxgw9Byc7LHTQ%252C%252C
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E9QBCJNBNS
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash 85709224d1c754fe35001977036c625c
1827f4adeb067456ad7a9d3f9c471d45530827c6
4beb52e132893b8eabc5ac3c07b2584c2b634f6c6688b58cba17cc5330e9193f
GET /gtag/js?id=G-E9QBCJNBNS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 08:47:22 GMT
expires: Wed, 26 Oct 2022 08:47:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76049
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
med.etoro.com/B12616_A89099_TSlick_S166677404210000TNOTV415326358024Va5.aspx
96.6.17.100301 Moved Permanently 0 B URL HTTP/1.1 med.etoro.com/B12616_A89099_TSlick_S166677404210000TNOTV415326358024Va5.aspx
IP 96.6.17.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /B12616_A89099_TSlick_S166677404210000TNOTV415326358024Va5.aspx HTTP/1.1
Host: med.etoro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://etoro.com/
Date: Wed, 26 Oct 2022 08:47:22 GMT
Connection: keep-alive
etoro.com/
2.22.37.169301 Moved Permanently 0 B IP 2.22.37.169:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: etoro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.etoro.com/
Date: Wed, 26 Oct 2022 08:47:22 GMT
Connection: keep-alive
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 7b4564ae957eef3a8302343f44c5cfb3
296c38b2ae23a31d80201b32a38c02e75de27c91
15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Wed, 26 Oct 2022 02:02:31 GMT
etag: 0x8DAB6F624527072
x-ms-request-id: 1d22a46b-001e-009a-01ec-e85423000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 9877
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed48fd5eb511-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
104.16.148.64200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (2829)
Hash b9eadb6d05b9bafe419aa99f68097df2
d850dc819264475c6d1cbe6e8419a1016a659db2
a4592788dd762df3672b970f81802bf8325dfca74ed394118867bc4946983f61
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/x-javascript
content-length: 2072
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: uerbbQW5uv5BmqmfaAl98g==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D111A88
x-ms-request-id: f237f594-901e-0118-62e7-f0b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 8815
expires: Wed, 26 Oct 2022 12:47:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed48fd5bb511-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-3.png
IP 23.38.201.117:0
File type PNG image data, 322 x 432, 8-bit colormap, non-interlaced\012- data
Hash b7322c639dcf276550e310727cf76893
136b5f1a82788708f04b74a30fcefdadaff00e43
6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
GET /cache1/hp/v_250/images/instruments/t3-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ynBcBZLuM0g8KM2F3SRl5wWRChG7u8muIqcCU58ccgoEdfV0x23Je45/tjxzNW1Pv46uF30VAQQ=
x-amz-request-id: BJSN68QDJ2WRDK40
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "b7322c639dcf276550e310727cf76893"
x-amz-meta-sha256: 6123cab143cf8d85ef530972afd495cac11d35c417b90d8ec05724db5bd4bd3c
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: r9skgKWaP8RVY9nRMto5PlKboL4BQb73
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11012
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/assets/css/onetrust.css
23.38.201.117200 OK 2.7 kB URL HTTP/2 marketing.etorostatic.com/cache1/assets/css/onetrust.css
IP 23.38.201.117:0
File type ASCII text, with very long lines (885)
Hash b3f403de6d79b34f32dba5e4effaabc2
7b436b6060e88daf19f12bd27cbe2533d25a2343
3ec0cde05873dde93c16f4b4f3b7ca7e236ba4e82ab595ee8f13b959f5b2813a
GET /cache1/assets/css/onetrust.css HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7vqiIPn64ptqVNwIM1fvJGjbv11IUdsOT6JKR8Cyxsr81DT/4uax9s7iGzI7fTeV0SwX20GmqJE=
x-amz-request-id: Z3V5BX28EG5962WS
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 12:30:17 GMT
etag: "66e8b2c112ebb5bb9b4fc326d3d5f87b"
x-amz-meta-sha256: 55c8a3b763077bf16466a3a9af5b7e5b2baba7d345cd90b50403058a633bda48
x-amz-meta-s3b-last-modified: 20220616T122823Z
x-amz-version-id: Qcu9.b5PJ70a2SNFK2gJjtsbcFrk1Lur
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 2655
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
23.38.201.117200 OK 43 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-4.png
IP 23.38.201.117:0
File type PNG image data, 660 x 684, 8-bit colormap, non-interlaced\012- data
Hash 43f62ee21492814c91e306a57be05ee7
77e0ddcffc72c83f9c6690f521a4594d0eacdf7a
55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
GET /cache1/hp/v_250/images/instruments/t3-4.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CQyOioDgEwsXle/cn0DSfXbIj4PtX6wwvvY03kgw+sPBr5gMr79OxJ6rVKvDrcsLStc69BjQXWU=
x-amz-request-id: BJSNRPZPM3RB1Y56
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "43f62ee21492814c91e306a57be05ee7"
x-amz-meta-sha256: 55dc7c105ed71ed3781f433e6dd1943311e87e7d7330f9f11f10f0e502c170aa
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: ZJ9bAs_aawgIHhTc3zcLSZS.lxwDFu4K
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 42876
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1bg.jpg
23.38.201.117200 OK 72 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1934x1230, components 3\012- data
Hash 2b8c66295f644aad1bbd97bffcf8f910
f34b342b50c43263d6c130286958086addefd3d6
923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
GET /cache1/hp/v_250/images/instruments/t1bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YFTNty5SIcdhKq450TYHwf7SRkH10wCrNu6VxS0n04wBpLStduNxmbhS13gnNaIasJR4Ietz9UY=
x-amz-request-id: BJSVX197ACP9V7RR
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "2b8c66295f644aad1bbd97bffcf8f910"
x-amz-meta-sha256: 923d9c95a2e280eafb71ef8bae9001ce3bc574272986250090409b8e10b78472
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: rXQsdf5tcUphlZZ7QaAie.wlAbWxbLl7
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 72188
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-3.png
IP 23.38.201.117:0
File type PNG image data, 450 x 392, 8-bit colormap, non-interlaced\012- data
Hash f61c9d2ed729320b71af181ff331cb79
182f5c37accdde48b36e7803de6251cc92319b86
11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
GET /cache1/hp/v_250/images/instruments/t1-3.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 92R24GLatFUU0eh05veMnGqcA2KrIVfsdBz9zWssCytuT0e3Lb7tPc2v9A+iyx7fTZjRCEWnHVc=
x-amz-request-id: BJSJMDWMK7ZCK773
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "f61c9d2ed729320b71af181ff331cb79"
x-amz-meta-sha256: 11cf27e9710e187df6c25c3ed4ce130f8d35d9126dbacd711f68b0d2b7996763
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: YkW8_gVG77z0IkOnT2pWi2camXx3AgiY
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 31786
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
23.38.201.117200 OK 11 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-1.png
IP 23.38.201.117:0
File type PNG image data, 744 x 504, 8-bit colormap, non-interlaced\012- data
Hash 5a95a095169c27431449bf549b99993d
91a11cffc857dcaa2b38fa901423b227870ac1e4
681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
GET /cache1/hp/v_250/images/instruments/t2-1.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: K4TQrvgv6tHAKlL+ySccGF7oIFbHIm62RTqZ2kB54E9ph5Z0n4O9Fr37Li7vBlcPNEqBlNn15Zg=
x-amz-request-id: BJSS8ZSZ4K6J87Q8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "5a95a095169c27431449bf549b99993d"
x-amz-meta-sha256: 681caf8f93ff1be67796803a478cd4cb5df61fc228bd7388056599430d44a708
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 6s15Jbvt_YhVTfS.Qm19BI1gvokKxcHz
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 11234
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
142.250.74.46200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-55ZB4XN
IP 142.250.74.46:0
File type ASCII text, with very long lines (1588)
Hash d1f9b2d6ddc108d20e955b32afc92329
9de2f90a93163d3ca6215c687c55131aae69c7ae
d239c8f2bea12634f6cbfe51c9a11a741f8f1672dc7a90ab187925b12c74d52d
GET /optimize.js?id=GTM-55ZB4XN HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 08:47:23 GMT
expires: Wed, 26 Oct 2022 08:47:23 GMT
cache-control: private, max-age=900
last-modified: Wed, 26 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42908
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
23.38.201.117200 OK 94 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x2160, components 3\012- data
Hash b05c8e47e71ba8a0fe73a0da54f010ef
f26455efe60bcf1e74e693574e482b0a952e3de9
2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
GET /cache1/hp/v_250/images/hp-2022/cover-desktop-half.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zqCA8I7VwQ4OM57SeL41enO3ZjqGkwlCS7cjlH8/RylZXzy3zQnrVtSi0iaVUFdNRZjfpzfdllE=
x-amz-request-id: XSS69QHT5BYHDT0P
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:38 GMT
etag: "b05c8e47e71ba8a0fe73a0da54f010ef"
x-amz-meta-sha256: 2c763340f1c0aa9c8bbd9b138ea1a054282b17e1fd2831efed5bbd74c09438d7
x-amz-meta-s3b-last-modified: 20220920T161111Z
x-amz-version-id: VChvjEsOHCDhESR_vRlWIZZI9qChCEb_
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 94463
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2bg.jpg
23.38.201.117200 OK 67 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 19c57357b906758af6469a6b2a2c8846
e360a5922a6d44ca6066ff5dff01ef2440fd7368
358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
GET /cache1/hp/v_250/images/instruments/t2bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CzOhkgu5Y0R6HoaBI3spOEsIC0ULFFWfQP/StDzqj7O8zeKrbqTF2gmrAiXeQrLylU+M0/ANeRM=
x-amz-request-id: BJSZ59B0WDG7GH0E
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:25 GMT
etag: "19c57357b906758af6469a6b2a2c8846"
x-amz-meta-sha256: 358be7efee5b5551b4c5a7d977226283bfc40d89b01417e354aa1bfc098da8a2
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: RNRY.bWk105UAkjO4Db33xjz7lHZilcf
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 66908
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
23.38.201.117200 OK 115 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t1-2.png
IP 23.38.201.117:0
File type PNG image data, 588 x 638, 8-bit colormap, non-interlaced\012- data
Size 115 kB (115422 bytes)
Hash a0edff04cdbe03fe84f35b2368beedd9
6231c9d9265502517533892d8a0f42d5790c0310
51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
GET /cache1/hp/v_250/images/instruments/t1-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CLncvM4L18ZkiKjHvjGrOYpGKksF2UJqMLsRtr7/JixW0QqS6mNX7SWENSlm9Aj8le9WdCqQ7XM=
x-amz-request-id: BJSTAV1CC0CZR8SW
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:23 GMT
etag: "a0edff04cdbe03fe84f35b2368beedd9"
x-amz-meta-sha256: 51a46214b92336ada7340f10305a167388d3421a6cd322090db15d5703dfa7d7
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: gsLHL9_akY3qvzziYmuZ43tVdbQ8cOch
