firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 20:04:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TDd2vDO4lwDYYg0YvJSuCFPNm2F3OjsUChkBGnvigOchaHbG_JVOGQ==
Age: 584
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3240
Expires: Wed, 07 Sep 2022 21:08:30 GMT
Date: Wed, 07 Sep 2022 20:14:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Um91FlPvSZifp4Lmhea2xThkf9YjGKeH0H8zK5bXeTLYPgZGSn8yOA==
age: 59276
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 20:14:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 19:38:18 GMT
Expires: Wed, 07 Sep 2022 19:54:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g3aZ1APDrL_bAM1PUuDuHyChVPlPaLG9o56uda0u3SgxsTQUKK3rzA==
Age: 2173
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-common.min.bec63fe3ead2f8e2c80d189e19722e4a.css
104.110.2.245200 OK 1.1 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-common.min.bec63fe3ead2f8e2c80d189e19722e4a.css
IP 104.110.2.245:0
File type ASCII text, with very long lines (410)
Hash e724aa81a70f7ffa25817248ec984243
07171fcb43a0ef523282395f97ffe8bdb430f735
0fdba6093790ce743bc314335f644ab039d18ce82ec04767ae7ab30ff48a8cdd
GET /etc.clientlibs/retail/clientlibs/retail-common.min.bec63fe3ead2f8e2c80d189e19722e4a.css HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1108
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/clientlibs/granite/jquery.min.cee8557e8779d371fe722bbcdd3b3eb7.js
104.110.2.245200 OK 36 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/clientlibs/granite/jquery.min.cee8557e8779d371fe722bbcdd3b3eb7.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (651)
Hash ba0b65bce514dc9e9fe22a06bed0aa10
6f4581bc133fdc0c842b71ec3f1eb112ab12dff1
6bfb8f93b9453861382e743445e8b6971dc75546c554574277df25a8fc4d9ab1
GET /etc.clientlibs/clientlibs/granite/jquery.min.cee8557e8779d371fe722bbcdd3b3eb7.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 35546
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail.min.696dfcb7be4aaa76e51557d6293c2d2a.css
104.110.2.245200 OK 31 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail.min.696dfcb7be4aaa76e51557d6293c2d2a.css
IP 104.110.2.245:0
File type Unicode text, UTF-8 text, with very long lines (764)
Hash 94241997fc26ad9b93a4adba7ff2bcbe
484e9d41e612a13b1c37201a960ac65da19dac59
4646f7c40f5436abf655dde5621da7dab9aea8c36440af35540ad9e3c5d89630
GET /etc.clientlibs/retail/clientlibs/retail.min.696dfcb7be4aaa76e51557d6293c2d2a.css HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 30832
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/clientlibs/granite/utils.min.4a192b590a2c2926fb000264370c0588.js
104.110.2.245200 OK 3.4 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/clientlibs/granite/utils.min.4a192b590a2c2926fb000264370c0588.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (550)
Hash e82784fb4ed0f357e050b6bfe41c7bd9
c99a228426c46126c75beccd14e207fec2222230
810326d1243397d09fe9104a7379e62d539893bdb2cbcfd25ebb3dcc7c34c517
GET /etc.clientlibs/clientlibs/granite/utils.min.4a192b590a2c2926fb000264370c0588.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 3359
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/clientlibs/granite/jquery/granite.min.543d214c88dfa6f4a3233b630c82d875.js
104.110.2.245200 OK 1.6 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/clientlibs/granite/jquery/granite.min.543d214c88dfa6f4a3233b630c82d875.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (553)
Hash 44b9f5c68a7fb051db82531d69f2f0d1
d898fe82be7a8820a11c7687768c4d7efdd1f234
f52db74525abd240ad20e793b5900f3a2983a884aa9e1f99791f90e6b99d8698
GET /etc.clientlibs/clientlibs/granite/jquery/granite.min.543d214c88dfa6f4a3233b630c82d875.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1626
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/foundation/clientlibs/jquery.min.dd9b395c741ce2784096e26619e14910.js
104.110.2.245200 OK 16 B URL HTTP/2 www.tdameritrade.com/etc.clientlibs/foundation/clientlibs/jquery.min.dd9b395c741ce2784096e26619e14910.js
IP 104.110.2.245:0
File type ASCII text, with no line terminators
Hash dd9b395c741ce2784096e26619e14910
d691792f378240f80919beda895262c509d22b75
c084b47104c493fb377b6d35d8c08df67d773f6dcf8294c0a7360710cd8cacbd
GET /etc.clientlibs/foundation/clientlibs/jquery.min.dd9b395c741ce2784096e26619e14910.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-length: 16
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/foundation/clientlibs/shared.min.9f3716b2c473fd53ab31b1caa53131a8.js
104.110.2.245200 OK 6.2 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/foundation/clientlibs/shared.min.9f3716b2c473fd53ab31b1caa53131a8.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (585)
Hash 369706c90c2a18e11412b9017c1786ef
5af36629fda2934ea1771bd9b2af440cce0dd205
61e8a22cab68764d65f64fd1f8619472924b461e8b12ba4a439b2d06de8ab7b0
GET /etc.clientlibs/foundation/clientlibs/shared.min.9f3716b2c473fd53ab31b1caa53131a8.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 6180
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/pm_fp.min.e553e0a340436e410195516702932419.js
104.110.2.245200 OK 2.7 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/pm_fp.min.e553e0a340436e410195516702932419.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (1356)
Hash 78abd309ef2d1e11b0e942d50ed07aed
b45afe8de0b676eeb7eb017a8404b714a00c4065
e554272ff4e26daf6aa08f184b91013f4621a3bf2808107dc431296db692e6a8
GET /etc.clientlibs/retail/clientlibs/pm_fp.min.e553e0a340436e410195516702932419.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 2674
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-common.min.e62b3b7e5d7c9709a745aa908756c976.js
104.110.2.245200 OK 4.7 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-common.min.e62b3b7e5d7c9709a745aa908756c976.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (541)
Hash 8a476078672b506913b87ff1b00bcae0
0c01c2f0da2f57bf6782c2f78db6108d7c4523a9
ae0abb2b21665ca15aab641266d16e74b8acf448c6390c86db7ce9ce8425a8f3
GET /etc.clientlibs/retail/clientlibs/retail-common.min.e62b3b7e5d7c9709a745aa908756c976.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 4736
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/libs/wcm/foundation/components/page/responsive.min.dd681ee257834c2b1fb20fb9af28568b.css
104.110.2.245200 OK 5.3 kB URL HTTP/2 www.tdameritrade.com/libs/wcm/foundation/components/page/responsive.min.dd681ee257834c2b1fb20fb9af28568b.css
IP 104.110.2.245:0
Hash 2d25d392458eb4d5d367a336ae1794e0
e995a0639733037fadd619cd6d5d1c5e9f79e01f
3e6b957b603aeba86444a40fb2b76f369691e644836668918ebfe586d8f5e6ef
GET /libs/wcm/foundation/components/page/responsive.min.dd681ee257834c2b1fb20fb9af28568b.css HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 5280
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.d54c23ba76bd8648119795790ae83779.css
104.110.2.245200 OK 190 B URL HTTP/2 www.tdameritrade.com/etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.d54c23ba76bd8648119795790ae83779.css
IP 104.110.2.245:0
Hash c95e4fee6896ebf0eb64b47da64521f5
9c7b09b67abf2546126d4d28db09028253fb48d3
dd4f61c2b90f3dde57899eaf2dcfbb5ab4633907c1e093c04f85afe6e58e7f4c
GET /etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.d54c23ba76bd8648119795790ae83779.css HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 190
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail.min.bcc06fd9f895bb10eb02eadc4f341303.js
104.110.2.245200 OK 141 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail.min.bcc06fd9f895bb10eb02eadc4f341303.js
IP 104.110.2.245:0
File type Unicode text, UTF-8 text, with very long lines (666)
Size 141 kB (141358 bytes)
Hash 9583756565ad3e96c7fdab340af3e227
f6753e32eab7b57edfe1786a10a6e781a5ae9f7b
6eed5d9d1cccfb045bf79f2afbf8871820b7a7f79c3187d8fb1e0aecea7c3a20
GET /etc.clientlibs/retail/clientlibs/retail.min.bcc06fd9f895bb10eb02eadc4f341303.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 141358
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/libs/cq/experience-fragments/components/xfpage/content.min.5797e8e7d68b9d8bf73ee762c36c2426.css
104.110.2.245200 OK 64 B URL HTTP/2 www.tdameritrade.com/libs/cq/experience-fragments/components/xfpage/content.min.5797e8e7d68b9d8bf73ee762c36c2426.css
IP 104.110.2.245:0
File type ASCII text, with no line terminators
Hash 9cb8e73bb5a7f0fbdad8efc7f8ce6ce6
560660162d87af6e43f1876eb46d479cb1934c50
a4825b7b9e1a59e5e2737fee62824297f12bd1456e3c577d58d9baf0d244a8cb
GET /libs/cq/experience-fragments/components/xfpage/content.min.5797e8e7d68b9d8bf73ee762c36c2426.css HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 64
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/logos/td_ameritradelogo.svg
104.110.2.245200 OK 1.2 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/logos/td_ameritradelogo.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3126), with no line terminators
Hash e2102832059ca006d77c17b9f715501d
d7d98d2bdd6f5a83229bd6a2706ae429bef49779
037e0b1fef5173ef30265b14db8693c705858e0aed17d459c0a4f9fe78fa01e5
GET /content/dam/tda/shared/logos/td_ameritradelogo.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="td_ameritradelogo.svg"
x-content-type-options: nosniff
last-modified: Sat, 18 Jul 2020 00:28:11 GMT
etag: "c36-5aaac59307cc0"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1219
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/logos/td_ameritradelogo-nav.svg
104.110.2.245200 OK 1.4 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/logos/td_ameritradelogo-nav.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3375), with no line terminators
Hash 9f51b3ba8d9c325f43b97a884152611b
b6451bf22ae169d2873e29363157eadaacc4f969
2dc532c0a9d793fced6363cb980809e9439874cc0d9f452eec64bbc0c966e5ac
GET /content/dam/tda/shared/logos/td_ameritradelogo-nav.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="td_ameritradelogo-nav.svg"
x-content-type-options: nosniff
last-modified: Tue, 23 Feb 2021 14:59:30 GMT
etag: "d2f-5bc022a593880"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1378
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
media.tdameritrade.com/media/css/tdasans_remote.css
23.13.33.43200 OK 445 B URL HTTP/1.1 media.tdameritrade.com/media/css/tdasans_remote.css
IP 23.13.33.43:0
File type ASCII text, with CRLF line terminators
Hash 27e4845944c6b012c1fab12abd0ada6f
4a25119723727a9ea2e52a594cbc24e2c8c662ea
089d58350882bf89ac0f23eec7beb6d0ab1480f82eb5d2fd7eeaebe17e0083c4
GET /media/css/tdasans_remote.css HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Sun, 07 Mar 2021 23:20:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Length: 445
Content-Type: text/css
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Cache-Control: max-age=56968
Expires: Thu, 08 Sep 2022 12:03:59 GMT
Date: Wed, 07 Sep 2022 20:14:31 GMT
Connection: keep-alive
www.tdameritrade.com/
104.110.2.245200 OK 77 kB IP 104.110.2.245:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2393), with CRLF, LF line terminators
Hash 3a880c497a04205c797379270850fad2
54ad40783d035139912ac8da4f6f6dc45ac384d8
5a386376b62d2181b281a5490c5db2f67e918ac8918466bb10fccf3aaebec1b1
GET / HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
last-modified: Tue, 06 Sep 2022 21:51:56 GMT
etag: "12d52-5e8093476b750"
accept-ranges: bytes
content-length: 77138
access-control-allow-origin: *
content-type: text/html;charset=utf-8
date: Wed, 07 Sep 2022 20:14:31 GMT
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self', frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_shoppingbags.svg
104.110.2.245200 OK 442 B URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_shoppingbags.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (976), with no line terminators
Hash 494535a9eb09745108eb58d0b7542973
930c19754aebda1f160e09980f0f550d6c572e27
