www.forextime.com/register/open-account
104.18.231.99301 Moved Permanently 0 B URL HTTP/1.1 www.forextime.com/register/open-account
IP 104.18.231.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /register/open-account HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 15:55:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 29 Jan 2023 16:55:10 GMT
Location: https://www.forextime.com/register/open-account
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7913268c7f840b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16544
Expires: Sun, 29 Jan 2023 20:30:54 GMT
Date: Sun, 29 Jan 2023 15:55:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2478
Expires: Sun, 29 Jan 2023 16:36:28 GMT
Date: Sun, 29 Jan 2023 15:55:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 15:43:08 GMT
content-type: application/json
age: 722
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18336
Expires: Sun, 29 Jan 2023 21:00:46 GMT
Date: Sun, 29 Jan 2023 15:55:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KKRRWp9Sg90VwWPappzCePU3tC1SPxCeEH2Nk6JCUfgrOBgTCaofso/o0xCB95Coy+/vK7USRow=
x-amz-request-id: GH1B9V5AZJCSXPQH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 15:50:22 GMT
age: 288
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
globessl.ocsp.sectigo.com/
104.18.32.68200 OK 471 B URL HTTP/1.1 globessl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 3ffc381e36df429621c7637f3072bebd
31279c1d411e1390b49de0a3f75e122be8af2f93
aff0ffd4bc5e5327161d040ebd5176c81876944d0a9f571363e7a18db0fd5158
POST / HTTP/1.1
Host: globessl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:55:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 22:18:47 GMT
Expires: Fri, 03 Feb 2023 22:18:46 GMT
Etag: "31279c1d411e1390b49de0a3f75e122be8af2f93"
Cache-Control: max-age=454415,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7913268ebdc3b4ee-OSL
globessl.ocsp.sectigo.com/
104.18.32.68200 OK 471 B URL HTTP/1.1 globessl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 3ffc381e36df429621c7637f3072bebd
31279c1d411e1390b49de0a3f75e122be8af2f93
aff0ffd4bc5e5327161d040ebd5176c81876944d0a9f571363e7a18db0fd5158
POST / HTTP/1.1
Host: globessl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:55:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 22:18:47 GMT
Expires: Fri, 03 Feb 2023 22:18:46 GMT
Etag: "31279c1d411e1390b49de0a3f75e122be8af2f93"
Cache-Control: max-age=454415,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79132690b888b4ee-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 15:41:41 GMT
age: 810
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.forextime.com/themes/custom/fxi_theme/dist/assets/images/logo-white.svg
104.17.161.73200 OK 2.2 kB URL HTTP/2 www.forextime.com/themes/custom/fxi_theme/dist/assets/images/logo-white.svg
IP 104.17.161.73:0
Hash 1c81635fc24279a8706db38d2b770a59
b9e5f545daacbcad702a6c17621b0627f81b364d
0a76301fed6261add58b970c7ebdc0b9cf16829dc68d2cec15326b9fd0e98f67
GET /themes/custom/fxi_theme/dist/assets/images/logo-white.svg HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: image/svg+xml
last-modified: Thu, 26 Jan 2023 08:38:25 GMT
vary: Accept-Encoding
etag: W/"63d23c01-db4"
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
expires: Sun, 29 Jan 2023 16:55:10 GMT
cache-control: public, max-age=3600
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb26b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/themes/custom/fxi_theme/dist/assets/images/logo-dark.svg
104.17.161.73200 OK 100 kB URL HTTP/2 www.forextime.com/themes/custom/fxi_theme/dist/assets/images/logo-dark.svg
IP 104.17.161.73:0
Size 100 kB (100059 bytes)
Hash 09143e59d222e4e2e2fcb699dac152b7