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115422
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
104.16.148.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4265), with no line terminators
Hash 6439835da3e85cb6917ac06b2dab2b37
b65ad002a7c48559e9124256295c1c688e8f3084
bd2d9654f22da1c44528cfd8a925b24a3b015d80bee375849d1e8800a8970c21
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f72d065d-437e-4ee9-87c6-475882c9f118.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/x-javascript
content-length: 1490
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ZDmDXaPoXLaResBrLasrNw==
last-modified: Tue, 14 Dec 2021 12:34:46 GMT
etag: 0x8D9BEFE1D14004E
x-ms-request-id: 16122373-c01e-0026-35e7-f04352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 6268
expires: Wed, 26 Oct 2022 12:47:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed49ae32b511-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2.png
IP 23.38.201.117:0
File type PNG image data, 668 x 938, 8-bit colormap, non-interlaced\012- data
Hash beb13238cf465f668c413a022f5633c8
31760dac17b8e58942c79708a4616c3a1df4b233
88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
GET /cache1/hp/v_250/images/instruments/t2-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ky3vrANJhtTj+F60HsRTmFy7QMNFEWRYKVWaE2DyXeaBTBmkZn6svQRqLkPAK6t0vCsNwJQ9vwY=
x-amz-request-id: BJSN4THC2967ZG2T
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "beb13238cf465f668c413a022f5633c8"
x-amz-meta-sha256: 88e45ef77d50a2091ec00708b669d6d306bf4dc8ea78984a2a9bc14318abe6db
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: 42HIJXJNQSkchYiJUGINB9CQEa72HNtD
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21388
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2a.png
23.38.201.117200 OK 1.5 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t2-2a.png
IP 23.38.201.117:0
File type PNG image data, 136 x 132, 8-bit colormap, non-interlaced\012- data
Hash 6bedb1b3afc69447f7ea0c00993b53a8
1281f1fd5df23a9a19bd8573619007d04f6047ac
55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
GET /cache1/hp/v_250/images/instruments/t2-2a.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ufl333+IK+sRnq39yz/zLZBDDGAqJ3hqjeULNbOsy81coHYrh0pPuwNsCqrWwdm0Uvjiqbr3ti0=
x-amz-request-id: BJSJSH4E3B2X317K
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:24 GMT
etag: "6bedb1b3afc69447f7ea0c00993b53a8"
x-amz-meta-sha256: 55900142e5def76acbb70acdb21d824b8b06f6d90a9a52fee556a5c3d3e1dab4
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: uxnagM4KgutOS.DThfIN7h9TDKtsInO0
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1473
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
23.38.201.117200 OK 59 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3bg.jpg
IP 23.38.201.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1933x1230, components 3\012- data
Hash 6d94c8cb40dfa33fccc8b4800f2c7e0e
745c0d98d4cde90d8717feadfa120e0cc20dab1f
a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
GET /cache1/hp/v_250/images/instruments/t3bg.jpg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XyBWTcKB6ZnhqlKK/cUvo3Mkusx8tebxk8v4iJZ1SngSydT4rYfmHqKA1NPou6jsVLdVHFTSpuc=
x-amz-request-id: BJSW4ZMF254PA5ET
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:26 GMT
etag: "6d94c8cb40dfa33fccc8b4800f2c7e0e"
x-amz-meta-sha256: a0bb83d719f2fdf76bae2c031b6a10875676bf1d0c47dae43c8182b7b8f95eda
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: pyA8G.VrAE4shNTZPyu3hFkUKsSZGk39
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 59017
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/instruments/t3-2.png
IP 23.38.201.117:0
File type PNG image data, 436 x 390, 8-bit colormap, non-interlaced\012- data
Hash dad8f4f5e1f7c6afaa7a1d02bbad4aae
7c47738ec815ba441c70d30967035c1a2c3a34ff
82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
GET /cache1/hp/v_250/images/instruments/t3-2.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: vYYw4/nX6J0XwQyBd7Bxo8ppBa11euWIhuDvwJG3+nyQlemDKpJ4ol5vRCRWMd3J1rhCuy9Zzfk=
x-amz-request-id: BJSG6VSZV3NPRZZ5
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:25 GMT
etag: "dad8f4f5e1f7c6afaa7a1d02bbad4aae"
x-amz-meta-sha256: 82d364f0c185402cc8da9b63d834ba5056a6e814d452879c1df6cd9cfbf8d2b5
x-amz-meta-s3b-last-modified: 20220907T173456Z
x-amz-version-id: .ea0J.LF3Tey.FSpyPfEDCWl6aYThAFP
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 21261
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/logger/logger.js
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/others/logger/logger.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (5055), with no line terminators
Hash f620bec033fe844135374191b331937d
ef75dd9e7bddaaa53d9171c7b6869f5d72553f51
c61b3f992c23497120340e96694c29b94ca8b2576820677e0432031b636eee87
GET /others/logger/logger.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rFRtyRRvy8awZWbEw8KKBuYcsMr0FOn3VrHsw7WXTDWRDWcW8NmTXAtMX967njSth5isxYRudTE=
x-amz-request-id: 114803B553D57FD9
x-amz-replication-status: COMPLETED
last-modified: Wed, 15 Jan 2020 16:04:01 GMT
etag: "3a046ce8f3379b2e5a5fa5ee3ed02808"
x-amz-meta-s3b-last-modified: 20200115T160219Z
x-amz-version-id: RlsNx2j0zjqTyHD11R2PocORgBI_87x2
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 26 Oct 2022 08:52:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 2285
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7cfb0a15ab560f6a5f5bbc598de512e4
2186a0e13c73aeb96a4615cd450ec144657b5ba8
14d2a753c8b2ad001cfd76a52dbb525c2d9ee159aa9e9b65e82f09ea4daaf632
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3678
Cache-Control: max-age=127598
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:23 GMT
Etag: "6358352b-117"
Expires: Thu, 27 Oct 2022 20:14:01 GMT
Last-Modified: Tue, 25 Oct 2022 19:12:43 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 277 B IP 93.184.220.29:0
Hash 7d639bbed10a2d4d69a3f0de9fe3708a
d8dd8c5c7b2230cc13df12af3d59f0086bafb9a6
2c92353a0def89a52c8340fc4073f84a5d12ffc69629fc6c7d96623b26816f14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4001
Cache-Control: max-age=98424
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:23 GMT
Etag: "6357c1f3-115"
Expires: Thu, 27 Oct 2022 12:07:47 GMT
Last-Modified: Tue, 25 Oct 2022 11:01:07 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 277
cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
104.17.225.78200 OK 0 B URL HTTP/2 cdn.fonts.net/t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=1be8a670-63f2-11ec-84cb-06c8b378e9d2 HTTP/1.1
Host: cdn.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: text/css
content-length: 0
x-amz-id-2: 0YZ0H80/30MgBTG2ijPKvwK2o4c7bg1oKeBH6NC/Vct0AWcwyu8ktTQ8I/j+udXxbuBe4+WEVrY=
x-amz-request-id: K2GEEGSX18GPYAHC
last-modified: Thu, 20 Oct 2022 08:49:27 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=300
cf-cache-status: HIT
age: 518262
expires: Wed, 26 Oct 2022 08:52:23 GMT
accept-ranges: bytes
set-cookie: __cf_bm=sJ1YudX1GPGhzEUpZ5oGXhX7n8VPQLwFUoSQahhodB8-1666774043-0-Ae86mZeTevxnf1gleygBaUEfG3RLX9NMJbRCLdqMwPZgmHVY25g97KjTuWiJcFm8+EvW6rgMCXe+6TSCCyy+8Bs=; path=/; expires=Wed, 26-Oct-22 09:17:23 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7601ed4a1d7e1c16-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Regular.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31960, version 1.0\012- data
Hash 4a61fe67108ddbb01a2ceaf3687ba30e
3a60eb0e91c3f79e58c93ac63f040f07c5c4e058
2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
GET /cache1/fonts/madera2/Madera-Regular.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: giTQxaaku6b/my15IZ7MGbnS0j3R+Drz9aYHcOnTWdLimAm+vlONGNcGBk1VXAhvbuCj0dmjAZs=
x-amz-request-id: RB02W0BVGXZQ1Q0C
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:32 GMT
etag: "4a61fe67108ddbb01a2ceaf3687ba30e"
x-amz-meta-sha256: 2be6e9d5643e9857ffdb9f65021173c77f920dac2e106ee31b2f38608d5ac661
x-amz-meta-s3b-last-modified: 20220203T192734Z
x-amz-version-id: rdjZTCyTVtTzW48kSfmVzYhmpJIbNpae
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31960
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
23.38.201.117200 OK 17 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/flags-hd2022.png
IP 23.38.201.117:0
File type PNG image data, 830 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d14115558936d84e16ec7efd2f4f45
a6268986699c86e577ca5589a0fcf2880661f7ea
68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
GET /cache1/hp/v_250/images/flags-hd2022.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TBVqRoB02EDyfVmR0znW/MNspedH9bXBBIhZ5E5yqJ3jEmjjuff+OOrTSAXRCNf4skiXRHJz8GQ=
x-amz-request-id: Y4J7D71XBE8X7XME
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 15:06:18 GMT
etag: "69d14115558936d84e16ec7efd2f4f45"
x-amz-meta-sha256: 68de9a9df604b303ce3c1c4fd7f977ecd4eeea196253f88d01d605a262c72a26
x-amz-meta-s3b-last-modified: 20220920T144902Z
x-amz-version-id: otKQpwD91003SDrhrFJwP7u7k7kYEK4v
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 16703
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 11992, version 1.0\012- data
Hash 1f385d1ea2e1c06cda506bafc17a4a94
0dc0ebf0502018976383091908379054b5a3cfed
e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
GET /cache1/fonts/tusker/TuskerGrotesk-3500Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TnE1OvfRhb4wemqIMdAklRBV9anTek/CjSVpczlM56PMWdd3Awm6/s25i8C/yNMd3Kztf88tMvY=
x-amz-request-id: 0RKDVHM0FMVA32ZS
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:49 GMT
etag: "1f385d1ea2e1c06cda506bafc17a4a94"
x-amz-meta-sha256: e71acf0321143c30f016a710cfb525b48b2ba940ac7d83660614082eb06880ca
x-amz-meta-s3b-last-modified: 20220206T231742Z
x-amz-version-id: U.WW5Nm_KS0r7k_Vxl0S9.MycmUEi2Pu
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 11992
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
23.38.201.117200 OK 12 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 12028, version 1.0\012- data
Hash ee570da55652b90a2222880a1ece7323
d9a81b65239041b42c6aed22f5809797f0574c1e
26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
GET /cache1/fonts/tusker/TuskerGrotesk-4700Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xDtdJzSi21sF7CpiuxjIbrQdQrHfCf0qZSuIYVXllN38HVN7OiOcLrLEIAOZRHPfr0UXkqds/bQ=
x-amz-request-id: 0RKEXE4EJ8774W83
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 06 Feb 2022 22:24:52 GMT
etag: "ee570da55652b90a2222880a1ece7323"
x-amz-meta-sha256: 26c2ac92dcf7740f3239e5c1dc01c2e90bf468aacaea52438db80c031af94962
x-amz-meta-s3b-last-modified: 20220206T231740Z
x-amz-version-id: _nNBWNk.b.aBJaK32Y.ScZnJcz4Is6Dl
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 12028
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Light.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash e20f6e1c0681c07f69d37c428c0684d3