d593678eb576c1f0ebe1f9a3c104191e79980437df7c2d77e6272bab3674149f
GET /content/dam/tda/shared/icons/brand-expression/offwhitebg_shoppingbags.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="offwhitebg_shoppingbags.svg"
x-content-type-options: nosniff
last-modified: Tue, 24 Nov 2020 16:43:38 GMT
etag: "3d0-5b4dd03330280"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 442
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_pricetag.svg
104.110.2.245200 OK 532 B URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_pricetag.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1161), with no line terminators
Hash c3489a303a5307e6548346c842e6e1ce
acf2d41c056682669b734c3e42c3e6b919e11c8b
473805a57d50b64d92c47dea775b579cfaf38923879618a252daff4a32a81732
GET /content/dam/tda/shared/icons/brand-expression/offwhitebg_pricetag.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="offwhitebg_pricetag.svg"
x-content-type-options: nosniff
last-modified: Tue, 24 Nov 2020 16:43:36 GMT
etag: "489-5b4dd03147e00"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 532
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_threedevices.svg
104.110.2.245200 OK 1.1 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_threedevices.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3045), with no line terminators
Hash 0a8227165c4830da335a42a349adfb4f
f40b5ae036c476f1f5f32c8d162dfe3138437b22
816df7a88c18eb1536fcb69968f5f442a21917012d83638912f220a081b41f93
GET /content/dam/tda/shared/icons/brand-expression/offwhitebg_threedevices.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="offwhitebg_threedevices.svg"
x-content-type-options: nosniff
last-modified: Tue, 24 Nov 2020 16:43:39 GMT
etag: "be5-5b4dd034244c0"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1061
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_phonesupport.svg
104.110.2.245200 OK 823 B URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/icons/brand-expression/offwhitebg_phonesupport.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1919), with no line terminators
Hash 7f85cb6a4c17a57f8291d30adf6eb9e2
d31fd96d32ffeb7fc6134b07027ab7c5a0828090
4c04c9f5a0751f43bd5981df2c1cf66963049ed7494225fa6c490262b3f547ab
GET /content/dam/tda/shared/icons/brand-expression/offwhitebg_phonesupport.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="offwhitebg_phonesupport.svg"
x-content-type-options: nosniff
last-modified: Tue, 24 Nov 2020 16:43:34 GMT
etag: "77f-5b4dd02f5f980"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 823
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/logos/tda_footer_logo.png
104.110.2.245200 OK 3.6 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/logos/tda_footer_logo.png
IP 104.110.2.245:0
File type PNG image data, 390 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f0a6c82f50d850f7321a480200b89e3
a6bf8c4f9d512d27ea5e7185766d89ed494991f1
f5c4612ad2fb4722d47106fe532b587b42e133fc8f13797e455918f23085d507
GET /content/dam/tda/shared/logos/tda_footer_logo.png HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sat, 15 Aug 2020 02:23:49 GMT
etag: "ded-5ace13a487740"
accept-ranges: bytes
content-length: 3565
access-control-allow-origin: *
content-type: image/png
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/retail/marketing/zht/images/misc/cs-module-dummy-title.png
104.110.2.245200 OK 5.5 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/retail/marketing/zht/images/misc/cs-module-dummy-title.png
IP 104.110.2.245:0
File type PNG image data, 56 x 139, 8-bit/color RGBA, non-interlaced\012- data
Hash 91ca9e157fe22e41404e0dc3a715e492
e7a2d23504f9609690abed1efa8dc421432be01a
b1a7cf9ab6f69ed15ac3031e5723a61eb6df92fd2dc45b9d9d1f1ad57d078d78
GET /content/dam/tda/retail/marketing/zht/images/misc/cs-module-dummy-title.png HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sat, 18 Jul 2020 00:27:23 GMT
etag: "1556-5aaac565410c0"
accept-ranges: bytes
content-length: 5462
access-control-allow-origin: *
content-type: image/png
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
www.tdameritrade.com/content/dam/tda/shared/logos/stockbrokers-logo.png
104.110.2.245200 OK 2.8 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/shared/logos/stockbrokers-logo.png
IP 104.110.2.245:0
File type PNG image data, 248 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cfd529a7fc4e6394ac9e0076bff746f
6de853aaa6950efd99a251493ca77ed2e765a822
1e93f831abf304631f30168dc20bba1617691d93df93d148ed33e75cea80faf8
GET /content/dam/tda/shared/logos/stockbrokers-logo.png HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 11 Feb 2021 00:38:33 GMT
etag: "ace-5bb04bd417440"
accept-ranges: bytes
content-length: 2766
access-control-allow-origin: *
content-type: image/png
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/core/wcm/components/commons/site/clientlibs/container.min.c8339545b501e3db3abc37c9a4cc2d6e.js
104.110.2.245200 OK 390 B URL HTTP/2 www.tdameritrade.com/etc.clientlibs/core/wcm/components/commons/site/clientlibs/container.min.c8339545b501e3db3abc37c9a4cc2d6e.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (501)
Hash 3cbd03bb40927b8fdbf9e2f77ed91852
3f069743b4404761b3bba02fda7af15eb0a879b9
c476bad487826fe0e486741988e5e16b5252081f4b0e0fd5fe5bf18c27fad36e
GET /etc.clientlibs/core/wcm/components/commons/site/clientlibs/container.min.c8339545b501e3db3abc37c9a4cc2d6e.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 390
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
c.evidon.com/geo/country.js
104.110.31.248200 OK 163 B URL HTTP/2 c.evidon.com/geo/country.js
IP 104.110.31.248:0
File type ASCII text, with no line terminators
Hash f9c31f9f61a7403ace1736ff442fa447
7752c68ab240869cde27ca70f98cd0d2c179f6f3
d6522fb64f0b0412513dc5a6bac491a20b68c9802a93f7752f8a117bc286bb33
GET /geo/country.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "fc5d7f2d3cecce9b352830146d9eeb97:1584143301.490412"
last-modified: Fri, 13 Mar 2020 23:48:21 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 163
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding, Origin
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.f0a50b248ef4c2b78abca86d10ed6b6f.js
104.110.2.245200 OK 1.9 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.f0a50b248ef4c2b78abca86d10ed6b6f.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (539)
Hash 8c30228e0274efb950d2732565fb95eb
b891f757b9fa7e3a8601aafb04edef8d04006296
e4a689ca4ec2b7856d26213b28b9b0ac3a942556100400460b0d11b8420ad92c
GET /etc.clientlibs/core/wcm/components/tabs/v1/tabs/clientlibs/site.min.f0a50b248ef4c2b78abca86d10ed6b6f.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1884
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-custom.min.5e8aca088fe36eeb481a569c23d885bc.js
104.110.2.245200 OK 1.8 kB URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail-custom.min.5e8aca088fe36eeb481a569c23d885bc.js
IP 104.110.2.245:0
File type ASCII text, with very long lines (562)
Hash 72cff9aa61670f31785d2af506e7d43e
67dfc5b76656778a62ac8563495ca4ff09a80f12
20ede9f419d818484e02948b2c48bcd2ab4436678ca039090eccc17f3322fb99
GET /etc.clientlibs/retail/clientlibs/retail-custom.min.5e8aca088fe36eeb481a569c23d885bc.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1784
cache-control: max-age=15778800
expires: Thu, 09 Mar 2023 11:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pzOJZsjBFSuwKIHj0q7igw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tn11dPmZWWscNjJzBQnbhoZEtgQ=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4cfe9db3efc7b447048559704abb547d
0fedeeef7f1c79be199d5a751904cc4e6c26156b
c44e036aa89b90ed6c004bb6513c96faef786e3bba5f60beb21e2b8c169cdcc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4699
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:31 GMT
Last-Modified: Wed, 07 Sep 2022 18:56:12 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.tdameritrade.com/content/dam/tda/retail/marketing/en/icons/search.svg
104.110.2.245200 OK 550 B URL HTTP/2 www.tdameritrade.com/content/dam/tda/retail/marketing/en/icons/search.svg
IP 104.110.2.245:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (602)
Hash a39240006e7d76e5d41826c3cae6995a
92d68c839ba84bfd77696dc4110657f5b16f0d00
2937c9843ca2d02e83e40810d315e802d76c4288bed48b8ff610c558456eecf8
GET /content/dam/tda/retail/marketing/en/icons/search.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail.min.696dfcb7be4aaa76e51557d6293c2d2a.css
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
content-disposition: attachment; filename="search.svg"
x-content-type-options: nosniff
last-modified: Sat, 01 May 2021 02:03:13 GMT
etag: "4eb-5c13b2182ba40"
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/svg+xml
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 550
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&ts=1662581664803
54.154.199.204302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&ts=1662581664803
IP 54.154.199.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&ts=1662581664803 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.tdameritrade.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v039-02c11aec6.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&ts=1662581664803
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=88310148113183077993120817723484993125; Max-Age=15552000; Expires=Mon, 06 Mar 2023 20:14:31 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: kOz2YW88T4Q=
Content-Length: 0
Connection: keep-alive
www.tdameritrade.com/content/dam/retail/logos/td_ameritradelogo_BLANK.svg
104.110.2.245302 Found 238 B URL HTTP/2 www.tdameritrade.com/content/dam/retail/logos/td_ameritradelogo_BLANK.svg
IP 104.110.2.245:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4e8ec84f4de4b58e13cd73e6b13a3aa5
867fc4bda88a4f2138516c6dc784930d90c5e46a
7f020071b28822ca225bc34cc6013b06ab5111c7b08c1462b550e9a9a914c5ed
GET /content/dam/retail/logos/td_ameritradelogo_BLANK.svg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
location: https://www.tdameritrade.com/error/page-not-found.html
content-length: 238
content-type: text/html; charset=iso-8859-1
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff2
23.13.33.43200 OK 45 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 44740, version 1.7864\012- data
Hash 6804e0e19d7e444723475d1b736a66b5
dc702b7b59d49bb664a2d4522df2e452769e29c7
3913a49a566df16c180e7bfaeba3862dc5eb5cb9b50bcab9051c3746c0e08b60
GET /media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:09 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 44740
Connection: keep-alive
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff2
23.13.33.43200 OK 36 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 35752, version 1.7864\012- data
Hash e4c7ca839177f218280d9aa660fb9af2
a87ada6c2b6f30613dfe4244173faf5da03df3f7
2a214bc767d1e4160c0b86d08cbed83f64896ce712415e4ff95f8ff38692ecb9
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:03 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 35752
Connection: keep-alive
Access-Control-Allow-Origin: *
www.tdameritrade.com/content/dam/tda/retail/marketing/en/images/homepage/features/trader-dominance-desktop1.jpg
104.110.2.245200 OK 70 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/retail/marketing/en/images/homepage/features/trader-dominance-desktop1.jpg
IP 104.110.2.245:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x780, components 3\012- data
Hash e7d0345bcfab59a4a692ff49628cb59a
8c808989d52d7691b4b75eff99e175039080062d
c7265a01cd52afdd4c5df6557db66cb20650769a573c2dc1f378ecae1dcdaf5d
GET /content/dam/tda/retail/marketing/en/images/homepage/features/trader-dominance-desktop1.jpg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
last-modified: Mon, 03 May 2021 17:11:59 GMT
etag: "1124b-5c1700f3235c0"