54685f9e5d4465160ac4e0907e8902e511ed6876
efd96e0ae92af64146ee89dacb81bf3e9a4f8f6eec5e971a1cad5333f3725213
GET /themes/custom/fxi_theme/dist/assets/images/logo-dark.svg HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: image/svg+xml
last-modified: Thu, 26 Jan 2023 08:38:25 GMT
vary: Accept-Encoding
etag: W/"63d23c01-dc5"
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
expires: Sun, 29 Jan 2023 16:55:10 GMT
cache-control: public, max-age=3600
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb22b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
consent.cookiebot.com/uc.js
23.72.139.51200 OK 32 kB URL HTTP/2 consent.cookiebot.com/uc.js
IP 23.72.139.51:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash ca644678e367fcf964fc01f3a24169aa
a526eb8a30c057085dafe6fa23933c27ec9d9a6d
4c88b848076a643a03a0ef09d8407497845b890c5cae1de62025e79248f2168e
GET /uc.js HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sun, 29 Jan 2023 10:39:43 GMT
accept-ranges: bytes
etag: "f51f6bffcd33d91:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 32026
cache-control: public, max-age=130
expires: Sun, 29 Jan 2023 15:57:21 GMT
date: Sun, 29 Jan 2023 15:55:11 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.6 kB IP 142.250.74.131:0
File type gzip compressed data, max speed, from Unix\012- data
Hash ca505f43d00fce66dd27c9f99876fdda
f7f10454c4ed93c7939d68a95d228576b909ab60
151d1da758dae617297035df0d62d4f201ea827acbc6b21b149224651ca22e0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.6 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Hash ac35f04c1db2424316ac93e70db71f7f
1f238b3c61f37e0e48572951a313a24e6be20815
4087922d89de5b184a3479afe40a9043ea51557c6239e4c3726f4adfddb7f722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,700&display=swap&subset=cyrillic,vietnamese
142.250.74.106200 OK 2.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,700&display=swap&subset=cyrillic,vietnamese
IP 142.250.74.106:0
Hash 568f5f765c84a95940a2073524d4d5a1
b78eddfaf1e56fd212c6941a8f78f16ee112a8c4
a259d9c9b23ab473c20854f9cb090974054dfe50a6f8e7d15f40c8602d557f11
GET /css?family=Source+Sans+Pro:300,400,600,700&display=swap&subset=cyrillic,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 15:55:11 GMT
date: Sun, 29 Jan 2023 15:55:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TQ7PBT
142.250.74.168200 OK 115 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TQ7PBT
IP 142.250.74.168:0
File type ASCII text, with very long lines (35715)
Size 115 kB (114618 bytes)
Hash 42a997a44b039e79877bbc28023703f1
0dfd514c6360d89bd0613b2ec89c26dfcb36f906
1c0c542d4e2c2f195deed844f409578227137582f55f8333b910aa789d1444e6
GET /gtm.js?id=GTM-TQ7PBT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:55:11 GMT
expires: Sun, 29 Jan 2023 15:55:11 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114618
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.191.251.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.251.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sOnvD/UMwgyddc7XlS7oEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lyl7eQcvbkD80tkL3ALLTTm3Wus=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 22 kB IP 142.250.74.131:0
File type gzip compressed data, max speed, from Unix\012- data
Hash a05f8acff5a1a61e9e5056e7ddb2a5ed
c7f5b2da74c15d1656fc6778e36a9a33dc66180f
a266798a980dd9678988274fbab4057f64561c32819d300ec68d582a786f401e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:28:49 GMT
expires: Thu, 25 Jan 2024 19:28:49 GMT
cache-control: public, max-age=31536000
age: 332782
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
IP 216.58.207.227:0
File type gzip compressed data, max speed, from Unix\012- data
Hash 90668500d5506c9191f3809133896702