4aa36ecd12f2e7d3592807a0a3879914252faeb5
c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
GET /cache1/fonts/madera2/Madera-Light.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TVzcGMyrSRRAiX3OtO+JaeCIIWTuUd+EwTnEzNsZ7AgFflv7+H3xjLd4Nk7ctVtZpx+Ie+enpiQ=
x-amz-request-id: EXZTJQVA4Y4CV0JC
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:26 GMT
etag: "e20f6e1c0681c07f69d37c428c0684d3"
x-amz-meta-sha256: c2dfcbd62bd88bad9f09d80b0d1b2de5bf8276e6586a5431839c7ce9393fd4f7
x-amz-meta-s3b-last-modified: 20220203T192738Z
x-amz-version-id: TUjDnqX6S_vwWlvloC3aK3KdDGBYmBw_
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31636
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Medium.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31844, version 1.0\012- data
Hash 9d7f82d9510b57b2d00f328d87ef3869
2a031c8ae51e62d8dc30fa0bb47f57a3695224c1
c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
GET /cache1/fonts/madera2/Madera-Medium.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: d6poWwwwj9abPq/ES4oNvQTY1I4y2hMv1EdVnTf07kpNv7a2N1tn1ySx9pMV8KWPcG6wwi1unZI=
x-amz-request-id: K8KWP566ERFJBVE1
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:29 GMT
etag: "9d7f82d9510b57b2d00f328d87ef3869"
x-amz-meta-sha256: c464ce47b2b31c08077e73656eb309e07cecd335cbc93c87efe552e281de0815
x-amz-meta-s3b-last-modified: 20220203T192736Z
x-amz-version-id: VMc3owpvYk5nHUjZ.xX4Wq.u2RPawBMa
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31844
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
23.38.201.117200 OK 32 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/madera2/Madera-Bold.woff2
IP 23.38.201.117:0
File type Web Open Font Format (Version 2), TrueType, length 31920, version 1.0\012- data
Hash db85a0ddc6f6973df4bc98a1b2ed9d65
c6bba41edc8501b76aed9bff58597edef1c2502f
26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
GET /cache1/fonts/madera2/Madera-Bold.woff2 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WQ8beP0j6j+XiswbzEpXZzamytHc5Av0QHRr7qawf362iuN3koZ3ealTS4jkLvOGZ6OcInkYl0Y=
x-amz-request-id: RB02FFVVAVWJVG5D
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Feb 2022 18:32:24 GMT
etag: "db85a0ddc6f6973df4bc98a1b2ed9d65"
x-amz-meta-sha256: 26902b4d0a3ba49a4a9b3aa0c8f9c185270ee162252f78cec00c831c9f5b05f8
x-amz-meta-s3b-last-modified: 20220203T192740Z
x-amz-version-id: zGguxQ5kSDF0NdIOnvToUoLZcOnV9szR
accept-ranges: bytes
content-type: application/font-woff2
server: AmazonS3
content-length: 31920
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
23.38.201.117200 OK 2.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/waypoints.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (8887), with no line terminators
Hash 1d2137aea2d4a9fca68a7b135e2cb9f3
e97ca29d385352fc286f1711bbdc45584161a316
ea701f82ca58f8a09ebd7d00a58deb97c1c2a09ecdd3a5486e91dab13f98113e
GET /cache1/hp/v_250/js/waypoints.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9lFezzLGhy5accCsGYcyDyckewdqZE6Df8H6ytpCQuSWrMcKQiCNX7H2YhvOccJk0UxxBNsnPHo=
x-amz-request-id: 5E8B8NFW9H2EH0EG
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "1b79decba8cf0c886b7be539cfdbaa16"
x-amz-meta-sha256: 291c0fb451ed0410d515b7c4f0eeb429cae40f52a560a67aed3de8d7210e75a3
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: OAj0wpBsOOe0r5kxCMrusioy2xpCNFTE
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 2635
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
23.38.201.117200 OK 9.6 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/slick.min.js
IP 23.38.201.117:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 17232e2fe3e81d95e6f1cb7c4d5b9e57
510e1569ab0187ef5712a7630d673536e8c519ac
4bd093df7a16ca8f4d58c12a14859fdc0ef3f8ffb58c9b82126031787f2f5132
GET /cache1/hp/v_250/js/slick.min.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: JlrnGLJ6W/UxGhdYSC8CH8xghXbLPjPNChhyxW9KZUfoGKU71X7LjptjjFXM/+ltoatY8umxNmk=
x-amz-request-id: 5E85XVS4GHHW1N8V
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:43:00 GMT
etag: "823f2a98db35550b1d2a78f530b1c633"
x-amz-meta-sha256: 0cf4b4cdcf20a06c8cfb25a84b84e0c7e81f51cd78de9b6231a1b54ed0e0935b
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: YetQublaGzZokQiJoN6572gELuBFGXNz
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 9568
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.41.98200 OK 31 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.41.98:0
File type JSON data\012- , ASCII text, with very long lines (65396)
Hash 1b5fd6b670b613287516542a61ea47f2
a3f2ac45e23aff15f0223819cb1df93b8c4708e8
18571032879d797c21839c8a5a0fb0fc436e7d2d0aaa43556485bdf14d12f5e3
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7601ed4a2e09b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeaj0&_p=547650038&cid=738000067.1666774040&ul=en-us&sr=1280x1024&_s=1&sid=1666774039&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166677404210000TNOTV415326358024Va5&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeaj0&_p=547650038&cid=738000067.1666774040&ul=en-us&sr=1280x1024&_s=1&sid=1666774039&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166677404210000TNOTV415326358024Va5&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E9QBCJNBNS>m=2oeaj0&_p=547650038&cid=738000067.1666774040&ul=en-us&sr=1280x1024&_s=1&sid=1666774039&sct=1&seg=0&dl=https%3A%2F%2Fgoosebomb.com%2Fgogate%2Fetoro%2F31%2Findex.html%3Faction%3D166677404210000TNOTV415326358024Va5&dt=loading...&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Wed, 26 Oct 2022 08:47:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 5145d29a512dd12d28b54699ba44ee7b
e8b74e1691c570c69d2df50848797ebf3faaa31f
478f0b19d45667fdb4b3ae488ecb6709b392017ddd334e4ea7d35b8665054665
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3089
Cache-Control: max-age=113690
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:23 GMT
Etag: "63580124-2d7"
Expires: Thu, 27 Oct 2022 16:22:13 GMT
Last-Modified: Tue, 25 Oct 2022 15:30:44 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 727
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
23.38.201.117200 OK 21 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/apple-touch-icon.png
IP 23.38.201.117:0
Hash b2c5dbb8c9cfa2604db4aaae7b99a628
b0b1b13fc48c521bd3c09ba3658ebd54c342066c
d8d2ac90cc84878dd2e2fcf939aaf132a270fdd8473cec80564e2f2f053c8f6a
GET /cache1/hp/v_250/images/favicon/apple-touch-icon.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zS7BtNRDYQQ8zMJHkYU73f6dvQrBR4/jG9pLiV2+ECAWJIWOshj7kabGoiH6CH3KtwiY7bnoVT4=
x-amz-request-id: 85NM0JGJ52A3JDYD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:47 GMT
etag: "8d34d8eb122958024d6319988331e68a"
x-amz-meta-sha256: f14f9af8a7d4a1acaea97621a6d43cc34f1c430b318be76f58898d98efd9ab90
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: Q2EbxWG5EYMEKf0iJz44VFOyVRrx2PXV
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4959
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
23.38.201.117200 OK 1.0 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/favicon/favicon-16x16.png
IP 23.38.201.117:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 6f73b13c53883dda26ced7b25bdf69ef
a4743cd740ba05c518cc754a3ab2715f6a23d762
4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
GET /cache1/hp/v_250/images/favicon/favicon-16x16.png HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: q9Fv8gRd6+b337XtoTpjf0lXha/xDl8MDnEInDhNQHkRs5JLXmey+zDMgkhZFANHULI0QMT1Yxk=
x-amz-request-id: 85NZMGGA0Z9XBNVH
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:41:48 GMT
etag: "6f73b13c53883dda26ced7b25bdf69ef"
x-amz-meta-sha256: 4470f15d8d0268f1cf44bfc45a544baa38a6aa114dab9ad02b76b48034d156b9
x-amz-meta-s3b-last-modified: 20200803T094544Z
x-amz-version-id: 8hLOOpLCaCPyjH8.y7Cb39Asiw_Qt5uv
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1020
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
script.hotjar.com/modules.5f63ca60a03298133ad8.js
143.204.55.46200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.5f63ca60a03298133ad8.js
IP 143.204.55.46:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash eb4f228026ced3bcaadde65163571860
6b60d25e6ae4145acddaeab73a79b1698a1fc645
36480b075df69bd1ede20b9d23690cd5181d895899bb6cd1500afb48cd25ae25
GET /modules.5f63ca60a03298133ad8.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66045
date: Tue, 18 Oct 2022 12:18:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "eb4f228026ced3bcaadde65163571860"
last-modified: Tue, 18 Oct 2022 12:17:20 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: taStF12rgn9MsgIAWXXE2sN6dQ9wfg7-u5YBHkqoPBMMEOdPmGsL0g==
age: 678557
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
23.38.201.117200 OK 8.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
IP 23.38.201.117:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (58067)
Hash f953d5c71910c6ac52b43b461396312a
4f05910e43fe46b681cda2c81af778b5cd2d28b2
26a8ffd9765eda92a46eee6f2fd622e562ff124b394101c0118118ecca68c09c
GET /cache1/hp/v_250/css/style-newhp.min.css?v=1666613359 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: RfoPvqKXzaq3HI+vj6CoefVvf/rn2n4Ybn6GKCGCDpFtSSsEb3ieUmiGkL2VP8WWZnbBJe+joTo=
x-amz-request-id: YFFS03YFYAZHRAFH
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 11:22:06 GMT
etag: "eb05627089f6248f125b58845182861e"
x-amz-meta-sha256: a9f2f6aa1eda10879c3d4149f011cb5529f07bb4ab43c09bd61e5d81c88b0012
x-amz-meta-s3b-last-modified: 20220920T204059Z
x-amz-version-id: BS1lBzQzv2GL0QuRJy7fh_FPT1FP8XXD
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 8214
X-Firefox-Spdy: h2
vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
143.204.55.20200 OK 5.6 kB URL HTTP/2 vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2180)
Hash 86e278517ea8aa30745c30f4bf137acb
97214f5943a304e5fb98e4fa939b9d71c2bc986c
73856ee98a3d97514279d83656eb071a3a6139b112bbd8d1f764e19b1745c895
GET /box-c1417f7b48595d0dbca01c86f95d6dbb.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Tue, 18 Oct 2022 09:12:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "d2c298a660a1ee92f094a3d504e3e2e6"
last-modified: Tue, 18 Oct 2022 09:11:19 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xWco5CRe7TuSdjzf1kwZG8FvpjbPctd0miRpcgLcJAkZPq3DQ_cGDQ==
age: 689717
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
104.16.148.64200 OK 81 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (59161)
Hash 69c1900fb23007879fba20e7501d678b
53912e5f054f7f4b4a34e3da9b42f5fdee1ed3c3
090624616ef96ff3c2d242d77e1c54f425ab28ed9bd183590f0d5e69f31f4659
GET /scripttemplates/6.27.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/javascript
content-length: 78056
content-encoding: gzip
content-md5: 8eaHtBigP1U3b42ruIgxsQ==
last-modified: Mon, 29 Nov 2021 20:31:00 GMT
etag: 0x8D9B37727F240FD