accept-ranges: bytes
content-length: 70219
access-control-allow-origin: *
content-type: image/jpeg
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
www.tdameritrade.com/libs/granite/csrf/token.json
104.110.2.245200 OK 2 B URL HTTP/2 www.tdameritrade.com/libs/granite/csrf/token.json
IP 104.110.2.245:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /libs/granite/csrf/token.json HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-length: 2
content-type: application/json;charset=iso-8859-1
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 20:14:31 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff2
23.13.33.43200 OK 36 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 36500, version 1.7864\012- data
Hash 154bdeee6ea381e5b957838073694f7f
bc7699583d2feea4fe6df9e3ab27fb63908679e9
ce35bd84cc62f8ef41fb59e03ab04abc50fb10937e1a4386d6a075a9327f8785
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:03 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 36500
Connection: keep-alive
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff2
23.13.33.43200 OK 48 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 48436, version 1.7864\012- data
Hash 3dd61c4aad10d546bff1748c9318263c
6aa3f03adeb580f7027e8e7a11a3920a7201add2
40631e59ec0224bfd92b35863f22bd338364e0065181b5944cc9b6ab152dc63a
GET /media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:07 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 48436
Connection: keep-alive
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff2
23.13.33.43200 OK 35 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 35280, version 1.7864\012- data
Hash d2c8a7d3dc95d3b65dddaf60190359db
97a59998d8c7911eeecb2edbc130218bb349dd8c
d8e048f8c11dabd81abd8c83cd3d037fdf8296a3ed73895235f9d24b3097cbf6
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:01 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 35280
Connection: keep-alive
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff2
23.13.33.43200 OK 36 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 36484, version 1.655\012- data
Hash b42811d9b5fdb7a31c02afabf42da2c0
13e1d5f6f626170fd27e37f4ddb2e48e65a77b6c
4bcbae43e7563191b11d279fe71628bce0b6a6dd5467da0648fa0561458ad5e3
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:01 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:31 GMT
Content-Length: 36484
Connection: keep-alive
Access-Control-Allow-Origin: *
www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail/resources/images/favicon.ico
104.110.2.245200 OK 335 B URL HTTP/2 www.tdameritrade.com/etc.clientlibs/retail/clientlibs/retail/resources/images/favicon.ico
IP 104.110.2.245:0
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash 868611dd15205ed10f648f8280bffed0
a7e6a1ccd54e51652ad50f08d1b0174f253efdb7
cd810338c06764cea31f38207b3f0bcc67d2f9688c5ecdd3f398087c6083e8d9
GET /etc.clientlibs/retail/clientlibs/retail/resources/images/favicon.ico HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 25 Feb 2021 01:40:07 GMT
etag: "37e-5bc1f3b36abc0"
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: image/vnd.microsoft.icon
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 335
cache-control: public, max-age=604800
date: Wed, 07 Sep 2022 20:14:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.tdameritrade.com/apps/retail/clientlibs/retail/js/search-worker.js
104.110.2.245200 OK 1.1 kB URL HTTP/2 www.tdameritrade.com/apps/retail/clientlibs/retail/js/search-worker.js
IP 104.110.2.245:0
Hash 29d46c7e6220cf4815979a12ab97628b
99a06049262fc252d07118f84b4e2b3b5c8a2a4a
0ae731ef859c443a82e6e6d2a1910f3f4e7bc512629a87e05ab1aa7b0e46b978
GET /apps/retail/clientlibs/retail/js/search-worker.js HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
last-modified: Sat, 15 Aug 2020 01:23:50 GMT
etag: "9a7-5ace063c41580"
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: application/javascript
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 1069
cache-control: max-age=86400
expires: Thu, 08 Sep 2022 20:14:32 GMT
date: Wed, 07 Sep 2022 20:14:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff
23.13.33.43200 OK 64 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 64024, version 1.0\012- data
Hash d71a3a8adea08f72c584404f2e530131
96e96ba06c891778398c4cb29165ed2801b58722
06b87370477b8b2d0b2cd69d5b808118ba637b80d4469d6fd63c49af3c3b14fc
GET /media/fonts/tdasans-display/TDAmeritradeSans-Bold_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:03 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff
23.13.33.43200 OK 46 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 46216, version 1.0\012- data
Hash a29ab10d76d85d61b71e1ad89457c944
9f410859df75f837fdfe47c902f13d8f81d66ee4
d93d0553dd336d05c4a484c3367e2c6e78bde758829e25e9aeb41ca9adafa1c0
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Bold_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:18:58 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff
23.13.33.43200 OK 48 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 47680, version 1.0\012- data
Hash 4d399ccb8fb604062d3dc64dc6db1e11
ae4e484c863ab9f6e11bfe45c4a03f3db8fff2ba
da3881dbfe44492b0082aff8fc9568ea9de28878d300050125208df3f0aac4e2
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Medium_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:00 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8a659d3e15ed1a64e310593ce44f9ee
5f4121eab26d5f1769bc3a030c65dda928af9f07
b2e65a014b2f1119f97a521d042ae11cb4b95ab657982b0d9abfe9e7b9d59274
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:32 GMT
Last-Modified: Wed, 07 Sep 2022 20:06:52 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 471
tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.js
23.38.200.249200 OK 101 kB URL HTTP/2 tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.js
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (33012)
Size 101 kB (101435 bytes)
Hash c98c9062415a176e54f879e385a3ea97
979fbc8042665136a1d6cecbe1eab623e37c2c6c
473d82da0f685793ec00fc685f4a3323d62706b3f3cc945577c7b641bab6ebfe
GET /utag/tdameritrade/rmarketing/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ffddddced6c2a87af587a29378f5c70c:1655843583.872436"
last-modified: Tue, 21 Jun 2022 20:33:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 07 Sep 2022 20:19:31 GMT
date: Wed, 07 Sep 2022 20:14:31 GMT
X-Firefox-Spdy: h2
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff
23.13.33.43200 OK 58 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 57972, version 1.0\012- data
Hash 6dcde34daed1f8ea93a20e22ca8aad39
f997620726840926bb028bfd7b4ee706c84006e2
2ab2e7b69e86d27a223ebf934ccf67a3620e8bad4749198a54f1503ea415d04b
GET /media/fonts/tdasans-display/TDAmeritradeSans-Regular_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:05 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff
23.13.33.43200 OK 47 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 46940, version 1.0\012- data
Hash 6a4ddd6f056b39572bdd9ced60b0498d
2922600d31a50b3a53a58bcab77f88784f185eb5
e2eff3bee6ed53ccebd0016161d6ddffdaae70ac4a96786d2bc4a521efc16f37
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-Regular_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:19:00 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff2
23.13.33.43200 OK 47 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 46824, version 1.7864\012- data
Hash 8ff2a59622cc8f2d03f6b281a70d3a31
441a683e626a527244aa1e98f08aae97ee4cdaa7
3b0de7e032cd7d5c7015ef73d9ddf35bc24d22c2c06780138fd90623ac6e61c1
GET /media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:08 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Content-Length: 46824
Connection: keep-alive
Access-Control-Allow-Origin: *
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff
23.13.33.43200 OK 60 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 60324, version 1.0\012- data
Hash 1a6bda862ff0d0bf0ef0536c0ed64340
70108f30672b03e6ee305518a187038e5aac4099
cab82843bbae0f14a5ad0ccecc1754b395950c7eea8e051f9e3412371c601eb8
GET /media/fonts/tdasans-display/TDAmeritradeSans-Medium_v1-12.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:04 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.47.js?utv=ut4.46.202103052306
23.38.200.249200 OK 1.0 kB URL HTTP/2 tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.47.js?utv=ut4.46.202103052306
IP 23.38.200.249:0
File type ASCII text, with very long lines (1048)
Hash fc7adc6a7aa636ccd9ebda6de4246c24
3e984dbc0a8ea677da70d09dc6a7490e180f178e
776d74e05b21c3b108bf2f14affdd7399ac8a2262c2d566299e72000fe6ce7d5
GET /utag/tdameritrade/rmarketing/prod/utag.47.js?utv=ut4.46.202103052306 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9e3a6b0c6d1141b797d8b04026172b47:1595257430.644881"
last-modified: Mon, 20 Jul 2020 15:03:50 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 22 Sep 2022 20:14:32 GMT
date: Wed, 07 Sep 2022 20:14:32 GMT
content-length: 1042
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.69.js?utv=ut4.46.202103060411
23.38.200.249200 OK 1.6 kB URL HTTP/2 tags.tiqcdn.com/utag/tdameritrade/rmarketing/prod/utag.69.js?utv=ut4.46.202103060411
IP 23.38.200.249:0
File type ASCII text, with very long lines (995)
Hash 5f09f728554c08ffc77d09d737447a13
9a0e24dc71711190794536dcbceefc0ecbb2d445
d39373a7a8ae48a38c393d55dea5adf04e9ea5301f3e16be6776413eb1bdc378
GET /utag/tdameritrade/rmarketing/prod/utag.69.js?utv=ut4.46.202103060411 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "84b9dc1c3c4cf72b8f157058ccbe6800:1595257435.697747"
last-modified: Mon, 20 Jul 2020 15:03:55 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 22 Sep 2022 20:14:32 GMT
date: Wed, 07 Sep 2022 20:14:32 GMT
content-length: 1632
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=tdameritrade/rmarketing/202206212032&cb=1662581665487
23.38.200.249200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=tdameritrade/rmarketing/202206212032&cb=1662581665487
IP 23.38.200.249:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=tdameritrade/rmarketing/202206212032&cb=1662581665487 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Wed, 07 Sep 2022 20:24:32 GMT
date: Wed, 07 Sep 2022 20:14:32 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash cf42207aa489be8ef27d0fadb228cf9a
bec39ad0bca0625e6554efde44594491fdc1ad4c
4adca056746bb4eb9b9f915a0c188883fa863d0f2d4d5cc7c36025b4058ea2c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 20:14:32 GMT
Last-Modified: Wed, 07 Sep 2022 18:51:29 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LzSxkul-PG4kDa4WhhhBSxBh4tNPR6xXVFpsMac9YYIPWMiYxtYFHw==
Age: 4983
embed.rcrsv.io/storage-iframe
54.230.111.111200 OK 146 B URL HTTP/2 embed.rcrsv.io/storage-iframe
IP 54.230.111.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9afb86085d3cc4bf1065539fa398dc21
d995b8d735860893edce2e77d84897f8124d89b4
30e0c05765f6c91ae25c5fe4686edd8c08cf13638d66de2b93da95bdc1fbc762
GET /storage-iframe HTTP/1.1
Host: embed.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 146
p3p: CP="NOI ADM DEV PSAi OUR OTRo STP IND COM NAV DEM"
date: Wed, 07 Sep 2022 05:56:03 GMT
cache-control: max-age=86400, no-transform, public
etag: W/"92-2ZW41zWGCJPtzi532EiX+BJNibQ"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: irsGJm0LBKR6BLDjIjhifvwtAQRzLPhx_L6DqOVN_QiFACwpeCXJBw==
age: 52357
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9284fd1f5be00ab8af94494f0dd11601
aeb92e5f24d96582935cf83269164664a8e138b9
cb09f5a7186aa0a946d778f94046363f9a12b0b9c59eb35ba087dedf052f1f09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:32 GMT
Etag: "6318a6fe-1d7"
Server: ECS (amb/6B72)
Content-Length: 471
sstats.tdameritrade.com/id?d_visid_ver=5.1.1&d_fieldgroup=MC&mcorgid=F3470978534690820A490D4C%40AdobeOrg&ts=1662581665678