53cc1bb677c6d6374db22f00be64d2be7ada3017
b5829a4cd2edfeee7a9229682fe8b24e07cb56ea6cad8fe2db54f18654ba32e4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 22:39:34 GMT
expires: Sat, 27 Jan 2024 22:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:54:52 GMT
content-type: font/woff2
age: 148537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.227200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.227:0
File type gzip compressed data, max speed, from Unix\012- data
Hash c559858002ae5515dbb438f9b869cb79
56421dcc5553519c1d0c25a9b303657f830ea373
cccae3a622307ef6627b2e43cc78b9451c89e37276cdb9f765dc4db065ad1e3c
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
age: 280153
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type gzip compressed data, from Unix\012- data
Hash cf8c65076fb854bf1829aa32b893b0b7
e7a887d462d3f350e0a1cacc799aa4b8eda5e8c3
e3e8dff5704052d23d5442668561f0ddbea5a96f3379cd709ca392cf5db8b283
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:38:22 GMT
expires: Thu, 25 Jan 2024 19:38:22 GMT
cache-control: public, max-age=31536000
age: 332209
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content.mql5.com/core.js
78.140.180.86200 OK 11 kB IP 78.140.180.86:0
File type ASCII text, with very long lines (34208)
Hash dfa13b8e7865b3909d68fb02a71c0d4b
b2a8ad13c8b4a1f22d93fa691e77e06aefd50127
ec6322da54f4c4ec6ba173302ff326805a64409434e34aa6a57c8ae9ab0f1826
GET /core.js HTTP/1.1
Host: content.mql5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=259200,proxy-revalidate,public,immutable
content-length: 11104
content-type: text/javascript; charset=UTF-8
content-encoding: br
expires: Wed, 01 Feb 2023 15:55:11 GMT
last-modified: Tue, 24 Jan 2023 16:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
date: Sun, 29 Jan 2023 15:55:11 GMT
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-WRJBPQK
142.250.74.78200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-WRJBPQK
IP 142.250.74.78:0
File type ASCII text, with very long lines (1759)
Hash dbd12da5f3fabe8ea940685e39dc6c45
21027038e1ebce98128eacf50dfdfae8352a7e65
14aa1af265b5be7595c8c096b242c1941000264c3094dbc6a3acd23523d5a301
GET /optimize.js?id=OPT-WRJBPQK HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:55:11 GMT
expires: Sun, 29 Jan 2023 15:55:11 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/js/js_vtC4NdosE5BUFmWnmvALywnf2x-Cp69BKiBey4GFP4Q.js
104.17.161.73200 OK 34 kB URL HTTP/2 www.forextime.com/sites/global/files/js/js_vtC4NdosE5BUFmWnmvALywnf2x-Cp69BKiBey4GFP4Q.js
IP 104.17.161.73:0
File type Unicode text, UTF-8 text, with very long lines (60322)
Hash 92cb8ffc3029d55743526e1d4b0aae8f
c164c5b28b235297e5e681ce59e2b7eb27d5c798
dc25b91ec4901df6a30de54d24f9f26ed3a53af6544b0bd88eb27a3945b6523b
GET /sites/global/files/js/js_vtC4NdosE5BUFmWnmvALywnf2x-Cp69BKiBey4GFP4Q.js HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Mon, 02 Jan 2023 08:01:04 GMT
vary: Accept-Encoding
etag: W/"63b28f40-1458"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb36b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content.mql5.com/tr?event=Visit&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&ssn=1675007719417731114&ssn_dr=0&ssn_sr=10&ssn_start=1&fv_date=1675007719&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=16750077198259104&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A5%7D
78.140.180.86200 OK 70 B URL HTTP/2 content.mql5.com/tr?event=Visit&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&ssn=1675007719417731114&ssn_dr=0&ssn_sr=10&ssn_start=1&fv_date=1675007719&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=16750077198259104&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A5%7D