x-ms-request-id: 7f82bfc5-f01e-0048-0667-33ea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 10795
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed4d7a8fb511-OSL
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
138.128.247.123200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 138.128.247.123:0
File type Unicode text, UTF-8 text, with very long lines (59778), with no line terminators
Size 142 kB (142281 bytes)
Hash c7a2bc5a539e9cf84bd08948e4b85fc6
ed0af98b6410956599424c97283e14d85823c0d9
3faae7feb50d28fd285d65a07fef6161f581f50734e6396c402f6bc912a766a6
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Thu, 27 Oct 2022 08:47:23 GMT
content-type: application/x-javascript
last-modified: Sun, 16 Oct 2022 18:20:28 GMT
etag: "6af44-634c4b6c-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142281
date: Wed, 26 Oct 2022 08:47:23 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/social-icon.svg
23.38.201.117200 OK 5.1 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/social-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2125)
Hash 750fadde7ed0d8a59cb37992f69df5b7
c59d2044108d649ce3c10e1ae1084f20eaa7b6b4
aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
GET /cache1/hp/v_250/images/hp-2022/social-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: l1YrXFKswOQZpSqx+stH8lJL+DWQ6RcFIQ0aNHXxJZeQxjwSOLOKtG9cBtzfRtOx6ohGxo31gvc=
x-amz-request-id: P36XX1E9T43RS2YY
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:16 GMT
etag: "750fadde7ed0d8a59cb37992f69df5b7"
x-amz-meta-sha256: aea9129059463c32ea4bba24765fcebc7f607697a6e6ddfe45396a5d8c79ff27
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: nRgy5otmVkjeop3w29cK3B5sQq32WsQv
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 5136
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
23.38.201.117200 OK 2.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reliability-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (450)
Hash 0a6e20a299b321b57e48a9c83871cc0c
b3474e03f92a55d42c5ee4032fb1f7b38bd5fd80
f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
GET /cache1/hp/v_250/images/hp-2022/reliability-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LzbecIzhwvBoQ7BWygJldYYYM6We6Ivc0s9yeELNTux/bvYN3Yt+4RBXo+6y+IJIMyE0XHUm5Ew=
x-amz-request-id: P36RY7P00A1N12Z3
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:15 GMT
etag: "0a6e20a299b321b57e48a9c83871cc0c"
x-amz-meta-sha256: f63e3109498dbf1f9ff656b0b151cf3a9ae0c22cb74369a32f1cd726dde79a19
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: YLr9yDu4y6poTawQ7WP7MojiYbCk.0rk
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2891
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
23.38.201.117200 OK 3.9 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/reputation-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (774)
Hash 7dc0a2667b5de60ff9a96c6ebcca9a7b
cf77125f3a15d8e1ef12bd5ffaabfb020b439c4b
fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
GET /cache1/hp/v_250/images/hp-2022/reputation-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ihx3lBRD+qT3COxacNhADs25840cosw7qQjWNARp2NEbhy2sQGGC6bcDQn8R8zkCgoXq9Qg6fjs=
x-amz-request-id: P36HSNCC0CCGYRB4
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:16 GMT
etag: "7dc0a2667b5de60ff9a96c6ebcca9a7b"
x-amz-meta-sha256: fcd6bf6244f1c8d6344c40b4222142f6fe020a3c8539c97c0db2b3bb18c7e92f
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: sr2qY5Yx1bOPXsrLw8D.ycZfr6bVRigS
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3894
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
23.38.201.117200 OK 3.4 kB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/images/hp-2022/globe-icon.svg
IP 23.38.201.117:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Hash d8016306372e33ba7354032b4de316ac
7caeb070e9f95ab00ca267ad95c37530d3be361e
3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
GET /cache1/hp/v_250/images/hp-2022/globe-icon.svg HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marketing.etorostatic.com/cache1/hp/v_250/css/style-newhp.min.css?v=1666613359
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zEZql33RdFD015QzhOK47P8wzFLSFm/IcV6Blksieco1+krqTMPmOXsvpWNCUzjqRe5kvLJGWuU=
x-amz-request-id: P36N4Q9BMY5E42PD
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Sep 2022 17:42:11 GMT
etag: "d8016306372e33ba7354032b4de316ac"
x-amz-meta-sha256: 3c0a8e3833fe2d4d7d1223b97cd931988d4069eb89071d4d55b3a1434a02d571
x-amz-meta-s3b-last-modified: 20220312T200400Z
x-amz-version-id: qXWG2jxf6eO4.Ee8JU9epi0qWNdNYdex
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3405
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.ttf?qtqow1
IP 23.38.201.117:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socials \012- data
Hash 379e2da7fbcf7192af131dab8664fa44
191a7c64f76a91ab3ac7418ef12e16155ffe916b
8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
GET /cache1/fonts/socials/socials.ttf?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: VqG8Xoz+PNUpc5ek0EHqjuCErGzCqKx3w2Mb/U3IRKb02qkQEhEC1dsBPpa357J3lamLhU00/dI=
x-amz-request-id: ABP0NYTQMK8XRN5V
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "379e2da7fbcf7192af131dab8664fa44"
x-amz-meta-sha256: 8c31b82294313eacadc653a0eeac4cc2c911b75c8f3792453823e72c3c73b3f2
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: 64DCSoh81dgHS5BU7pf3T55ups5kO3ge
accept-ranges: bytes
content-type: application/x-font-ttf
server: AmazonS3
content-length: 2232
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.24.199200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.24.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 387
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
23.38.201.117200 OK 2.3 kB URL HTTP/2 marketing.etorostatic.com/cache1/fonts/socials/socials.woff?qtqow1
IP 23.38.201.117:0
File type Web Open Font Format, TrueType, length 2308, version 1.0\012- data
Hash b63c50623057857a66071527d3d19e34
60a97e3734cf76a48f1605076590257bfd370f5e
1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
GET /cache1/fonts/socials/socials.woff?qtqow1 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://marketing.etorostatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: SbuN5uTeAbiLvwg0l6RWT5GcWDZBpW5c/cufnxT2YwGTrQ28ARdF3bRVi+0p5zOx3aqQYMQ0XQ8=
x-amz-request-id: P9HV07KX2C62PBM9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Jan 2022 19:09:35 GMT
etag: "b63c50623057857a66071527d3d19e34"
x-amz-meta-sha256: 1e0140569fe23bdc3e016d72430447b3ce26f9edc0ab13d468c0b0588f9cffcc
x-amz-meta-s3b-last-modified: 20220111T153358Z
x-amz-version-id: k7ckggrGpXnM_OQiM5sA8.VZMQT0daDq
accept-ranges: bytes
content-type: application/octet-stream
server: AmazonS3
content-length: 2308
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 7b4d0389cd3bdfc36b615a0b060eed3c
a13bee7f9604f7dc3b55ddbbad915fd605ab9a4b
bd7cccf2a2ad2ff6c00b8fd8238da52e11e19f36d1e30447f7c4561576788a57
GET /consent/f72d065d-437e-4ee9-87c6-475882c9f118/f3b2c177-d411-4b76-a21a-21650b13ebf4/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:23 GMT
content-type: application/x-javascript
content-length: 14384
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: e00Dic0738NrYVoLBg7tPA==
last-modified: Tue, 14 Dec 2021 12:34:59 GMT
etag: 0x8D9BEFE24E4B72A
x-ms-request-id: 42befd17-e01e-00f6-6ee7-f0fff0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4339
expires: Wed, 26 Oct 2022 12:47:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed4e7bd0b511-OSL
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 2.0 MB URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 2.0 MB (2035359 bytes)
Hash 6c5ecbba361c7839f32c3a3dd6773d6f
c825027bdf41f12cb2025cf275e9b85a03944208
4f620e9db2f041fee95a8ee25e65204d02026178a94f082327d8caf824f0e8d9
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
content-range: bytes 0-2625182/2625183
content-length: 2625183
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b5cc0d2fcfd8681721925423e598904e
5043555b4a666bc2c42a1ac772da268ef67b194f
afe703f0736515325e5bb262ae9918e40a1c3a9e3850ea9150550c16871e9bf3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4578
Cache-Control: max-age=94327
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "6357afb1-117"
Expires: Thu, 27 Oct 2022 10:59:31 GMT
Last-Modified: Tue, 25 Oct 2022 09:43:13 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
vc.hotjar.io/sessions/1871831?s=0.25&r=0.17312662338189566
54.230.111.91204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/1871831?s=0.25&r=0.17312662338189566
IP 54.230.111.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/1871831?s=0.25&r=0.17312662338189566 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 26 Oct 2022 08:47:24 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9rFFKsgJE0bEXLL3NytpNsNs65LhuZlXU1Vb4830erAEuVbmEHhp4w==
X-Firefox-Spdy: h2
etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
20.54.24.199200 OK 0 B URL HTTP/2 etorologsapi.etoro.com/api/v2/monitoring?applicationIdentifier=marketingSites
IP 20.54.24.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/monitoring?applicationIdentifier=marketingSites HTTP/1.1
Host: etorologsapi.etoro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 478
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-length: 0
server: Kestrel
cache-control: private, max-age=0, must-revalidate=true, noCache=true, noStore=true
vary: Origin
access-control-allow-origin: https://www.etoro.com
request-context: appId=cid-v1:9ca8c352-5fcb-4c17-b640-90373f23089b
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37703)
Hash 71e3871d634182b17c1b15ca3d58f7e4
4063bf0afb25a8c96bdd33f6d24ca832067c7806
c20f40887a2fdad6ea7070063acf1150881e18405c91338338e88be4195583b5
GET /scripttemplates/6.27.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: application/json
content-length: 11602
content-encoding: gzip
content-md5: ceOHHWNBgrF8GxXKPVj35A==
last-modified: Mon, 29 Nov 2021 20:30:52 GMT
etag: 0x8D9B377239B4147
x-ms-request-id: a3c3cc4e-901e-00f9-2cec-ec1206000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3848
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed504dcbb511-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 5521c152bc1efa1baa93129bb8717e19
d89a1ebb0aa8417a5d0f27e172935bf743d8e42e
10e8c409d6b57eb0e5a7fa941b14b2a59b1437e37a16bb51f08adc3f65e807ba
GET /scripttemplates/6.27.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: VSHBUrwe+huqkxKbuHF+GQ==
last-modified: Mon, 29 Nov 2021 20:30:50 GMT
etag: 0x8D9B3772216FA2F
x-ms-request-id: 247cd6ec-501e-004e-2dec-ec1d03000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3848
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed504dcab511-OSL
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
104.18.19.132200 OK 250 kB URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP 104.18.19.132:0