13.36.218.177200 OK 48 B URL HTTP/2 sstats.tdameritrade.com/id?d_visid_ver=5.1.1&d_fieldgroup=MC&mcorgid=F3470978534690820A490D4C%40AdobeOrg&ts=1662581665678
IP 13.36.218.177:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f48206629dd9c8e5103b7ba9bcdc3828
19ea53d9bc62b32ac821f32b12c9e57c100ff0ef
04f229141db5824b0006e52499b9d1c2c97a6d2b1f1de73b40ced1f0b47baaa1
GET /id?d_visid_ver=5.1.1&d_fieldgroup=MC&mcorgid=F3470978534690820A490D4C%40AdobeOrg&ts=1662581665678 HTTP/1.1
Host: sstats.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://www.tdameritrade.com
access-control-allow-credentials: true
date: Wed, 07 Sep 2022 20:14:32 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1%7CMCMID%7C30350969624863906350043560237591843255; Path=/; Domain=tdameritrade.com; Max-Age=63072000; Expires=Fri, 06 Sep 2024 20:14:14 GMT;
s_ecid=MCMID%7C30350969624863906350043560237591843255; Path=/; Domain=tdameritrade.com; Max-Age=63072000; Expires=Fri, 06 Sep 2024 20:14:14 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.tdameritrade.com/error/page-not-found.html
104.110.2.245200 OK 14 kB URL HTTP/2 www.tdameritrade.com/error/page-not-found.html
IP 104.110.2.245:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5668), with CRLF, LF line terminators
Hash 139f5c23cfe401d00ef124bad0e98909
8294744f05fe45237f2da52abbd67940da7858b7
c72faec8e57b5d5710c5b0b4c463544fc595091cb1e44515b2e6eaeb4ff67bde
GET /error/page-not-found.html HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tdameritrade.com/
Connection: keep-alive
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-content-type-options: nosniff
last-modified: Fri, 26 Aug 2022 01:06:21 GMT
etag: "12ec5-5e71a85b30eef"
accept-ranges: bytes
content-security-policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
access-control-allow-origin: *
content-type: text/html;charset=utf-8
strict-transport-security: max-age=31536000
content-encoding: gzip
content-length: 14004
expires: Wed, 07 Sep 2022 20:14:32 GMT
cache-control: max-age=0, no-cache
pragma: no-cache
date: Wed, 07 Sep 2022 20:14:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.1.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&d_mid=30350969624863906350043560237591843255&ts=1662581665897
54.154.199.204200 OK 2.1 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.1.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&d_mid=30350969624863906350043560237591843255&ts=1662581665897
IP 54.154.199.204:0
File type JSON data\012- , ASCII text, with very long lines (7372), with no line terminators
Hash 5ceab3edab5de27d3bf8b4e9e149f807
6dc6dd8c7ebcba593cefb655ffde9595fea40379
e233938b15f7f4ecaa5be320bba824d20f94a4a25d4ddb49c67f5ed766403ded
GET /id?d_visid_ver=5.1.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=F3470978534690820A490D4C%40AdobeOrg&d_nsid=0&d_mid=30350969624863906350043560237591843255&ts=1662581665897 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.tdameritrade.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v039-0bd1befb8.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=30327486923064192590041211394029535463; Max-Age=15552000; Expires=Mon, 06 Mar 2023 20:14:32 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: tyv8hsPwRug=
Content-Length: 2052
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash d0993cd799c51549d3579b1f137cb7d9
31e9ec4600218984a1911e336b04612bd8ef7ca6
6b33598ac9c15d6e71bdfb0638baf0e9c069ef5fe5be058bfc6002b5a3f3727e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5804
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:32 GMT
Etag: "63154349-13a"
Last-Modified: Wed, 07 Sep 2022 18:37:48 GMT
Server: ECS (amb/6B72)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d01cca50dd28da36e194c5612aaacc36
e4d8d6236e2dc091f7ac642b2ae9326fe45b8ba5
a091d8872599c3d7561067cadd69194a6873ba283379bfcff5ece3d43a01d797
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:32 GMT
Last-Modified: Wed, 07 Sep 2022 18:31:24 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16976
Expires: Thu, 08 Sep 2022 00:57:28 GMT
Date: Wed, 07 Sep 2022 20:14:32 GMT
Connection: keep-alive
tdameritrade.tt.omtrdc.net/rest/v1/delivery?client=tdameritrade&sessionId=20428d2939d14cf2a8412760ba3fb6b8&version=2.2.0
52.208.60.7200 OK 805 B URL HTTP/2 tdameritrade.tt.omtrdc.net/rest/v1/delivery?client=tdameritrade&sessionId=20428d2939d14cf2a8412760ba3fb6b8&version=2.2.0
IP 52.208.60.7:0
Hash 284715f80ae08f0c679841f64b84ecfd
fd62bbfd3dd4688c5e02f0575a137725082d4c0d
11f094f561fccd55af7fec70eb10e378945ae00e4af395c649489feceb26734e
POST /rest/v1/delivery?client=tdameritrade&sessionId=20428d2939d14cf2a8412760ba3fb6b8&version=2.2.0 HTTP/1.1
Host: tdameritrade.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6902
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 20:14:32 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.tdameritrade.com
access-control-allow-credentials: true
x-request-id: b89317f3f7258a6afda2a96b9b0e7b60
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16976
Expires: Thu, 08 Sep 2022 00:57:28 GMT
Date: Wed, 07 Sep 2022 20:14:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16976
Expires: Thu, 08 Sep 2022 00:57:28 GMT
Date: Wed, 07 Sep 2022 20:14:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16976
Expires: Thu, 08 Sep 2022 00:57:28 GMT
Date: Wed, 07 Sep 2022 20:14:32 GMT
Connection: keep-alive
www.tdameritrade.com/content/dam/tda/retail/marketing/en/images/homepage/sub-features/homepage_altcontent_platforms_750x500.jpg
104.110.2.245200 OK 97 kB URL HTTP/2 www.tdameritrade.com/content/dam/tda/retail/marketing/en/images/homepage/sub-features/homepage_altcontent_platforms_750x500.jpg
IP 104.110.2.245:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x500, components 3\012- data
Hash 4d46213ee7709c44649586ea10908b9f
bc1905cad74b94d338565579fd48911580c260ba
d19cc924a936eeb4325f73363f04df2dea21d125fdea4b3623e862b58c08e1d0
GET /content/dam/tda/retail/marketing/en/images/homepage/sub-features/homepage_altcontent_platforms_750x500.jpg HTTP/1.1
Host: www.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 14 Jan 2021 18:44:34 GMT
etag: "1798c-5b8e0a598e880"
accept-ranges: bytes
content-length: 96652
access-control-allow-origin: *
content-type: image/jpeg
strict-transport-security: max-age=31536000
cache-control: max-age=604800
expires: Wed, 14 Sep 2022 20:14:33 GMT
date: Wed, 07 Sep 2022 20:14:33 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
34.120.237.76200 OK 58 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP 34.120.237.76:0
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 221ad3c3a9825d4e40272557a94d5f8f
deea488df404c32495f2fb67976cd2b985e63b9c
3f53e845652bb259089c5578f4ff6dfef51f2981a9bd871e1bcb448cdad9bd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 270858f2-c94d-4047-8e3b-c49a5a603610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjbiJHuZoAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ad940-3ba2164762e4f74227b6a23b;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:56:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: do30zKZmrP_j4feGGu8G39ibskE4dXxTL8YzpAR7PCFpQuJalYeJqA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:57:13 GMT
age: 80240
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 193380c8-0d3a-4b81-9429-fa4cb4cf136e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDq26FI7oAMFpOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317be92-2f435ce33c4469de425b11a3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:41:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6MhayVPx_iJ_mgJzUfuOsFeBgAK21RktvWOwrX3Rvk3WIElEek1LFA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:49:33 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 80700
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: 1a501a0a-2671-468b-885b-2a2efb73bc2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDq64HbCIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317beab-395f6d1436b027ee60d00abd;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZWf6CXKcClMXAXmFXNp0sxVCMUFyZqhhh7B83tJMX_jvteLRDzG8QA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:42:04 GMT
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
age: 81149
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:12:06 GMT
age: 54147
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:14:32 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 79201
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1462b0c8fff091f29c7c5145031c08aa
55154c3878e9650f463805c3829f03a1603f14c1
62f913a6498b21da33451e7cf0e37c5fdef565324bcd35d93cb536527394a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11778
x-amzn-requestid: 0054ce27-72f6-4161-90d0-eeb20d9c9537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqcrEczIAMFqlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdea-0c3e511533c91b783a458f2b;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Q4n9f959aCshN6qgQ2LWVSUTmSd4hvjWyF2GNdsR1_asVSdFKxXsqw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:08 GMT
age: 81205
etag: "55154c3878e9650f463805c3829f03a1603f14c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.rcrsv.io/verify?env=&ui=&token=Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU&domain=www.tdameritrade.com
54.230.111.111200 OK 4.4 kB URL HTTP/2 embed.rcrsv.io/verify?env=&ui=&token=Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU&domain=www.tdameritrade.com
IP 54.230.111.111:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3283)
Hash 3421d6258ff9fb861021eddbb6737271
1761791cc2eddd31d3ad3e83b83a99446d980df8
70cd1b0d9e4e07c98804ff7b0ef6a2d3c7b4b58c019c53169f2de011a1774e39
GET /verify?env=&ui=&token=Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU&domain=www.tdameritrade.com HTTP/1.1
Host: embed.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 07 Sep 2022 20:13:01 GMT
access-control-allow-origin: *
cache-control: max-age=600, no-transform, public
etag: W/"c6d-mf8rk6lsBZCvq4yNjGgDYhRCiGg"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GwCpZgFLEfCvfpswHgm0tpbi1V1fZEXBlBlYI3RSjJ8pdKONxHc1dQ==
age: 91
X-Firefox-Spdy: h2
media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff
23.13.33.43200 OK 48 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 48084, version 1.0\012- data
Hash 0ec3bde2abb4c92ad693ac40cd4dec67
d0df7be308204e38a9a0c5982c45d447a6b1d1ab
15fc2851ba9d39fa7681e6fb659ae100d020348e6cbc13b325952c83c0b1cc83
GET /media/fonts/tdasans-screen/TDAmeritradeSansScreen-BoldItalic_v1-01.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:18:59 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Type: application/font-woff
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
cdn.appdynamics.com/adrum/adrum-4.4.3.717.js?_=1662581664884
143.204.55.51200 OK 26 kB URL HTTP/2 cdn.appdynamics.com/adrum/adrum-4.4.3.717.js?_=1662581664884
IP 143.204.55.51:0
File type ASCII text, with very long lines (646)
Hash 8941c4d77dd91bd1862b86b5f372b642
910c2a97c96e61842d39e3b0432129e20bea7df8
5fe1a57af75ce324c927bb98165b9f2b2fea136738fcc06213216d9cc756ed86
GET /adrum/adrum-4.4.3.717.js?_=1662581664884 HTTP/1.1
Host: cdn.appdynamics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 Sep 2022 21:05:19 GMT
server: nginx/1.16.1
last-modified: Mon, 23 Apr 2018 23:58:01 GMT
etag: W/"5ade7309-fbb8"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: public, max-age=2678400, s-max-age=14400
timing-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4P7cBgWbumAlHhIzaclOziMLeAwuz5CJBrzG5IIz0nzmo6bm_7JzzQ==
age: 83353
X-Firefox-Spdy: h2
assets-tda.rcrsv.io/js/api.js
54.230.111.56200 OK 218 kB URL HTTP/1.1 assets-tda.rcrsv.io/js/api.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (32046)
Size 218 kB (217593 bytes)
Hash ca037b72f2115df642d37f84d1e39235
3fa6c13a6612de8f90157a3234fcf9292ee9f2e3