IP 78.140.180.86:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 48b7a1e65c0e92830152164b22a7c37d
16f99525ed7feee4e80d1e32df48d36286cdfca4
e3849fdc1eab88579b20b1b56875d6ef8299c4ad165e03921400ccae69149861
GET /tr?event=Visit&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&ssn=1675007719417731114&ssn_dr=0&ssn_sr=10&ssn_start=1&fv_date=1675007719&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=16750077198259104&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A5%7D HTTP/1.1
Host: content.mql5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-length: 70
content-type: image/png
expires: -1
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: _fz_uniq=6370652491363780839; path=/; SameSite=None; domain=.mql5.com; Secure; expires=Sat, 22 Jan 2033 08:02:08 GMT
date: Sun, 29 Jan 2023 15:55:11 GMT
X-Firefox-Spdy: h2
jssdkcdns.mparticle.com/js/v2/us1-9396d9c23a31454783af64f529f131bc/mparticle.js
151.101.66.133200 OK 114 kB URL HTTP/2 jssdkcdns.mparticle.com/js/v2/us1-9396d9c23a31454783af64f529f131bc/mparticle.js
IP 151.101.66.133:0
File type ASCII text, with very long lines (63952)
Size 114 kB (114293 bytes)
Hash 80ae30451224d75e4a2c42f51c80d188
d4e13127f8caea2a13c3b45fe13c53097705917f
ee89c36aba1f85db1b93f4f74d39174ebd84c272de3c41e55b475486b748d07b
GET /js/v2/us1-9396d9c23a31454783af64f529f131bc/mparticle.js HTTP/1.1
Host: jssdkcdns.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: Kestrel
cache-control: public, max-age=3600
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
x-origin-name: fastlyshield--shield_ssl_cache_iad_kiad7000057_IAD
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:11 GMT
age: 265
x-served-by: cache-iad-kiad7000057-IAD, cache-bma1627-BMA
x-cache: HIT, MISS
x-cache-hits: 19, 0
x-timer: S1675007712.789524,VS0,VE92
vary: Accept, Accept-Encoding
content-length: 114293
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.redditstatic.com/ads/pixel.js
151.101.1.140200 OK 9.5 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.1.140:0
File type ASCII text, with very long lines (49295)
Hash ab37cbb8be8fcb0454e8f66be467ef6d
5ed81fae887cdb1bab54c7c92dda46c92a50bfb8
86fedae4b0923d7ebdb4563db9a17ee367d45372b5346389e8ff55b28b92431f
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 21:56:14 GMT
etag: "03d5db9dfd00a5719bb4c9261e6fa1bb"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:11 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7356
X-Firefox-Spdy: h2
9234067.fls.doubleclick.net/activityi;src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account?
142.250.74.70200 OK 321 B URL HTTP/2 9234067.fls.doubleclick.net/activityi;src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (623), with no line terminators
Hash ba9ccf9be64c954a01a078f831713618
12d39535986de40a63a50ce1c3df0ad179e0a173
6a6e100fd76a8bdb1094edfedcc7c56d763aa32f91d7cb82b74c353a31898c26
GET /activityi;src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account? HTTP/1.1
Host: 9234067.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 321
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 16:10:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMB9S3C77U15JGRJPGG&lib=ttq
23.36.79.32200 OK 1.3 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMB9S3C77U15JGRJPGG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2727)
Hash c73121f8384d3f5da0be27ba8bcb777f
acdbeea6cd9f4209ed937507a1f96960394b2d83
1fdd1ec6dd9562fcdcc9342c7121da3e29f4749cbf2024ab0a39d65c89aa9c88
GET /i18n/pixel/events.js?sdkid=CDMB9S3C77U15JGRJPGG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301291555129AF1DD4619AD4E4F0AEB
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1dd9fe465be42bc6d44de4bf4cbe689b5a4a618db1fd47ba36ffd62339767b232243f96754fdc82f5c14726b9a61faf97c8719233bb759a7216379f0887ec3d06