Size 250 kB (250524 bytes)
Hash 3e6b6e247fb07d83f99699d976154464
c3d3c6c9e3a956a5d4a818d1711f8d7bbde42ac9
582c3134fc986e3643f6c03ca123bbaf543d8c79ea4988c970e8c2a00f68604f
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: application/javascript
cf-ray: 7601ed500bdf1c0a-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"78b3e3231bdbc205c8f152a13cbaef31"
last-modified: Wed, 19 Oct 2022 10:38:43 GMT
strict-transport-security: max-age=0
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: RVhEVHEanB3cBIQa_MBbZUXu1_7aDy8Q6kwA3GWx32nTAUT4l6wATA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/etoro.com/config.json
147.185.239.105200 OK 158 B URL HTTP/2 cdn.acsbapp.com/cache/app/etoro.com/config.json
IP 147.185.239.105:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8527cc807c4f34468247ca8f136eee69
d6c967165ca3830ce22c9faee9cd5ba6bcfd728b
14ff03a3b5a77ad37bebc956d50e877ed0158995187693969cdcce8f681a4580
GET /cache/app/etoro.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Thu, 27 Oct 2022 08:47:24 GMT
content-type: application/json
last-modified: Wed, 26 Oct 2022 08:46:11 GMT
etag: "9e-6358f3d3-af3d3369ea0fecf6;;;"
accept-ranges: bytes
content-length: 158
date: Wed, 26 Oct 2022 08:47:24 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 08:47:24 GMT
via: 1.1 varnish
x-served-by: cache-bma1665-BMA
x-cache: HIT
x-cache-hits: 23924
x-timer: S1666774044.474090,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
marketing.etorostatic.com/others/general/js/seo.js
23.38.201.117200 OK 2.2 kB URL HTTP/2 marketing.etorostatic.com/others/general/js/seo.js
IP 23.38.201.117:0
File type C source, ASCII text, with very long lines (366), with CRLF line terminators
Hash f22c155ea9a463fee325cc2f52cb2c5b
67913d0b1cdaa875752a36f5c22fc21884cd6b22
115d84510217e73948fabbc05aa6041071564a86dee31d7abb282d764ff4f7a7
GET /others/general/js/seo.js HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: IbCrnl2jHtt3ARkbdDtJdY1t/iT+eA6L1pkPIeISKQrHurrfYzN0CE54ZOlbBo/E9qrm76WQ/M0=
x-amz-request-id: 69QVGW75ZMC6VK3N
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2017 14:31:16 GMT
etag: "bb01557076c5f1cc6976325a60a0be7c"
x-amz-meta-s3b-last-modified: 20170110T142820Z
x-amz-version-id: SSqunX8tv_w4z_1vK9cbzCWNqGZTmd8y
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 26 Oct 2022 08:52:24 GMT
date: Wed, 26 Oct 2022 08:47:24 GMT
content-length: 2209
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 10c8dff7ca8a73c1b632d15cd7304b95
622aee6182568f9a9f425685bc3e1fd209bcddd2
48c115bd9a1ac4ac45eed3e2d7e6c98ed8451f5c546c3f71997c9365b253614f
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 01:35:14 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V8EsRL47JIgZAkFSr6jbZTqDJFYPRiyOqhL-73RSCMun1GG10eESCg==
Age: 36188
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1f1e50320b6b089fdf88c77a5b2a8c56
91344bb433fb4e0a73bd5013776a094299e7d12a
11736e12fbafa01d3d6473e5a77656544712e3efa10e53c401e5fa15ea4c5dc5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148885
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "63588819-1d7"
Expires: Fri, 28 Oct 2022 02:08:49 GMT
Last-Modified: Wed, 26 Oct 2022 01:06:33 GMT
Server: ECS (dcb/7F81)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _BHFC2jqZ7hYk7iVstQ-t28GMzai-IuAW8m-O4QQrWmqACHQf6VgFw==
Age: 3736
sc-static.net/scevent.min.js
54.230.82.240200 OK 8.8 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (25360), with no line terminators
Hash e9a9d4e245fb5df1ac33be19306752e8
246e5996a63a71ce325dff7ca6c9ef71f324b62f
64211912b65ff9a15aa212c8e8f5d4e60b86629d305c130f8824eb55837b8d4a
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 8764
server: CloudFront
date: Wed, 26 Oct 2022 08:47:24 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 27 Oct 2022 06:50:03 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oM87HMgRnAUX2EmA65k-bDddmp7evzBdKWUEBet6POlhBoR3zkFTsQ==
X-Firefox-Spdy: h2
zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
54.230.111.4200 OK 30 kB URL HTTP/2 zero.pointlessplay.com/i/3c2d8da22b7aa416fab4696fbd547cc9.js
IP 54.230.111.4:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 1654f0dd5a5d17ae2084d8bdf5c43a1c
10b05154ca19428f11c643258a13b145dc8d074c
c7c97139f185f0e4b70d1d77780fd0b913ccc1c90f108dcf8af69c137c5ab0e0
GET /i/3c2d8da22b7aa416fab4696fbd547cc9.js HTTP/1.1
Host: zero.pointlessplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 29659
content-encoding: gzip
server: Caddy
date: Tue, 25 Oct 2022 23:29:15 GMT
cache-control: max-age=43200
expires: Wed, 26 Oct 2022 11:29:06 GMT
etag: "13cd9-8R36yXcfV1rrMSad8JN5R8CsNW0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mtKG5-lhiiR3AXUiTvjdivQJkVwMBkeAk7bFr7e-Q2pb1OsQGrUIOA==
age: 33498
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7dabafcfb90d6add8b3b4be97e20abea
d2825c0bbb8575efd75374f16a1eb534aeaa376a
c231a3a6738c8dee99bf437e44d475bad1e19a9fc667655f56f4fe0d69c6f013
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d8c532a4808f3762b2857c8198fa520f
dc3b5b572fc407387f571602fadf1f0e78bcda60
5ed5334d799d627b4797f43d2dbafe55b1f25d6e6c31416fca57da9d067292a5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5114
Cache-Control: max-age=104898
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "6357d6e4-1d7"
Expires: Thu, 27 Oct 2022 13:55:42 GMT
Last-Modified: Tue, 25 Oct 2022 12:30:28 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6c254f84a98ab252806efa11d4d8ac1
126ec6e614523aca8e1d5ecbe8ce6171669363b6
99e37674d342fceea9ad9b46c2a9ed4c51cfe323a0d359ce64d878bf3eff6560
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4995
Cache-Control: max-age=167095
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "6358ca50-1d7"
Expires: Fri, 28 Oct 2022 07:12:19 GMT
Last-Modified: Wed, 26 Oct 2022 05:49:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
142.250.74.70200 OK 398 B URL HTTP/2 9944765.fls.doubleclick.net/activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (562), with no line terminators
Hash 5a9998dc3732f15d817b24017d169287
825636fb778c372628fbf3f119c26cd8002631db
d5c63dc0ce384f7306f7e3fc43f893fd13e2a71fcfebdc6af26a039e976dc810
GET /activityi;src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined HTTP/1.1
Host: 9944765.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 08:47:24 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 398
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 26-Oct-2022 09:02:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 532 B IP 93.184.220.29:0
File type PNG image data, 19 x 86, 8-bit/color RGB, non-interlaced\012- data
Hash 731afc2f396cf059eeca156da6c51331
4462b1463356cdaf3d0c0cea83b083bb24abed42
a66824e56ef63da879956d4ef33182aa0eea67e7b273b7f7a4a922783f020391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4995
Cache-Control: max-age=167095
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "6358ca50-1d7"
Expires: Fri, 28 Oct 2022 07:12:19 GMT
Last-Modified: Wed, 26 Oct 2022 05:49:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
c0.adalyser.com/adalyser.js?cid=etoro
54.220.223.247200 OK 12 kB URL HTTP/2 c0.adalyser.com/adalyser.js?cid=etoro
IP 54.220.223.247:0
File type ASCII text, with very long lines (31834)
Hash 5301983312500f1fa818e866832a8ede
96c054b07049abe3b764dbcf0f8189055de98e78
24f6c7d7b8467781e61deda43741ad359abebb7efd8b41add68e4bb359cc0867
GET /adalyser.js?cid=etoro HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: application/javascript
content-length: 12183
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
etag: "60b9cf4ef4ac6dab5294025f3c443ba3cca92451"
cache-control: public, max-age=21600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7dabafcfb90d6add8b3b4be97e20abea
d2825c0bbb8575efd75374f16a1eb534aeaa376a
c231a3a6738c8dee99bf437e44d475bad1e19a9fc667655f56f4fe0d69c6f013
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6c254f84a98ab252806efa11d4d8ac1
126ec6e614523aca8e1d5ecbe8ce6171669363b6
99e37674d342fceea9ad9b46c2a9ed4c51cfe323a0d359ce64d878bf3eff6560
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4995
Cache-Control: max-age=167095
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:24 GMT
Etag: "6358ca50-1d7"
Expires: Fri, 28 Oct 2022 07:12:19 GMT
Last-Modified: Wed, 26 Oct 2022 05:49:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.acsbapp.com/cache/app/en.build.json
147.185.239.105200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 147.185.239.105:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 3cf534df601af018ddb127575958c948
9a4464161c56763a8fbadda32244d664d9709d73
31f77dfc0c5ad21e3d6cbd6b9d0cd1b5405698e85e261aefafb150913638a417
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Thu, 27 Oct 2022 08:47:24 GMT
content-type: application/json
last-modified: Sun, 16 Oct 2022 18:24:04 GMT
etag: "3b8a2-634c4c44-c2ae8b64fcd5c01a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25909
date: Wed, 26 Oct 2022 08:47:24 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
c0.adalyser.com/tracking/track/v3/p?stm=1666774041717&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1666774041715%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22ebe27a98-2241-46bb-bff5-7b3a24368040%22%2C%22duid%22%3A%225cfd2472-6aee-47cd-8ed2-e04febc5b8c0%22%2C%22cw%22%3A1666774041715%7D&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&domain=www.etoro.com
54.220.223.247200 OK 43 B URL HTTP/2 c0.adalyser.com/tracking/track/v3/p?stm=1666774041717&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1666774041715%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22ebe27a98-2241-46bb-bff5-7b3a24368040%22%2C%22duid%22%3A%225cfd2472-6aee-47cd-8ed2-e04febc5b8c0%22%2C%22cw%22%3A1666774041715%7D&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&domain=www.etoro.com
IP 54.220.223.247:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /tracking/track/v3/p?stm=1666774041717&e=lce1&url=https%3A%2F%2Fwww.etoro.com%2F&cid=etoro&p=%7B%22et%22%3A1666774041715%2C%22nr%22%3A%22New%22%2C%22cg%22%3A%22Direct%22%2C%22dt%22%3A%22desktop%22%2C%22so%22%3A%22direct%22%2C%22me%22%3A%22none%22%2C%22ca%22%3A%22direct%22%2C%22co%22%3A%22(not%20set)%22%2C%22ke%22%3A%22(not%20set)%22%2C%22vid%22%3A%221%22%2C%22sid%22%3A%22ebe27a98-2241-46bb-bff5-7b3a24368040%22%2C%22duid%22%3A%225cfd2472-6aee-47cd-8ed2-e04febc5b8c0%22%2C%22cw%22%3A1666774041715%7D&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&domain=www.etoro.com HTTP/1.1
Host: c0.adalyser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-headers: origin, content-type, accept
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="ADMa OUR IND DSP NON COR"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
etag: W/"2b-B//0C13UlayirE4cP7xgqg"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7846045d315e63f4885df53537aaac95