2c9527e4eaeef7812323ebe2a674f9ca34b3a79cbd5177e6f5a5d5831e96b871
GET /js/api.js HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Dec 2020 23:00:37 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:08:35 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"046cbe08c8ea642b010ae87233e25053"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AE9ffVX2RRR82uHTKrLWi1wl_NgIeONu3xrK5fgLhnc28KVqeTuWAg==
Age: 586
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff2
23.13.33.43200 OK 45 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff2
IP 23.13.33.43:0
File type Web Open Font Format (Version 2), TrueType, length 45228, version 1.655\012- data
Hash 55034f5a9fc07d0340ce5def63b3b19b
e488d52e102af53261132adbac73870a768cbb8d
b9ababf07e1d01f3cedbcacfcf7d52d7585a4e11a6b94738c288981a956d4540
GET /media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff2 HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:07 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Unused62: 8096267
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:33 GMT
Content-Length: 45228
Connection: keep-alive
Access-Control-Allow-Origin: *
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_show.svg
54.230.111.38200 OK 853 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_show.svg
IP 54.230.111.38:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (365), with CRLF line terminators
Hash c5df7650e06e46fe7523f4ce218f4286
32f3410bf80aeec187397b70b953208d73501622
5d24b9f9b5fd391a830809bede221041ec8d7f45c86e8d07b4c70c162e4fbfaf
GET /tda/realtime-bottom-bar-tda/images/tda_show.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 853
last-modified: Wed, 19 Aug 2020 01:12:59 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 20:08:36 GMT
cache-control: max-age=600, no-transform, public
etag: "c5df7650e06e46fe7523f4ce218f4286"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HtwXD3wZ8tWNT1At7Sgj12jtJN4Zh1HybSbPPUrAMXoS_1oHkOfkMg==
age: 395
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_lock.svg
54.230.111.38200 OK 863 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_lock.svg
IP 54.230.111.38:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (383), with CRLF line terminators
Hash 95d239f6daadbfe680c64658d429252a
83282d73dc6308a884d320e8095669478cd99df0
ad13d957e92e168b0a2c635a2ee663ccb00f3e308a361e3c750c80dcaf3bd875
GET /tda/realtime-bottom-bar-tda/images/tda_lock.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 863
last-modified: Wed, 19 Aug 2020 01:12:56 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 20:08:36 GMT
cache-control: max-age=600, no-transform, public
etag: "95d239f6daadbfe680c64658d429252a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L5-4ICJSE8Qs9vkniecH9JQfoZ2kU1tIS6KMjSpBx3KYnDxAcfUNYg==
age: 395
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/js/page.js
54.230.111.38200 OK 142 kB URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/js/page.js
IP 54.230.111.38:0
Size 142 kB (141699 bytes)
Hash 8e7b862481e384dae29d0850b55a535e
420f8c94563be8feb2fd987248b9d4c87da8f637
7bc84944b1abcb61a97bf4c6081835e8c36c7910dddd24229bcac9d9b74ecf9a
GET /tda/realtime-bottom-bar-tda/js/page.js HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 04 Dec 2020 23:05:56 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:08:35 GMT
cache-control: max-age=600, no-transform, public
etag: W/"6853a79d26811cb4056e317b1545e29b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eMnzpo2dR6e58g69coI7BEFm9UWhcffkgUnOc6wTVJzKaxz6NlcabQ==
age: 422
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_trash.svg
54.230.111.38200 OK 832 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_trash.svg
IP 54.230.111.38:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (349), with CRLF line terminators
Hash 5a250bf7bad827d3146fc8d3d79551cd
f426c3ece3b6fe000cadd54520f8d0cba3cda061
6ee9def154f57e8e5acd2a806a1f1a9d85e689446192c65d3bce4d313e4421fc
GET /tda/realtime-bottom-bar-tda/images/tda_trash.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 832
last-modified: Wed, 19 Aug 2020 01:13:00 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 20:14:33 GMT
cache-control: max-age=600, no-transform, public
etag: "5a250bf7bad827d3146fc8d3d79551cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6ay3sIAc3xcIQfaodBJ-OXrG56LQr2HC-p_3LLCQSPxI25lU7hlhyA==
age: 5
X-Firefox-Spdy: h2
auth.tdameritrade.com/ux/c5120/default-client/verde/verde-components-0.1.0.css
198.200.171.172200 9.6 kB URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/default-client/verde/verde-components-0.1.0.css
IP 198.200.171.172:0
File type ASCII text, with very long lines (1338), with CRLF line terminators
Hash 761d12d310f0933b2184ae837eb4c29c
abaacbc7c95ae5bd4aa498d80401e2b94f2ca952
53cab02f11cb2d93fe20aadef142aa705862bb4534c8c037ea8f53dc761e9eac
GET /ux/c5120/default-client/verde/verde-components-0.1.0.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Fri, 26 Aug 2022 00:06:56 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:32 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a91641ca9eb0ee50ee3a30bb231589fc
6a5640c3fb32e6cf1698d78ae7b8cb37c184fb9d
eee820d72ab3a5a3b76fd431bd1212c3262a5868771e283b1e74f1a44c43a3b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:33 GMT
Server: ECS (amb/6B72)
Content-Length: 471
auth.tdameritrade.com/ux/c5120/default-client/verde/verde-global-0.1.0.css
198.200.171.172200 16 kB URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/default-client/verde/verde-global-0.1.0.css
IP 198.200.171.172:0
File type ASCII text, with very long lines (9934)
Hash e88fd855e2333b5194db6a2a3f8f03a4
51a161521ecccff0de4e39086cb5d5d258369e45
7ba190a54c772d0baae11f598fb077e1c8b4c29bb3aa11403b2fd99f0a154307
GET /ux/c5120/default-client/verde/verde-global-0.1.0.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Fri, 26 Aug 2022 00:06:56 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
assets-tda.rcrsv.io/styles/newui.css
54.230.111.56200 OK 29 kB URL HTTP/1.1 assets-tda.rcrsv.io/styles/newui.css
IP 54.230.111.56:0
File type ASCII text, with very long lines (382), with CRLF, LF line terminators
Hash 2a002d130f03d253ea746464e97c295a
9d5472630b5de6b4a634abdf21824b2901c5ca7c
c13e93ab1162d5e0f81ce03e426280d450f808004e02679d565d0403bd43d89e
GET /styles/newui.css HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Aug 2020 01:12:53 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:08:36 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"6e8f52bfb4d2d433eb12d7e3ff660e0e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: L56bXZ0emn6TWSLXxnlV18PlSiyJeagZFRMRXOOB27nsi42QGk-jmA==
Age: 553
auth.tdameritrade.com/js/jc2350/cfpJSON.js
198.200.171.172200 5.7 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/cfpJSON.js
IP 198.200.171.172:0
File type ASCII text, with very long lines (3653)
Hash 9d9cfbef0d7b1a2d7e74aab070a853b2
ee3db26a4eafd1cc407c8a6ccf54c6d733590d82
6f3dff06076b14efe244bc8efeccdecd99b521d3c9b63aa9edc8e0d856bfc83f
GET /js/jc2350/cfpJSON.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
assets-tda.rcrsv.io/styles/recursive-annotation-font.css
54.230.111.56200 OK 492 B URL HTTP/1.1 assets-tda.rcrsv.io/styles/recursive-annotation-font.css
IP 54.230.111.56:0
File type ASCII text, with CRLF line terminators
Hash 1d38650dcee4a047feb6dc13021fede4
54d92708dba2abd401be591f7fdb7a540cfc33f5
521e6f9fb90095a8c577a70f04321f403ff8b6eb9e1628272f9c4f26a9cb69f1
GET /styles/recursive-annotation-font.css HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Aug 2020 01:12:55 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:08:36 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"22e3c73b3622d3ae177648971a1e1bd8"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: W9kL4FH68jLEw9YHk-sdJVwUGcT5R210ocxQLtU3hCTwTRebz5oOcw==
Age: 496
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/css/iframe.css
54.230.111.56200 OK 105 kB URL HTTP/1.1 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/css/iframe.css
IP 54.230.111.56:0
File type ASCII text, with very long lines (540)
Size 105 kB (104851 bytes)
Hash bc5eb1e570785a78fd3bb3e5096387c2
ae086ac628a238e0cd1d25d9a64df51cb9f209cd
bfb63876a23c34ac0ce1a6d39a793320748757a5445ec7738d5e263c663473e7
GET /tda/realtime-bottom-bar-tda/css/iframe.css HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Aug 2020 01:13:04 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:12:12 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"469321a69d8b440f7bfb73ea5f198fc3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2Tc4aokBMRUjybKapcgdAStmQWEL_SxiWw7PcwKPY9Af6MoGkVFJ2w==
Age: 165
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash f4e286cf47ee8aa5b1a8087f8f11b2fb
547169a93db0098bce1f6ebab4092b63c627bdc0
040c0247ff3b7053181d41ea0d59c7b451815964ed4ea87f0fdb437738c55287
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 20:14:33 GMT
Last-Modified: Wed, 07 Sep 2022 18:45:57 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: B0cWK320MDGmOTx5_6vs3FeV_fj0JjrUJG_ZLLdd00ZsV1o5u2uSaQ==
Age: 5316
cm.everesttech.net/cm/dd?d_uuid=30327486923064192590041211394029535463
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=30327486923064192590041211394029535463
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=30327486923064192590041211394029535463 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:33 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qQAAAJuCSwMx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:33 GMT; Path=/
everest_session_v2=Yxj7qQAAAJuCTAMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
Server: AMO-cookiemap/1.1
auth.tdameritrade.com/js/jc2350/gfp.js
198.200.171.172200 5.6 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/gfp.js
IP 198.200.171.172:0
Hash 5c357014fc143d6a973f3c561f7f6f62
313b8216b43f63da8466d25062569d7f4d722b8d
29e5c1501075db26e5b7b0e76a293ffdc02081f005f5f6de6235ce3be258a5c9
GET /js/jc2350/gfp.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/ux/c5120/default-client/verde/authorize_tdspec.css
198.200.171.172200 8.7 kB URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/default-client/verde/authorize_tdspec.css
IP 198.200.171.172:0
File type ASCII text, with very long lines (2084)
Hash 2c81f96324cee3057e4ff940c2e84689
d6039fcdb2dec80b5d7956426806353854906bca
7a9b0c11be542d94d2e81b348ba38ef471d32c522b861d23f082af1513b670f4
GET /ux/c5120/default-client/verde/authorize_tdspec.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Fri, 26 Aug 2022 00:06:55 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/ux/c5120/default-client/verde/breakpoints.css
198.200.171.172200 598 B URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/default-client/verde/breakpoints.css
IP 198.200.171.172:0
Hash 8b0c78f0a51725fdfe712c79e473c981
a880c8aed2e42e568242c2a16e382771752b528e
b61686ab318dd74a7e59728d4be4a37d51394ff8aa0dcc5b2209b69fad6b06f3
GET /ux/c5120/default-client/verde/breakpoints.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Fri, 26 Aug 2022 00:06:55 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/ux/c5120/tdaretailweb/retail-marketing-styles.css
198.200.171.172200 1.4 kB URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/tdaretailweb/retail-marketing-styles.css
IP 198.200.171.172:0
Hash fd8be8c9d9c2ba2e6c755b965380297f
39e8efe78c0c7e786edfd4641ac366678f40d28b
b3fd0ca6a47ba1b2cf833cdd597a5d77fe746e5d15171ff4e6d439630a676e71
GET /ux/c5120/tdaretailweb/retail-marketing-styles.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Fri, 26 Aug 2022 00:06:56 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/js/jc2350/details-shim.min.css
198.200.171.172200 441 B URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/details-shim.min.css
IP 198.200.171.172:0
Hash dfc911423e595c73c42fba347fbbdd98
b7dce11f7409f02b2524f26589e05347d07ce1f6