content-encoding: gzip
expires: Sun, 29 Jan 2023 15:55:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 1341
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2L0Uu2H8n0tsp4anzl66gjZw6Xz; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=101
x-origin-response-time: 102,23.36.79.28
x-akamai-request-id: 515b2450
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b042b7f57812777b3726c1474f8164a3
d2a0d1213aa7b5c15a9d1d90a16f50567f78877e
175088c024dbc02cc15755733ae5756b0321025d0c1cd93f00bf706e25159f1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1459
Cache-Control: max-age=160559
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Etag: "63d6615c-116"
Expires: Tue, 31 Jan 2023 12:31:11 GMT
Last-Modified: Sun, 29 Jan 2023 12:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
23.36.79.32200 OK 70 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash e470cdee4fb19533b3076cf5e6445ff0
3fa761e875d60e55f5464f0cee6207bca0d2cbed
e7fa855a1d974007175332f96be3ec95d6c6b94f7f4180dac64e4cf7d3d7115a
GET /i18n/pixel/static/main.MWE2YWY2YTgzMQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: _ttp=2L0Uu2H8n0tsp4anzl66gjZw6Xz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175829D91E25D7003EA9A803DC
x-tt-trace-host: 01f6175df718ab226765794aaab21df67154f0b53b7f693af896ad93db0deb0ef832d63bb31438f0c5e0aa4878e941bb88c0976593910f5ab417b5ca255605e18e5e0fd52686d843afbd593b8bd0d366fe4ffb20082da9c196e6db1f01a9ce8992
content-encoding: gzip
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 70411
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 515b251a
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
142.250.74.162200 OK 322 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (622), with no line terminators
Hash 1b79ebb41e3176e1bb3398a8d3f5a72f
f23a274edf1066ccbff5110f665c8bde6c4cd639
4761ceb7b62a54928b632c2481218661eec656874513d136330da2aeade4d0f7
GET /ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9234067.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: _ttp=2L0Uu2H8n0tsp4anzl66gjZw6Xz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 515b25b3
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b042b7f57812777b3726c1474f8164a3
d2a0d1213aa7b5c15a9d1d90a16f50567f78877e
175088c024dbc02cc15755733ae5756b0321025d0c1cd93f00bf706e25159f1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1459
Cache-Control: max-age=160559
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Etag: "63d6615c-116"
Expires: Tue, 31 Jan 2023 12:31:11 GMT
Last-Modified: Sun, 29 Jan 2023 12:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
216.58.207.226302 Found 0 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/i/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://9234067.fls.doubleclick.net/ddm/fls/r/src=9234067;type=brows0;cat=allpa0;ord=8633784125758;gtm=2wg1p0;auiddc=2116228885.1675007720;u10=undefined;u11=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;u3=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account;~oref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 61 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash c14f66f2862cb9f677faff773d5e31bd
6af4612d727109661f8c79e65943eb0dce780271
8d4308930a6fa8da5765efde799964d9bed87d29e3148050b6cfa93a26db0ce1
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=62261
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (17737), with no line terminators
Hash 69ccf6d91702cd65dedfbad36e94c61b
adce8bd55dcc466c709dc96e230cbdd72fb27645
9a5b793c3b453c30229658bebe68719aa0df37a71ef371a6c6117e123b091e64
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "9f0b052ec22f789c3cc95c26dd0da7f4:1674389451.57807"