02d94ff333d2895a00d5ccb1b44a5fde89d8ff3f
9784e6643a10c7f4c9a0fc13a09d54599a849c26abd876d5fb5c6662f92059ac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4339
Cache-Control: max-age=136556
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Etag: "63585596-1d7"
Expires: Thu, 27 Oct 2022 22:43:21 GMT
Last-Modified: Tue, 25 Oct 2022 21:31:02 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 470 B URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (995)
Hash 4049002995f14e20e4a46145ada33941
0e6ac31db069e5f45783f25901aae7b667b46de1
4f6ce07587c62aff0a20b65cdaeb87e4dd3ce9fed9b9689962e58d814d1053c1
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:01:38 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=35691
date: Wed, 26 Oct 2022 08:47:25 GMT
content-length: 470
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.5 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8656), with no line terminators
Hash 6cff2cb49ee772adf066904fd18efd9a
8b876016198b0fc9862d2b6e29a80251c5422e72
85d26923c638ce50f36f7b69f9f50d2a6d6863abed574af143e24a14a343f9d2
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "0d5508c59e34b5d35cde5aea2aa1c2fd:1665301953.026714"
Last-Modified: Sun, 09 Oct 2022 07:50:08 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 26 Oct 2022 09:07:25 GMT
Date: Wed, 26 Oct 2022 08:47:25 GMT
Content-Length: 3471
Connection: keep-alive
cdn.taboola.com/libtrc/unip/1005612/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1005612/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58483)
Hash b2e9aaa470149afe6f0276014c1cff21
b7dec807158831820487cda04b35ed2473b35a85
4986d5a2af7b2d7cf032f0bd537a6d2b2f0e303394c3ed55b7d6fcc80f6ca24d
GET /libtrc/unip/1005612/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sNmGVpdAmq0AXnHElJ17zgN0cCBnYMXKTwo6c1qG44DIeVmDxhVBXc19qULrfR7Ny7XFo+hNNOY=
x-amz-request-id: 9PGPEZ7JZSTPMYDT
x-amz-replication-status: PENDING
last-modified: Sun, 23 Oct 2022 11:21:10 GMT
etag: "1b9608b81b26a2106d45b223ef11da4f"
x-amz-version-id: OeDiQYtYba2keWyTIYqwbZAbibZrVm80
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 08:47:25 GMT
via: 1.1 varnish
age: 25
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666774045.131956,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 97
content-length: 17942
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 26 Oct 2022 08:41:09 GMT
expires: Wed, 26 Oct 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 376
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Wed, 26 Oct 2022 08:47:25 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1632-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: max-age=123085
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:58:50 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=39DCB0AAF32F618E1E96A2E3F278602B; domain=.bing.com; expires=Mon, 20-Nov-2023 08:47:25 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: ABC5613221DB48B9A5B951D874450835 Ref B: OSL30EDGE0306 Ref C: 2022-10-26T08:47:25Z
date: Wed, 26 Oct 2022 08:47:24 GMT
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1&z=1355125280
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1&z=1355125280
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1&z=1355125280 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 08:47:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash 3199a043c6e1f3cebc24fd8649209e83
52ab67a063797a77836fc3ff53d143dcbec4e1c9
10cc66b20e34c1b0cf13e97c83c67ba99037460fcd0703b75aae0cddd2c6f68a
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 0cJV4qNuS+huJaWtCoCoCPTi1R71omrCOwdcwLJDKaZZekiR2wpIOwYylAsr5FCLrHN4RQ/FcnWAzkgWgglukQ==
priority: u=3,i
content-length: 27045
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 08:47:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: max-age=123085
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:58:50 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
35.190.43.134200 OK 895 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com
IP 35.190.43.134:0
File type JSON data\012- , ASCII text, with very long lines (2501), with no line terminators
Hash b70b993ec25a4289bf46e116c9b8cc5d
6722b7ab42a8e4fa679d5884fdbcb127dc11866f
8061dc02ea5c23552e724e715cabdc82c905464a7679fbe56f1a4885a5ec580d
GET /collector/is_enabled?pids=2b300842-74be-4e72-8ed5-3bab9449a996&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=1932&ck=1&ref=https://www.etoro.com/&ap=8&be=300&fe=1504&dc=681&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666774039544,%22n%22:0,%22f%22:101,%22dn%22:103,%22dne%22:144,%22c%22:144,%22s%22:148,%22ce%22:157,%22rq%22:157,%22rp%22:280,%22rpe%22:280,%22dl%22:284,%22di%22:659,%22ds%22:681,%22de%22:688,%22dc%22:1502,%22l%22:1503,%22le%22:1505%7D,%22navigation%22:%7B%7D%7D&fcp=510&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 68 B URL HTTP/1.1 bam.nr-data.net/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=1932&ck=1&ref=https://www.etoro.com/&ap=8&be=300&fe=1504&dc=681&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666774039544,%22n%22:0,%22f%22:101,%22dn%22:103,%22dne%22:144,%22c%22:144,%22s%22:148,%22ce%22:157,%22rq%22:157,%22rp%22:280,%22rpe%22:280,%22dl%22:284,%22di%22:659,%22ds%22:681,%22de%22:688,%22dc%22:1502,%22l%22:1503,%22le%22:1505%7D,%22navigation%22:%7B%7D%7D&fcp=510&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash e829d6920aac3b5ee796d82072946200
e0b99606d82951f1f95ee56d70f3e2fc25f17b02
785d1dd5650b792d59d3f1f9c719296ffe5c6f0cfd112c13e9422dae94b826d1
GET /1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=1932&ck=1&ref=https://www.etoro.com/&ap=8&be=300&fe=1504&dc=681&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666774039544,%22n%22:0,%22f%22:101,%22dn%22:103,%22dne%22:144,%22c%22:144,%22s%22:148,%22ce%22:157,%22rq%22:157,%22rp%22:280,%22rpe%22:280,%22dl%22:284,%22di%22:659,%22ds%22:681,%22de%22:688,%22dc%22:1502,%22l%22:1503,%22le%22:1505%7D,%22navigation%22:%7B%7D%7D&fcp=510&at=ThdVRgpKS0Q%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:25 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7601ed560e9b1c0e-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=16e0eb8228102dde; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeaj0&_p=1856671709&_gaz=1&ul=NA&cid=1508135287.1666774042&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1666774041&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B0NS054E7V>m=2oeaj0&_p=1856671709&_gaz=1&ul=NA&cid=1508135287.1666774042&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1666774041&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer=
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V>m=2oeaj0&_p=1856671709&_gaz=1&ul=NA&cid=1508135287.1666774042&sr=1280x1024&_s=1&dl=https%3A%2F%2Fwww.etoro.com%2F&sid=1666774041&sct=1&seg=0&dt=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&en=page_view&_fv=1&_nsi=1&_ss=1&ep.funnel_page_category=General&ep.real_URL=https%3A%2F%2Fwww.etoro.com%2F&ep.is_logged_in=No&ep.event_trigger=gtm.js&ep.hit_referrer=&ep.platform=Web&ep.full_URL_dl=NA&up.session_referer= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Wed, 26 Oct 2022 08:47:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1
173.194.222.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1
IP 173.194.222.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B0NS054E7V&cid=1508135287.1666774042>m=2oeaj0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.etoro.com
date: Wed, 26 Oct 2022 08:47:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 1a441a35c05ec3e255cd517b94d444ca
8dfe9757770ab74172c9a88c16dc53481e3d5781
21ab692ef72d8476e58eb5ae8ecd452a45f6d15c59ef27f9b1e755c4ab687f6f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 26 Oct 2022 08:47:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 25 Oct 2022 20:06:09 GMT
Expires: Wed, 26 Oct 2022 20:06:09 GMT
ETag: "8dfe9757770ab74172c9a88c16dc53481e3d5781"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
web1.acsbapp.com/apps/app/dist/media/logomono.svg
138.128.247.123200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP 138.128.247.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Thu, 26 Oct 2023 08:47:25 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Wed, 26 Oct 2022 08:47:25 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
3.33.220.150302 Found 324 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
IP 3.33.220.150:0
Hash f32e5ac64c0789a66739a4f0b5d54426
5464bf0df581e86f970cd4c325b2027fab6c525e
30e324da60467860b0831bfc1239eeb7c098723d3dd725d7a5c169f000ccba2d
GET /track/up?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=ad4eaec5-b034-4770-8cca-cf1e7bdf6733; domain=.adsrvr.org; expires=Thu, 26-Oct-2023 08:47:24 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
s.yimg.com/wi/config/10118123.json
188.125.94.206200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10118123.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21e2ae430121102daa2c1810b5cf910b
ffef080cc2eacc942a9bcb67561f790c34ed3fb0
a44e6042de416123c90209eb39d7fdbe79665819ffbb07646cc939bb2dfa84e0
GET /wi/config/10118123.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2uJvpAS1dBOceiS6YIvf3JGUHeZMtrDjSvovuoeztaLH0Ya2y+g1jLEodg6LoT/NPqLDu0Agvdc=
x-amz-request-id: 0RXYH2X00R1Z5AS5
date: Wed, 26 Oct 2022 08:36:32 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Oct 2022 22:00:29 GMT
x-amz-expiration: expiry-date="Sat, 18 Nov 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "21e2ae430121102daa2c1810b5cf910b"
x-amz-server-side-encryption: AES256
x-amz-version-id: PPtAZrGHQpA8i..pPqBYS_TW.49B0pC2
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 655
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=67397625817021120term=value
44.236.199.214200 4.8 kB URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=67397625817021120term=value
IP 44.236.199.214:0
Hash 9ee3ae28698673aa803c3d35b45a0e2e
b9daabb565479e51dc598b63cc40177f01269128
f4ed6bc4d79b00677dc17230139bc4d1152319102fc4c325116793a03c1ca85d
GET /spx?dxver=4.0.0&shaid=31950&tdr=&plh=https%3A%2F%2Fwww.etoro.com%2F&cb=67397625817021120term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 26 Oct 2022 08:47:25 GMT
connection: close
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 633105dbda4635200ba1d2ec636fa3ed
24f48c303aefab509b14745ba94d3eba0412f80b
c7aad41f893a260b4c80797178c12c3509e3e749b5c3bb7839b3fef993469ac9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2260
Cache-Control: max-age=96291
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:26 GMT
Etag: "6357c06d-139"
Expires: Thu, 27 Oct 2022 11:32:17 GMT
Last-Modified: Tue, 25 Oct 2022 10:54:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