bcc1197e8910e9555167790b1162ddd6276733001966535181a4af3462d89c01
GET /js/jc2350/details-shim.min.css HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Content-Length: 441
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/js/jc2350/fp.js
198.200.171.172200 14 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/fp.js
IP 198.200.171.172:0
File type Unicode text, UTF-8 text, with very long lines (32000)
Hash dfd1e4d3d46af657282d66f2917522f9
d2f476d7f86b5209c264081d36ca7a9c2d3127f2
98bec554ff1340ae4b72cc768c776f28900dc443e4139a41847b690c095a3fb6
GET /js/jc2350/fp.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/js/jc2350/details-shim.min.js
198.200.171.172200 1.8 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/details-shim.min.js
IP 198.200.171.172:0
Hash 40bf70c4080e6853bc132aea68427911
cc8e4f252d38f3b9643f2816029bb8a4ab8335f8
0de4f0d8854c38829a2d69bfc88d26fe3131f6d9bf3cd58cc24a6e6c5763d264
GET /js/jc2350/details-shim.min.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/js/jc2350/auth.js
198.200.171.172200 3.8 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/auth.js
IP 198.200.171.172:0
Hash 427cd94edcc316389f3dd9f67bb5a6a2
481403465ef0de51611aa5f6db577fc63775ccf0
2baccf203be3dd7a23cbd1f369272691c136e542417f7317389e81eae7c4382f
GET /js/jc2350/auth.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/js/jc2350/dropdowns.js
198.200.171.172200 4.8 kB URL HTTP/1.1 auth.tdameritrade.com/js/jc2350/dropdowns.js
IP 198.200.171.172:0
File type ASCII text, with very long lines (759)
Hash 242d80053ba539dc032c0e2c9de9f9f1
2312caf90f6e59363a1cc49013e590e297ba9a0a
91b7d4aba9f629781744aaeab6d8674fcdfcd0de801f9b8a4d8bf785a71f2a8f
GET /js/jc2350/dropdowns.js HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Last-Modified: Mon, 14 Mar 2022 13:49:33 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Type: application/javascript
Transfer-Encoding: chunked
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
auth.tdameritrade.com/ux/c5120/default-client/Icons/logo.svg
198.200.171.172200 7.7 kB URL HTTP/1.1 auth.tdameritrade.com/ux/c5120/default-client/Icons/logo.svg
IP 198.200.171.172:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (998), with CRLF line terminators
Hash 6951b8eed9ce827e91378fe76a9d935d
f9c36a8ee330092f7dd104e0b83499d446c07d1e
ec2f139f3484ff80d9515e425d3573b49024b78ca8dc313dcd2617676b204424
GET /ux/c5120/default-client/Icons/logo.svg HTTP/1.1
Host: auth.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.tdameritrade.com/auth?response_type=code&client_id=TDARETAILWEB%40AMER.OAUTHAP&redirect_uri=https%3A%2F%2Finvest.ameritrade.com%2Fgrid%2Fm%2Fcafelogin&cv=marketing&lang=en-us&state=&code_challenge=-1K9SbqO6EwYAemu4UXQ-nN-LJcbTYB36SbMM3uaHKw&code_challenge_method=S256&exp=1662583472486
Cookie: AMCV_F3470978534690820A490D4C%40AdobeOrg=-637568504%7CMCIDTS%7C19243%7CMCMID%7C30350969624863906350043560237591843255%7CMCAID%7CNONE%7CMCOPTOUT-1662588866s%7CNONE%7CMCAAMLH-1663186466%7C6%7CMCAAMB-1663186466%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.1.1; check=true; mbox=session#20428d2939d14cf2a8412760ba3fb6b8#1662583525|PC#20428d2939d14cf2a8412760ba3fb6b8.37_0#1725826467; gdpr=true; languagePref=en_US; utag_main=v_id:01831996ee16001e923588f63e0000044001d00900918$_sn:1$_se:1$_ss:1$_st:1662583465303$ses_id:1662581665303%3Bexp-session$_pn:1%3Bexp-session; s_ecid=MCMID%7C30350969624863906350043560237591843255; AMCVS_F3470978534690820A490D4C%40AdobeOrg=1; mboxEdgeCluster=37; XSRF-TOKEN=VERBUkVUQUlMV0VCIDBlNjdlZDNlLWZkODktNGFmMS05YzQ2LTZiZDI0YWEyYWYzMw==; NSC_JOkuz4qpe4efcwddlqol43cysdy1pd3=0933a3df67f9b20f3dc330d16d18a6e88888dac6bbd7235fa052b455d8f21ca679d0fe99
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
X-Frame-Options: DENY
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Fri, 26 Aug 2022 00:07:04 GMT
Cache-Control: max-age=31536000
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/svg+xml
Content-Length: 7695
Date: Wed, 07 Sep 2022 20:14:33 GMT
Keep-Alive: timeout=60
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
mobileapi.tdameritrade.wallst.com/Quote/IndexPerformanceFooter?symbols=.DJI%7C.IXIC%7C.SPX&user_id=mobileapi&user_password=mobileapi&callback=self.TdaStockTicker
209.234.226.62200 OK 440 B URL HTTP/1.1 mobileapi.tdameritrade.wallst.com/Quote/IndexPerformanceFooter?symbols=.DJI%7C.IXIC%7C.SPX&user_id=mobileapi&user_password=mobileapi&callback=self.TdaStockTicker
IP 209.234.226.62:0
File type ASCII text, with very long lines (476), with no line terminators
Hash e60eaa7c7768ff17dd41836ce5582e87
a7cddd95535e18e646704476d7862f4fedf8246d
701414a3729b1c3be1c2da4c829c45feb3a08831190322db270ab6abc55c8ea1
GET /Quote/IndexPerformanceFooter?symbols=.DJI%7C.IXIC%7C.SPX&user_id=mobileapi&user_password=mobileapi&callback=self.TdaStockTicker HTTP/1.1
Host: mobileapi.tdameritrade.wallst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Encoding: gzip
Content-Length: 440
Content-Type: text/javascript; charset=UTF-8
Date: Wed, 07 Sep 2022 20:14:33 GMT
P3p: CP="NON PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND", policyref="/w3c/p3p.xml"
Set-Cookie: GZIP=1; expires=Mon, 06-Sep-2027 20:14:33 GMT; path=/
Vary: Accept-Encoding
media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff
23.13.33.43200 OK 59 kB URL HTTP/1.1 media.tdameritrade.com/media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff
IP 23.13.33.43:0
File type Web Open Font Format, TrueType, length 58592, version 1.0\012- data
Hash 50ed0de84edaaf8d4e742980e266d05d
cf3b9e70b3ffd1d051a3e1e6005dad8dcb0d8a5a
279088821ec19206b9c7108d54ffefbb448f46085675f9f82e384f8f9dad8552
GET /media/fonts/tdasans-display/TDAmeritradeSans-BoldItalic_v1-01.woff HTTP/1.1
Host: media.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://media.tdameritrade.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 29 Apr 2019 18:21:03 GMT
Content-Security-Policy: frame-ancestors 'self' *.tdameritrade.com *.ameritrade.com http://*.tdameritrade.com/ https://*.tdainstitutional.com https://*.amtd.com https://amtd.com https://*.tradewise.com https://tdaconferences.com https://*.tdameritradeconferences.com https://*.exploringyourindependence.com https://*.thinkorswim.com https://*.tdameritradenetwork.com https://tdameritradenetwork.com https://*.eliteadvisorsummit.com https://*.essentialoptionstrategies.com; object-src 'self'
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
Cache-Control: max-age=604800
Date: Wed, 07 Sep 2022 20:14:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Access-Control-Allow-Origin: *
dpm.demdex.net/ibs:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
54.154.199.204302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
IP 54.154.199.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tdameritrade.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v039-0a4d71512.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=48722360540187361730190189013962427031; Max-Age=15552000; Expires=Mon, 06 Mar 2023 20:14:34 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: q37T/d9oTxI=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
54.154.199.204200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx
IP 54.154.199.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yxj7qQAAAJuCSwMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tdameritrade.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v039-063c01cc5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: wsuklt6ETzA=
Content-Length: 59
Connection: keep-alive
assets-tda.rcrsv.io/notification.html?id=0.2190468460673144
54.230.111.56200 OK 1.6 kB URL HTTP/1.1 assets-tda.rcrsv.io/notification.html?id=0.2190468460673144
IP 54.230.111.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (313), with CRLF line terminators
Hash 8090d844b2acb64f4f5ff221408d3824
bb4bf4ea8cadd08cdf7c90f1dec4450ab870bbab
fa209f31f9e17b6d7c399c1d64f19d7d07759a2b4d3d07a1a270cc2ef3357320
GET /notification.html?id=0.2190468460673144 HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 07 Sep 2022 20:14:35 GMT
Last-Modified: Wed, 19 Aug 2020 01:12:40 GMT
ETag: W/"97fb70ea9af7183c11a7ac91fb8e2e48"
Cache-Control: max-age=600, no-transform, public
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7JELp114RW6F3c2xOm0734Vu55Tf_rs60Ex69D_bNZQuKm2IHKogeA==
assets-tda.rcrsv.io/styles/notification.css
54.230.111.56200 OK 3.3 kB URL HTTP/1.1 assets-tda.rcrsv.io/styles/notification.css
IP 54.230.111.56:0
Hash 93485402016cd038b0b2678bf1fd83a4
982ec49cf46e003882a343616bcfff4d5d5483fc
2946487a889cd878dce0634fdc4f5e9d6d7f7c917ea62c789a1646b7de18dfcf
GET /styles/notification.css HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-tda.rcrsv.io/notification.html?id=0.2190468460673144
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Mar 2020 21:01:12 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:13:14 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"8184126ec16a2a498a7faa2e6be1cd64"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zy1BNyI6FDcC8H9F46bRbwa-ckJ_0541gWnGEh-i7HXiiYpSvks4Mg==
Age: 89
assets-tda.rcrsv.io/js/notification/ui-client/iframeUiClient.js
54.230.111.56200 OK 33 kB URL HTTP/1.1 assets-tda.rcrsv.io/js/notification/ui-client/iframeUiClient.js
IP 54.230.111.56:0
File type Unicode text, UTF-8 text, with very long lines (52384), with NEL line terminators
Hash 42ab69e3b34e6ddb0fcdbccdb8b74478
fe531cdcf46491dbe1183053dc8b0de773a761fc
a1d80584eaedb5872a165c92fa1466f6f73b396a0df2e465222b52bc773bccc0
GET /js/notification/ui-client/iframeUiClient.js HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-tda.rcrsv.io/notification.html?id=0.2190468460673144
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Dec 2020 23:00:59 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:08:37 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"c236de57e444b6ee06b1afd524dc52a6"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fCt4gahPyfQBNe6U2szhJDq053x7P776ElaQ8-Lc7nBgMWDlaTTEjA==
Age: 386
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F
54.154.5.146302 Found 389 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 82bd49e08e367103797a8182080a5297
d97edfbdbf2f45145870d5d892c5273d35bfcd54
97958195b9ec07d5c24332ec42d84c4cbf3d360068d67315af6651d28de5c48c
GET /1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 389
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFBQnJlMGdLZg&url=/1/gr%3furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fc7316fab55e89a81536e926eab6f83
7fcab743b176312e76999b39a1b2a3b97dbeb10f
8178b9805611209f5c47dce32da555117870a90648e026d08cc691a4103169a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060
54.154.5.146302 Found 500 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (366)
Hash 3cc2401cd180d3b417cc8819ad04006d
369d1ac939cf9048c238a1cd91ac5fc5bff0e11e
0df288df48c7b2809a80210aaea08b7603a10740e36df521a7cab375aa758de3
GET /1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060 HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 500
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060
assets-tda.rcrsv.io/fonts/recursivelabsfont.woff
54.230.111.56200 OK 15 kB URL HTTP/1.1 assets-tda.rcrsv.io/fonts/recursivelabsfont.woff
IP 54.230.111.56:0
File type Web Open Font Format, CFF, length 14908, version 1.0\012- data
Hash d872e9aaa21d5373f554c01217f769e3
4c24968a5892368740ba2872f76b78cae41648f8
4731dbb1ffb8ea93caf1efb9eff3faf7d3e31281d2243476fd48095b5cda8424
GET /fonts/recursivelabsfont.woff HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://assets-tda.rcrsv.io/styles/notification.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/font-woff
Content-Length: 14908
Connection: keep-alive
Last-Modified: Mon, 30 Mar 2020 20:59:34 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 07 Sep 2022 20:11:18 GMT