Last-Modified: Sun, 22 Jan 2023 12:08:14 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sun, 29 Jan 2023 16:15:12 GMT
Date: Sun, 29 Jan 2023 15:55:12 GMT
Content-Length: 5884
Connection: keep-alive
www.forextime.com/geojs.php?v=global&l=en&sr=
104.17.161.73200 OK 15 kB URL HTTP/2 www.forextime.com/geojs.php?v=global&l=en&sr=
IP 104.17.161.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17278)
Hash 3fdc8e17cf818a052ee4ab8bf3547436
30d82558e1d503a091bfeebdd6f4686e8c65d58b
7c35c8ab72a8818c38dead8ab785d250248955df50e78c22696f13e6a0a28914
GET /geojs.php?v=global&l=en&sr= HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
cache-control: no-cache, no-cache, no-store, must-revalidate
set-cookie: __geoip_country__=NO; path=/; secure
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.forextime.com
pragma: no-cache
content-encoding: gzip
last-modified: Sun, 29 Jan 2023 15:55:10 GMT
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690eb12b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 15:46:59 GMT
expires: Sun, 29 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
age: 493
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-7.2.1-min.gz.js
54.230.245.185200 OK 19 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-7.2.1-min.gz.js
IP 54.230.245.185:0
File type ASCII text, with very long lines (60877)
Hash e7ee6bc7f428f90fb1b1ed0e94b9f835
12a8cedc4a363af306b438111de73bc4d8b399d7
4bdadec687b990a491b8a797c8fbfbea6e30b2a28bda402760262bbfc982a3af
GET /libs/amplitude-7.2.1-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 19222
date: Mon, 12 Dec 2022 00:54:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 22 Sep 2020 19:51:25 GMT
etag: "e7ee6bc7f428f90fb1b1ed0e94b9f835"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: rtLe8nVXDx8sL7XBGT5sDlFBE.TwGFEn
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -Ce1UYOx_G3aM9J4TBDZGwlScnmE_O0xmUVtPwDevMILtgD4SHe0Yw==
age: 4201263
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1497822/tfa.js
151.101.193.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1497822/tfa.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (59652)
Hash a8d37814a6410adacafc6f7fa40632a6
fad8c78aa4d2c88ff9fec6f52e3356eebbf9b03c
8dd4b310ec133f18c97061caf973e4a33e479007dfd56dda3380da430fc2253e
GET /libtrc/unip/1497822/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: k+uR+C38STSnQSMwiNEX21lrNGIZtfR7g/f9q2NzPi+VtoQbCEOVA8ewEbqC+lN+OjGHAy01NHI=
x-amz-request-id: 7XT4GXKQRDHDJQZA
x-amz-replication-status: COMPLETED
last-modified: Sun, 29 Jan 2023 11:06:10 GMT
etag: "6a3919fd1af905effba3e09c0e20bffa"
x-amz-version-id: Q4zQU22cmeDFabl2kKNSSCromY_3ts2H
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
age: 16239
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1675007712.468200,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 55
content-length: 18343
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1664
Cache-Control: max-age=94555
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 18:11:07 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1&z=194465768
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1&z=194465768
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1&z=194465768 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 088d5aaa89319f1c6aed26c571993f13
5f8447ffddafe1dd092ba2dfc8777b83e7d228bf
7b26a998ea0d466614c8075d57faf034b46477ed1dd9185107ab4323f3018905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/adj/N1012985.197812NSO.CODESRV/B22842650.248561348;sz=1x2;ord=453063960300?
142.250.74.134200 OK 14 kB URL HTTP/2 ad.doubleclick.net/ddm/adj/N1012985.197812NSO.CODESRV/B22842650.248561348;sz=1x2;ord=453063960300?