bam.nr-data.net/resources/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3310&ck=1&ref=https://www.etoro.com/&st=1666774039544&at=ThdVRgpKS0Q%3D
162.247.241.14200 OK 36 B URL HTTP/1.1 bam.nr-data.net/resources/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3310&ck=1&ref=https://www.etoro.com/&st=1666774039544&at=ThdVRgpKS0Q%3D
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 7e4852ea4e8175b5a58521943127c9d2
5bc50908d716483b2dc218c0c8a7ed393ef4493a
396c706d6eee00863ac41f81d64dc53efaab518900fb6da70a544d05c6e32d45
POST /resources/1/8e1edcd9e2?a=16546562&v=1216.487a282&to=YlBWMEJQWEoFUENcVlsaYRZZHl9XAFZPG0ldRQ%3D%3D&rst=3310&ck=1&ref=https://www.etoro.com/&st=1666774039544&at=ThdVRgpKS0Q%3D HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1159
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:26 GMT
Content-Type: text/plain
Content-Length: 36
Connection: keep-alive
CF-Ray: 7601ed5b7afd1c0e-OSL
Access-Control-Allow-Origin: https://www.etoro.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
t.co/i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:25 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=ec735add-0342-42eb-af18-9edbf680bed3; Max-Age=63072000; Expires=Fri, 25 Oct 2024 08:47:26 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 439d15de9135a30b
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 3414a5dba2f7de97a6332cb18ccd5119469ea773d7e741a317eb97d43de715a9
X-Firefox-Spdy: h2
tr.snapchat.com/init?pids=2b300842-74be-4e72-8ed5-3bab9449a996
35.190.43.134200 OK 173 B URL HTTP/2 tr.snapchat.com/init?pids=2b300842-74be-4e72-8ed5-3bab9449a996
IP 35.190.43.134:0
Hash e9d768c40e3caea442ee1898d47a6ec8
e1d77106c2b1600aa3c31474efcb98d857e35fe4
cacbaf992fe205ce8ace5d9b549285a0f1b5156de6f360a41d4549d13854a486
GET /init?pids=2b300842-74be-4e72-8ed5-3bab9449a996 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
access-control-allow-origin: https://www.etoro.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.old.min.js
23.36.76.210200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.old.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.old.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:02:26 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=35577
date: Wed, 26 Oct 2022 08:47:26 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f1731a1587e45e9ee776def91c39333c
7f61dc0ebeae12b3e6a6bef60410860f04bdca8d
782df5eec446007fbf91212068daaf24f977724794aafece60dcad6a2498fb7c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 02:54:24 GMT
Expires: Wed, 02 Nov 2022 02:54:23 GMT
Etag: "7f61dc0ebeae12b3e6a6bef60410860f04bdca8d"
Cache-Control: max-age=583016,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7601ed5e5b3fb4ee-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff683ff3f-2886-4376-9b8b-6508f68a00db.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff683ff3f-2886-4376-9b8b-6508f68a00db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef3b5ac0c1c6fec1a0c699a6c2971dd8
42be18a359b79f3e32e40ced4c391f8b92737512
e5bbc0f456bdae877244449c6e12bca5119eb7463d74b207972af7f592624360
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff683ff3f-2886-4376-9b8b-6508f68a00db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10946
x-amzn-requestid: ca3a71ad-30f6-466e-993d-f51757ae3b53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2hGVXIAMFkHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568f-05567ece30bdcd9b47694a32;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:11 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: o4d9BPZmV8YBrn4yLTXCDiRnqkHjZdEd_vbi1NOoKEBsttHIiV0S3g==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:36 GMT
etag: "42be18a359b79f3e32e40ced4c391f8b92737512"
content-type: image/jpeg
age: 39470
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 6e30c38341767f324ff247263a2cdb5a
5bf69ff10671db9c9f286dc67bdd46eef27cbddc
5aee727513dc9e76706e92a924ba5c3392459b243efaa75dd085d280c3be10bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3706
Cache-Control: max-age=138773
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:26 GMT
Etag: "635860ba-13a"
Expires: Thu, 27 Oct 2022 23:20:19 GMT
Last-Modified: Tue, 25 Oct 2022 22:18:34 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 6e30c38341767f324ff247263a2cdb5a
5bf69ff10671db9c9f286dc67bdd46eef27cbddc
5aee727513dc9e76706e92a924ba5c3392459b243efaa75dd085d280c3be10bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5945
Cache-Control: max-age=141013
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:26 GMT
Etag: "635860ba-13a"
Expires: Thu, 27 Oct 2022 23:57:39 GMT
Last-Modified: Tue, 25 Oct 2022 22:18:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 314
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 483492c0876b8d6bd640078c4239bdc6
6e9edc534c785f1da30c859aba7adfd831767c35
f1634d15e8dbdc1e3d736f14595e07ac5120574cb1a3f72f6fa9ef5cf81a4b07
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5226
Cache-Control: max-age=99275
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:26 GMT
Etag: "6357c07f-1d7"
Expires: Thu, 27 Oct 2022 12:22:01 GMT
Last-Modified: Tue, 25 Oct 2022 10:54:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 483492c0876b8d6bd640078c4239bdc6
6e9edc534c785f1da30c859aba7adfd831767c35
f1634d15e8dbdc1e3d736f14595e07ac5120574cb1a3f72f6fa9ef5cf81a4b07
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5226
Cache-Control: max-age=99275
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:26 GMT
Etag: "6357c07f-1d7"
Expires: Thu, 27 Oct 2022 12:22:01 GMT
Last-Modified: Tue, 25 Oct 2022 10:54:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=cd8fe8f7-034f-440a-87c3-ff703a5184d3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.27
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=cd8fe8f7-034f-440a-87c3-ff703a5184d3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.27
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=cd8fe8f7-034f-440a-87c3-ff703a5184d3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o52r0&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:25 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_5gzhpU+/jf5cXdntvTJJ9g=="; Max-Age=63072000; Expires=Fri, 25 Oct 2024 08:47:26 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 34290801b33e7b34
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: da3ab68f0bfd4010d3d66365b896ec7eddd673b8a7f495b7fc99cde8cedb20fc
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=6fcc2ef3-8f31-48a8-872d-0e3d61e6191e&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce52147c-ae44-4c5e-99d2-ece5e5825361&tw_document_href=https%3A%2F%2Fwww.etoro.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1dlu&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:25 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_rEwIPrypbhPNqZ9UhRmZ7w=="; Max-Age=63072000; Expires=Fri, 25 Oct 2024 08:47:26 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 22c5a0e910bdc4da
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: da3ab68f0bfd4010d3d66365b896ec7eddd673b8a7f495b7fc99cde8cedb20fc
X-Firefox-Spdy: h2
44.238.122.172/is
44.238.122.172200 OK 32 B IP 44.238.122.172:0
File type ASCII text, with no line terminators
Hash 772cc6d62342ec844a259fa99ba6ebc1
538ed3a8c381c423d8e4072feac6576f58286f3d
c5d12a87f11183a369bc667eeffe93dcb3f2926d59a8fd206b559b05b548bd55
GET /is HTTP/1.1
Host: 44.238.122.172
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 26 Oct 2022 08:47:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
s.yimg.com/wi/ytc.js
188.125.94.206200 OK 6.0 kB IP 188.125.94.206:0
File type ASCII text, with very long lines (16588), with no line terminators
Hash aada079620a43bd431bf7ade34fad0d1
9071ab492b9babf693e7f405bcadb8c82695a87e
818f385e09cfa775f69ea147efa9f4de77bcac7f4963211660b8a93887a07519
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Mj03sEYQ6KAzx6bTFBlTP+fUggjv22NRUj2dRhihtXths4IUyOfDuPurmruFBc3I2V4wLXoqRSs=
x-amz-request-id: 0W6PNNB87R31N28A
date: Wed, 26 Oct 2022 08:01:32 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2754
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=08926612144431749&referrer=
64.202.112.223200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=08926612144431749&referrer=
IP 64.202.112.223:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00995ec51eb23fc05a0627b93976ed9179,00444d53aaa69516fdd4f38cb01a408ffb,007bfa109c755ce2abc89bcca6ab1ec76b,00e5c90732d6db4c996b8e51ecf69f2be4,009db2f50602ec66a785ccba2f2190d042,0035680ae49e7216a26be3859972ee9575&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.etoro.com%2F&optOut=false&bust=08926612144431749&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 08:47:26 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 986c639fda724df6b69f492a7476de12
content-encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/19002254.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/19002254.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/19002254.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=312457DC99E56C6D07FF459598B26DC9; domain=.bing.com; expires=Mon, 20-Nov-2023 08:47:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DA680862E9634536A92CCCF87CE81F1A Ref B: OSL30EDGE0306 Ref C: 2022-10-26T08:47:27Z
date: Wed, 26 Oct 2022 08:47:26 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=5f80b4e1-7094-4a50-a044-b34cb68e6dbc&sid=cfa01980550a11edab9701cdc3aceca0&vid=cfa031b0550a11eda373b73db2f007c7&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1505&evt=pageLoad&sv=1&rn=96185
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=19002254&tm=gtm002&Ver=2&mid=5f80b4e1-7094-4a50-a044-b34cb68e6dbc&sid=cfa01980550a11edab9701cdc3aceca0&vid=cfa031b0550a11eda373b73db2f007c7&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1505&evt=pageLoad&sv=1&rn=96185
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=19002254&tm=gtm002&Ver=2&mid=5f80b4e1-7094-4a50-a044-b34cb68e6dbc&sid=cfa01980550a11edab9701cdc3aceca0&vid=cfa031b0550a11eda373b73db2f007c7&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Crypto,%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&p=https%3A%2F%2Fwww.etoro.com%2F&r=<=1505&evt=pageLoad&sv=1&rn=96185 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=050A8B70250B64052E3E9939245C65B3; domain=.bing.com; expires=Mon, 20-Nov-2023 08:47:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 73C98C9CB0D14D77B45E75E09DB6E2B6 Ref B: OSL30EDGE0306 Ref C: 2022-10-26T08:47:27Z
date: Wed, 26 Oct 2022 08:47:27 GMT
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
216.58.207.194200 OK 399 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (561), with no line terminators
Hash aafbe00c9237405a89209c023ecf0e9f
73cedd4fd162051ba33aa05103826a641e11b888
5c63f827ce3f4a9601091587fd7b5a85afdf1443a0b93fd06c4e8a226bc6b90c