Cache-Control: max-age=600, no-transform, public
ETag: "d872e9aaa21d5373f554c01217f769e3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jy225sFfUn4WKHeA1kGe6GwomM13aOBZEdYzYH4CJQXqxVcCJdqZHA==
Age: 197
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__
54.154.5.146302 Found 447 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (313)
Hash 01e5ad06841286d0676a8ca6cad4846f
88d6a516b3a70fd1b4fce3cce2daa8b75ea54755
86104648cfc38b77f0e6499e9c19ff49654a204dd6b90b15ff16311b14159fb2
GET /1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 447
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c35a376c0e9620e600bbab87a4b93b86
d25ae8da4874fbe7d074f9e00a63ba4c0c637ef0
e214919ef42b09adfc38db575c0b2682ce0ed83b63763863884f1c369fadf14a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets-tda.rcrsv.io/js/notification/ui-client/notificationArea-iframe.js
54.230.111.56200 OK 419 B URL HTTP/1.1 assets-tda.rcrsv.io/js/notification/ui-client/notificationArea-iframe.js
IP 54.230.111.56:0
Hash c75e219d0dd168bf1a8cdebc7e8b4589
af86b2c9bb8eda665c2308d6ff123b03a663c89c
2211001f75526b009addb91e85d14b047e09ca0ddcc2168448241e72f4539997
GET /js/notification/ui-client/notificationArea-iframe.js HTTP/1.1
Host: assets-tda.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-tda.rcrsv.io/notification.html?id=0.2190468460673144
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Dec 2020 23:01:01 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 20:12:12 GMT
Cache-Control: max-age=600, no-transform, public
ETag: W/"b033f3f441432b1064d3b34129085a76"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Yt9Sq8iibmHS1MHBpf3aJetAg3QoMvbrlS-7JjnNJBjsF5KFETqKjQ==
Age: 250
www.youtube.com/iframe_api
142.250.74.78200 OK 54 kB URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.78:0
File type ASCII text, with very long lines (509)
Hash c73b5a459bff387f874f1cc87cad3f54
fa4d846286ff5702f7c52baebff0f49096d595a1
7ba25c166c0891b0eeed2d39e56963139a88b6282453ad36495baaca8741f809
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Wed, 07 Sep 2022 20:14:34 GMT
date: Wed, 07 Sep 2022 20:14:34 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sYvqz11ju0w; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=amOSE-PHwD8; Domain=.youtube.com; Expires=Mon, 06-Mar-2023 20:14:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+346; expires=Fri, 06-Sep-2024 20:14:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__
216.58.207.226302 Found 477 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f40dd8cc6f73a269e35286ea83477f92
4fa48cdcdd7bdc63a89c0e160051154e5825777e
bfa2902742e9a35ab88755f3cbc5f6f743a442cbdad77a61c731ba805ea87a25
GET /pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_tc=
date: Wed, 07 Sep 2022 20:14:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 477
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Sep-2022 20:29:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060
216.58.207.226302 Found 530 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (353), with CRLF, LF line terminators
Hash b2daa6741e2c53813c18bbb55d39d75a
231d52fed1dc7f70c29c259a248eecdf7c4b20aa
fc836851aa92a67a2f04e238c23b0be12dce1ce18069ab266a904bb0ad3988f5
GET /pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_tc=
date: Wed, 07 Sep 2022 20:14:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 530
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Sep-2022 20:29:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBQnJlMGdLZg&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_tc=
216.58.207.226302 Found 345 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBQnJlMGdLZg&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_tc=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0982112d1db80cb20a1e5a850ee4ca63
a52e09420348030b8356127b89faea265c6b7348
8abfcea72e510b7850893bbe157983cc7c00bd36cc4b2ee0b95e7e8144a4781a
GET /pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBQnJlMGdLZg&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3
date: Wed, 07 Sep 2022 20:14:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c35a376c0e9620e600bbab87a4b93b86
d25ae8da4874fbe7d074f9e00a63ba4c0c637ef0
e214919ef42b09adfc38db575c0b2682ce0ed83b63763863884f1c369fadf14a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_tc=
216.58.207.226302 Found 403 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_tc=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9326cf22860bf0459b4b975b27e76a23
bfbed4de68e8c9632a7cb2d327fb973c8941db52
2c27406ede1ae042eb6a00e4515e161a774b8d534943f0eec029fe9021b291cf
GET /pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFBRnF1cVhnOA&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3
date: Wed, 07 Sep 2022 20:14:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 403
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_tc=
216.58.207.226302 Found 456 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_tc=
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 24d0d9597b13cd7e2030a2674fb39541
8b3a8eedba32e6dc8a153e1626721cbf2ab8fe18
a4740a7f04ca57739517133983025b73364e5b9f51f57188b1590b4280527f8d
GET /pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXhqN3FnQUFCVHFaT0FLbA&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3
date: Wed, 07 Sep 2022 20:14:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 456
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782
54.154.5.146302 Found 479 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (345)
Hash 680ae83d5b14cfbb1ddd1e0214744dce
53e9d30ba61a0f11f8c292538a4d13daf83a93fc
4080d582e6bb12f2a7352d12669f0b8890800852694229cde663ffb8c8460468
GET /1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782 HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 479
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCQWNMLVYyaw&url=/1/gr%3furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAKbJUgOJ; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAKbJUwOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBS2JKVWdPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAEUS9AN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAEUS9QN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRVVTOUFOLQ
Server: AMO-cookiemap/1.1
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__
54.154.5.146302 Found 502 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Hash ee1cb530c850cd802f02e6555a8c8b07
d6c0578b6831cb01e3f65f601702426e4f9450be
c31609bca3057b3fa9f5577532e7da37f999582e7541f7198d44854bfaf8c9a1
GET /1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 502
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3FnQUFCSkpHclVKTQ&url=/1/gr%3furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAEmETwMx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAEmEUAMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRW1FVHdNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAJI-QQOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAJI-QgOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBSkktUVFPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAFReGANe; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAFReGQNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRlJlR0FOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAALo-ZwOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAALo-aAOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBTG8tWndPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAFfJxwOJ; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAFfJyAOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRmZKeHdPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAFbnNwNx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAFbnOANx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRmJuTndOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAF4-hgOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAF4-hwOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBRjQtaGdPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAJQTZwN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAJQTaAN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBSlFUWndOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAH-J_AOJ; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2="Yxj7qgAAAH-J@QOJ"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBSC1KX0FPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAMjnXANx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAMjnXQNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBTWpuWEFOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAIqhfgNn; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAIqhfwNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBSXFoZmdObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qgAAAHuQagN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:34 GMT; Path=/
everest_session_v2=Yxj7qgAAAHuQawN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3FnQUFBSHVRYWdOLQ
Server: AMO-cookiemap/1.1
cdnjs.cloudflare.com/ajax/libs/vue/2.4.2/vue.min.js
104.17.25.14200 OK 283 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/vue/2.4.2/vue.min.js
IP 104.17.25.14:0
Hash 8172797379ea3f6c3c82bfbe2308cdeb
bfcf20f96e0a16b4fc8daa8830466a07d2e4384d
499df0d6a92665267899b86b2cd603ad9f2a35ba5eebe6bd1c5e0a3e3210a71d
GET /ajax/libs/vue/2.4.2/vue.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 20:14:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 26648
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402c-13fa2"
last-modified: Mon, 04 May 2020 16:17:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7762039
expires: Mon, 28 Aug 2023 20:14:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lAapniUNNUOmM7%2BpE8eVFH5F8gXkGzKSrvpuIxJrjyYJetaJZUqRF60WgYnxP7tvEeeXSyI%2Bx28gV8GUo1Ek1DRaf27KQ%2B2kEkLA9dDQLdKMZ%2FRmC3jtjZkUKrR9reuJSrj72HiN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74721c822aefb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
54.154.5.146302 Found 457 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
IP 54.154.5.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash a0101545897da6e3895fd589ef6d3000
00a7ffa3ed089b5aedc3970be4f2aa61e55a0862
42ce397503e5d9fe5ee6cd7491f768cd985220df669586972d17e159fc18f39c
GET /1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 457