GET /ddm/fls/i/src=9944765;type=visit0;cat=pagev0;match_id=undefined;u1=undefined;u8=undefined;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=undefinedundefined;~oref=https://www.etoro.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9944765.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 08:47:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp.analytics.yahoo.com/sp.pl?a=10000&d=Wed%2C%2026%20Oct%202022%2008%3A47%3A23%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Wed%2C%2026%20Oct%202022%2008%3A47%3A23%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Wed%2C%2026%20Oct%202022%2008%3A47%3A23%20GMT&n=0&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:27 GMT
expires: Wed, 26 Oct 2022 08:47:27 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBB_0WGMCEDQV1QNeiA3zpPnMoC81lasFEgEBAQFFWmNiYwAAAAAA_eMAAA&S=AQAAAoK71KuFX6xn-918bO2II3U; Expires=Thu, 26 Oct 2023 14:47:27 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
privacyportal-de.onetrust.com/request/v1/consentreceipts
172.64.146.158201 Created 0 B URL HTTP/2 privacyportal-de.onetrust.com/request/v1/consentreceipts
IP 172.64.146.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Generic/Spear Phishing
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-de.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 6237
Origin: https://www.etoro.com
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 26 Oct 2022 08:47:27 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7601ed633fb61bfe-OSL
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&b=Crypto%2C%20Stocks%20%26%20Beyond!%20The%20power%20of%20social%20investing%20%7C%20eToro&.yp=10118123&f=https%3A%2F%2Fwww.etoro.com%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:27 GMT
expires: Wed, 26 Oct 2022 08:47:27 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBB_0WGMCEOvN5gzMhdcGMDtEo9YHTD4FEgEBAQFFWmNiYwAAAAAA_eMAAA&S=AQAAAvlMlb2kSHgdQ8wUNJsgRek; Expires=Thu, 26 Oct 2023 14:47:27 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=1508135287.1666774042&jid=165207660&_u=YADAAEAAAAAAACAEK~&z=1130615540
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=1508135287.1666774042&jid=165207660&_u=YADAAEAAAAAAACAEK~&z=1130615540
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-2056847-65&cid=1508135287.1666774042&jid=165207660&_u=YADAAEAAAAAAACAEK~&z=1130615540 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 08:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77f26048280036eede4e216d7ac2ed6f
619dff28900195c0d76692c6695c610c57fde4f2
d17b83d8de3794b198bd371579ca3447639f53121eb463b6eb0a766fe7f0103c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4545
x-amzn-requestid: f774726e-125a-486e-8f7b-7eb86450368a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2qHG7IAMFTSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-3e3bf9a7046685f7643817b9;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cH4Ae-5tI8KMs7ZQCIQM6OWRz1cEBUf7eOTZmQw0mJ-cmnlLqSX19w==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:53:34 GMT
age: 39233
etag: "619dff28900195c0d76692c6695c610c57fde4f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1666774044357&sw=1280&sh=1024&v=2.9.88&r=stable&ec=0&o=28&fbp=fb.1.1666774044356.1192901820&it=1666774043018&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1666774044357&sw=1280&sh=1024&v=2.9.88&r=stable&ec=0&o=28&fbp=fb.1.1666774044356.1192901820&it=1666774043018&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=432617183539790&ev=PageView&dl=https%3A%2F%2Fwww.etoro.com%2F&rl=&if=false&ts=1666774044357&sw=1280&sh=1024&v=2.9.88&r=stable&ec=0&o=28&fbp=fb.1.1666774044356.1192901820&it=1666774043018&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 26 Oct 2022 08:47:27 GMT
X-Firefox-Spdy: h2
match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
3.33.220.150200 OK 0 B URL HTTP/2 match.adsrvr.org/track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit
IP 3.33.220.150:0
GET /track/upb/?adv=ucnwrwt&ref=https%3A%2F%2Fwww.etoro.com%2F&upid=jxpewqr&upv=1.1.0&td1=visit HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
www.etoro.com/
172.64.152.107200 OK 0 B IP 172.64.152.107:0
GET / HTTP/1.1
Host: www.etoro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:22 GMT
content-type: text/html
vary: Accept-Encoding
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
set-cookie: TS01047baf=01d53e581831a69dfa75630994f60e253cfde93027c9a249b88df1a9ae7f11ce0d05b9a15a053c8a83913d027b7bec2f34e81c7677; Path=/
__cf_bm=hVKwbJGySzsYK260Hr18k3V2wePQvIXj7EA2cwdw8pk-1666774042-0-AX4jZcyB7nNcZXJPjk2IUK3ejaNs+Tkh9RViqoDMB3NW5yuGHZgizeXezNL4ImzD0LGtNiiVGYsIBk6GtNGHG2fs8iSmqxikxNVGTLTnYwW7; path=/; expires=Wed, 26-Oct-22 09:17:22 GMT; domain=.etoro.com; HttpOnly; Secure; SameSite=None
__cflb=02DiuEAg8LPSYevHEYkaxA3gcDJTcgw9zvDFpsMrC9Kbz; SameSite=None; Secure; path=/; expires=Thu, 27-Oct-22 07:47:22 GMT; HttpOnly
__cfruid=415ac9a2a289303bfeeb84651be2b9036a7dcd12-1666774042; path=/; domain=.etoro.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7601ed47cf8dfac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
goosebomb.com/gogate/etoro/31/index.html?action=166677404210000TNOTV415326358024Va5
172.67.144.202200 OK 0 B URL HTTP/2 goosebomb.com/gogate/etoro/31/index.html?action=166677404210000TNOTV415326358024Va5
IP 172.67.144.202:0
GET /gogate/etoro/31/index.html?action=166677404210000TNOTV415326358024Va5 HTTP/1.1
Host: goosebomb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:22 GMT
content-type: text/html
x-guploader-uploadid: ADPycdvxsSFbc7L-4RrKhHOyEGKlKqJQ92otE6OwHZMMFuwSMUJHabuHm6PgQJ8xgFP1mbUuuWI5RlyOJJKK0M9mrVkeVcNOHmDP
expires: Wed, 26 Oct 2022 09:47:22 GMT
cache-control: public, max-age=3600
last-modified: Tue, 09 Mar 2021 12:58:00 GMT
x-goog-generation: 1615294680223358
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1290
x-goog-meta-goog-reserved-file-mtime: 1614945425
content-language: en
x-goog-hash: crc32c=XVFUmg==, md5=RiW9HhJTA+38GSh9LrzYDg==
x-goog-storage-class: STANDARD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ebZ%2FTMgiEqGIWGk6VtuZMJwogYZrBXfHoTgWhXwylFdPM%2BH3%2FWURpxAuDdQiNY6Jrj7W32KBdtgOpfRyFxppi3ZWHTcTK5hzIgKBqJSlo8MJpd4LrghxgN9Qtqzs3XSs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7601ed446fe5b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.27.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/6.27.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.etoro.com/
Origin: https://www.etoro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:47:24 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Mon, 29 Nov 2021 20:31:07 GMT
x-ms-request-id: 45454291-e01e-00fd-65ec-ece784000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3848
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7601ed505dccb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/1005612/trc/3/json?tim=1666774042971&data=%7B%22id%22%3A602%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666774042965%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666774042971%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1005612/trc/3/json?tim=1666774042971&data=%7B%22id%22%3A602%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666774042965%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666774042971%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1005612/trc/3/json?tim=1666774042971&data=%7B%22id%22%3A602%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666774042965%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Detoro-network%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666774042971%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.etoro.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A13%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 08:47:26 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666774046.481237,VS0,VE120
vary: Accept-Encoding
x-vcl-time-ms: 120
X-Firefox-Spdy: h2
adspredictiv.com/jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q
35.190.38.40200 OK 0 B URL HTTP/2 adspredictiv.com/jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q
IP 35.190.38.40:0
GET /jump/next.php?r=6359254&sub1=pyrrhous-marten&sub2=whiskey-lob-v0493yd92q HTTP/1.1
Host: adspredictiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.money616.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Wed, 26 Oct 2022 08:47:21 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
23.38.201.117200 OK 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/js/script.min.js?v=1666613359
IP 23.38.201.117:0
GET /cache1/hp/v_250/js/script.min.js?v=1666613359 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UstjKmYHGN8WYkG4pmB/h9V8h19OUGh2i1FjFliBykUGT8I/5sV5tTJfxJJZrQoeJnxvynArGRo=
x-amz-request-id: F7QGAR8H44KYKRW6
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 12:51:07 GMT
etag: "57f5dcf3502cfebc456129a3dda31b0e"
x-amz-meta-sha256: 569eb69f141bb73e2a8a26b17eac9225b107485d936601eaf2571740898714a6
x-amz-meta-s3b-last-modified: 20220928T124714Z
x-amz-version-id: PgqNRpUIgU8eF2OAyi4TWyrPd9U26uVw
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:23 GMT
date: Wed, 26 Oct 2022 08:47:23 GMT
X-Firefox-Spdy: h2
marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
23.38.201.117206 Partial Content 0 B URL HTTP/2 marketing.etorostatic.com/cache1/hp/v_250/videos/cover-desktop-half.mp4
IP 23.38.201.117:0
GET /cache1/hp/v_250/videos/cover-desktop-half.mp4 HTTP/1.1
Host: marketing.etorostatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1212416-
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
x-amz-id-2: k0S3PTtQ6A7+7DCDF0jarhfLPTSbwVz1bTqEGKIUxZtmifOjl4sOuF9FVlox4Ojv2OaWaUfjwJU=
x-amz-request-id: VAB4HZ7XE1BNTWVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 16:16:56 GMT
etag: "53205974fecdfed20a25d53ffbfd6bef"
x-amz-meta-sha256: 086a1f99f93c021b8bd1aa13042c342054e3da9302fc41c00c55b31f7c7058ae
x-amz-meta-s3b-last-modified: 20220920T155830Z
x-amz-version-id: 5gD_fe1tCLrWjg18GcLMs5qAtl1xDeyt
accept-ranges: bytes
content-type: video/mp4
server: AmazonS3
cache-control: max-age=31536000
expires: Thu, 26 Oct 2023 08:47:24 GMT
date: Wed, 26 Oct 2022 08:47:24 GMT
content-range: bytes 1212416-2625182/2625183
content-length: 1412767
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1871831.js?sv=6
143.204.55.54200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1871831.js?sv=6
IP 143.204.55.54:0
GET /c/hotjar-1871831.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.etoro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 08:47:23 GMT
cache-control: max-age=60
etag: W/2f18ca35ba23fd64bbb2c75a3f3aede6
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2ydeadr7XMNqhqycQEiavJTi_sRe6LpMeg3d48WAIwgvw5VlA50ibQ==
age: 9
X-Firefox-Spdy: h2