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXhqN3F3QUFBQnJlOEFLZg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAG3KIwOJ; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAG3KJAOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRzNLSXdPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAKdYMQOV; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAKdYMgOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBS2RZTVFPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAKehsANn; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAKehsQNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBS2Voc0FObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAFKQoAN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAFKQoQN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRktRb0FOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAKVesANe; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAKVesQNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBS1Zlc0FOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAALtevANe; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAALtevQNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTHRldkFOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAMih1gNn; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAMih1wNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTWloMWdObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAMVz5AN6; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAMVz5QN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTVZ6NUFONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAKpz8AN6; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAKpz8QN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBS3B6OEFONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAFWFRwMx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAFWFSAMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRldGUndNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAK4UAAN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAK4UAQN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBSzRVQUFOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAADSh-ANn; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAADSh-gNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRFNoLUFObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAF1AJgOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAF1AJwOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRjFBSmdPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAFuiCgNn; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAFuiCwNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRnVpQ2dObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAALGFXQMx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAALGFXgMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTEdGWFFNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAJkUKwN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAJkULAN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBSmtVS3dOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAMVAWAOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAMVAWQOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTVZBV0FPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAJhAXwOY; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAJhAYAOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBSmhBWHdPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAGuRIAN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAGuRIQN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBR3VSSUFOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAKjoQwNx; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAKjoRANx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBS2pvUXdOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAALnLDQOJ; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAALnLDgOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBTG5MRFFPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAFlfrANe; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAFlfrQNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXhqN3F3QUFBRmxmckFOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/yh
52.17.180.229302 0 B IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/yh HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tdameritrade.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 07 Sep 2022 20:14:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yxj7qwAAAE4UvAN-; Domain=.everesttech.net; Expires=Thu, 07-Sep-2023 20:14:35 GMT; Path=/
everest_session_v2=Yxj7qwAAAE4UvQN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://ads.yahoo.com/cms/v1?nwid=10001117525&eid=Yxj7qwAAAE4UvAN-&sigv=1
Server: AMO-cookiemap/1.1
ads.yahoo.com/cms/v1?nwid=10001117525&eid=Yxj7qwAAAE4UvAN-&sigv=1
188.125.94.206204 No Content 0 B URL HTTP/2 ads.yahoo.com/cms/v1?nwid=10001117525&eid=Yxj7qwAAAE4UvAN-&sigv=1
IP 188.125.94.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cms/v1?nwid=10001117525&eid=Yxj7qwAAAE4UvAN-&sigv=1 HTTP/1.1
Host: ads.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tdameritrade.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 07 Sep 2022 20:14:35 GMT
strict-transport-security: max-age=15552000
server: ATS
cache-control: no-store
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.7 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash 4a8104bf1e0c10489f258a686b0e5497
001517128b6eb20a8cd592d57e3c20a05375630d
813c0679ec58035ff3dc2c19f0b6525ed579b464cd8c391e4262334e03fee2ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 20:14:36 GMT
Server: ECS (amb/6B80)
Content-Length: 471
appdeumext.tdameritrade.com/eumcollector/beacons/browser/v1/EUM-AAB-AXS/adrum
198.200.171.16200 OK 0 B URL HTTP/1.1 appdeumext.tdameritrade.com/eumcollector/beacons/browser/v1/EUM-AAB-AXS/adrum
IP 198.200.171.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /eumcollector/beacons/browser/v1/EUM-AAB-AXS/adrum HTTP/1.1
Host: appdeumext.tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 15418
Origin: https://www.tdameritrade.com
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 20:14:36 GMT
Expires: 0
Set-Cookie: ADRUM_BTa=R:29|g:2176b357-c04a-4b9d-bd00-011668f59cd4;Path=/;Expires=Wed, 07-Sep-2022 20:15:06 GMT;Max-Age=30
ADRUM_BTa=R:29|g:2176b357-c04a-4b9d-bd00-011668f59cd4|n:customer1_2cfcd116-18ac-46e0-b19a-a2f561df97a5;Path=/;Expires=Wed, 07-Sep-2022 20:15:06 GMT;Max-Age=30
SameSite=None;Path=/;Expires=Wed, 07-Sep-2022 20:15:06 GMT;Max-Age=30;Secure
ADRUM_BT1=R:29|i:970;Path=/;Expires=Wed, 07-Sep-2022 20:15:06 GMT;Max-Age=30
ADRUM_BT1=R:29|i:970|e:1;Path=/;Expires=Wed, 07-Sep-2022 20:15:06 GMT;Max-Age=30
AppD-Request-Id: +c99a1fb9ed2825d
Content-Type: text/html
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0
Pragma: no-cache
Vary: *
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, content-type, accept
Transfer-Encoding: chunked
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/TDAI_Logo_bar.svg
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/TDAI_Logo_bar.svg
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/images/TDAI_Logo_bar.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 19 Aug 2020 01:12:55 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:12:11 GMT
cache-control: max-age=600, no-transform, public
etag: W/"d6c439c2fa3975b40735cfe46055f638"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fEhRTjmalCx5ZwyC1w8fUCdQWG5mT0N77aQ4t2uOhtQf-n-F9D4ANA==
age: 174
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_logo.svg
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_logo.svg
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/images/tda_logo.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 19 Aug 2020 01:12:57 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:08:36 GMT
cache-control: max-age=600, no-transform, public
etag: W/"f78840386a068c6829f6dd0391bd6adc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sZePrmhe3gl5RCMf9RbkAJfWXafEbOuitjVENEmvXJY_DKkAneV2UA==
age: 395
X-Firefox-Spdy: h2
cdn.appdynamics.com/adrum-ext.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.js
143.204.55.51200 OK 0 B URL HTTP/2 cdn.appdynamics.com/adrum-ext.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.js
IP 143.204.55.51:0
GET /adrum-ext.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.js HTTP/1.1
Host: cdn.appdynamics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx/1.16.1
last-modified: Mon, 23 Apr 2018 23:56:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
timing-allow-origin: *
content-encoding: gzip
date: Thu, 25 Aug 2022 02:26:40 GMT
cache-control: public, max-age=2678400, s-max-age=14400
etag: W/"5ade72c6-c5db"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cPfxBw2tdjhDs_fb5uRfMmYkjAxMEibhXqwsm-kCrZfuxo6rugxRTg==
age: 1187705
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/js/iframe.js
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/js/iframe.js
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/js/iframe.js HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 04 Dec 2020 23:05:55 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:08:36 GMT
cache-control: max-age=600, no-transform, public
etag: W/"de9d4d83965893974ab649705368f1da"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZqYw4VjVCPofmDvrDN1RagdqpH1ZVxd_39bUZd3idv0f9Oe14Zz24w==
age: 396
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_note.svg
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_note.svg
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/images/tda_note.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 19 Aug 2020 01:12:59 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:12:11 GMT
cache-control: max-age=600, no-transform, public
etag: W/"6919d60e89f7d632c65a738e2d18b0f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4ZoCgM9MiTkEqu1FBg130kvYr82I_Dx2r45tNuYsoYgYHc0zANBlBw==
age: 329
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/ui.html HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
last-modified: Fri, 04 Dec 2020 23:05:34 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:08:35 GMT
cache-control: max-age=600, no-transform, public
etag: W/"729251fbcbf7e677a7e10d1a84649564"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Op_GV_F4Xij1Dpd0KccHm2ffPEihLs3gf1zcDMvyR4gUmn0ITSRdbg==
age: 544
X-Firefox-Spdy: h2
embed.rcrsv.io/Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU?showOnlyWhenInSession=true
54.230.111.111200 OK 0 B URL HTTP/2 embed.rcrsv.io/Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU?showOnlyWhenInSession=true
IP 54.230.111.111:0
GET /Zjfthbrrsichc9XQLsugBC7XiWJ6Ckn3R0tbZOCiC3MOcHPbYj55mEfZSTPKsuzU?showOnlyWhenInSession=true HTTP/1.1
Host: embed.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 07 Sep 2022 20:04:47 GMT
cache-control: max-age=600, no-transform, public
etag: W/"1f5f6-QzEY2FeT68bvBMpw6Qu33IzYv1c"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XT-HCMKAS2dMrbXarR5Vi9TzLHWsfdPLZuApeIolk-ueQ2dGkr-EXQ==
age: 584
X-Firefox-Spdy: h2
embed.rcrsv.io/js/storage-iframe.js
54.230.111.111200 OK 0 B URL HTTP/2 embed.rcrsv.io/js/storage-iframe.js
IP 54.230.111.111:0
GET /js/storage-iframe.js HTTP/1.1
Host: embed.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.rcrsv.io/storage-iframe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 07 Sep 2022 20:08:24 GMT
cache-control: public, max-age=1800
last-modified: Thu, 07 Jul 2022 12:10:14 GMT
content-encoding: gzip
etag: W/"2b757-181d8915f31"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sEgOHl9EwhPqP769bfYyQTBFQ9EJ6HhimP3vzdrmK6Ums8Sk0F4ESA==
age: 368
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/css/page.css
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/css/page.css
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/css/page.css HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tdameritrade.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
last-modified: Mon, 30 Mar 2020 17:01:46 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:12:11 GMT
cache-control: max-age=600, no-transform, public
etag: W/"1059e9767c180de4457d1ff3d7cae3d6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1dqyegYz7G_8wxq1uWAGPN2j9kFyocPD43r06ucnIzWlwwLJvGfEaA==
age: 240
X-Firefox-Spdy: h2
widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_cursor.svg
54.230.111.38200 OK 0 B URL HTTP/2 widgets.rcrsv.io/tda/realtime-bottom-bar-tda/images/tda_cursor.svg
IP 54.230.111.38:0
GET /tda/realtime-bottom-bar-tda/images/tda_cursor.svg HTTP/1.1
Host: widgets.rcrsv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.rcrsv.io/tda/realtime-bottom-bar-tda/ui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 19 Aug 2020 01:12:56 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Sep 2022 20:08:36 GMT
cache-control: max-age=600, no-transform, public
etag: W/"cd65e6eb37e26d257e022b7c0eb2c1ff"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KUgimYcnwCP6PnLZM4dcSU2zM_ithxCu9F-Yn2eREyHwOsmL9gHE5w==
age: 395
X-Firefox-Spdy: h2
tdameritrade.com/
198.200.171.204301 MOVED PERMANENTLY 0 B IP 198.200.171.204:0
GET / HTTP/1.1
Host: tdameritrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 MOVED PERMANENTLY
Location: https://www.tdameritrade.com/
Connection: close