IP 142.250.74.134:0
Hash 58d5445aef90378052d9c767d31fc61a
43440176e7ed4607621e40c6813aad8de854c3cb
ea5c79b7db89056455ad63160b36cd8e88c0a46015e997d7d8ca358dfc0d96c5
GET /ddm/adj/N1012985.197812NSO.CODESRV/B22842650.248561348;sz=1x2;ord=453063960300? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 13636
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 16:10:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 3e8393692b2b4c2479fd45c5c3187ea3
2ea59816882afd61a396334816ffb463a6664c4b
93941d0d3dc6cc4b54786a6c107f9cf95a47492303503e01cfc63b5eaee2ac55
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 860bdec51cee5576856091a32e0a7054
etag: "4e360f6e3eaed489df94edbd09b2e40c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 29 Jan 2023 16:03:37 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: PoOTaSsrTCR5/UXFwxh+ow==
x-fb-debug: PtlO5JuiSXd4zRr/vbzvU9wYgxxS4kPDlkY6+ofkVgzmb/i8m3aCKT7Wsr6KrMyZGNoWskgRydsrRqGas8QuKw==
content-length: 1685
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 15:55:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion.js
142.250.74.162200 OK 17 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (2772)
Hash 04ec73ef2e5b66c5c39789225ef6f3b4
2ab347c238be13f67eca677342a5908069c0f7f4
5fe85656bf935a0c9eb402c514de0373da700f53a7bc64071c54c3a8cb6d4cf5
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9234067.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:55:12 GMT
expires: Sun, 29 Jan 2023 15:55:12 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 9276738928452068410
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16812
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/oct.js
151.101.244.157301 Moved Permanently 0 B URL HTTP/2 platform.twitter.com/oct.js
IP 151.101.244.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /oct.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://static.ads-twitter.com/oct.js
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
x-served-by: cache-hel1410031-HEL
x-cache: HIT
vary:
tw-cdn: FT
content-length: 0
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1675007720023&id=t2_by64jl2d&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=821c5c76-f603-43b6-9cbe-cae44acb8a0e&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
151.101.65.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1675007720023&id=t2_by64jl2d&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=821c5c76-f603-43b6-9cbe-cae44acb8a0e&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
IP 151.101.65.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1675007720023&id=t2_by64jl2d&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=821c5c76-f603-43b6-9cbe-cae44acb8a0e&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion_async.js
142.250.74.162200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (1654)
Hash 22eaa6491556c40c984bed61ff9892b5
253ec7921f896fab2d49656208b10d2a227c82de
f690af44bc7bb9724442c2f52648ce1c8365cc6010cc0af574f5e0dcddf7ee7f
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:55:12 GMT
expires: Sun, 29 Jan 2023 15:55:12 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8608601048380966470
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15164
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
identity.mparticle.com/v1/identify
151.101.194.133204 No Content 0 B URL HTTP/2 identity.mparticle.com/v1/identify
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/identify HTTP/1.1
Host: identity.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-mp-key
Referer: https://www.forextime.com/
Origin: https://www.forextime.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Kestrel
access-control-allow-headers: content-type,x-mp-key
access-control-allow-methods: POST
access-control-allow-origin: *
x-origin-name: 4PrgpUXX9K0sNAH1JImfyI--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
age: 1778
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 282
x-timer: S1675007713.594724,VS0,VE0
strict-transport-security: max-age=900
X-Firefox-Spdy: h2
obs.cheqzone.com/ct?id=11463&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675007720010&hl=1&op=0&ag=1317291471&rand=131269001852165506799222070256567791869188568011910107707812090902200921195&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=dh9stb35N0&pto=1114&ver=50&gac=1497018270.1675007720&mei=&ap=&duid=1.1675007720.LSsHCbmeU57QFSMb&suid=1.1675007720.ifQIQYownjgLUK0l&tuid=1.1675007720.39Z3wzqcUZbssSG6&fbc=->m=WyJ1c2VyX2NvdW50cnkiXQ%3D%3D&it=40%2C894%2C63&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
54.83.110.109200 OK 1.0 kB URL HTTP/2 obs.cheqzone.com/ct?id=11463&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675007720010&hl=1&op=0&ag=1317291471&rand=131269001852165506799222070256567791869188568011910107707812090902200921195&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=dh9stb35N0&pto=1114&ver=50&gac=1497018270.1675007720&mei=&ap=&duid=1.1675007720.LSsHCbmeU57QFSMb&suid=1.1675007720.ifQIQYownjgLUK0l&tuid=1.1675007720.39Z3wzqcUZbssSG6&fbc=->m=WyJ1c2VyX2NvdW50cnkiXQ%3D%3D&it=40%2C894%2C63&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 54.83.110.109:0
File type ASCII text, with very long lines (2952), with no line terminators
Hash 82ff5901c51b3080c8c2d3286ab2cae0
c887f8a045ea7d3284f11e60acabf2ee9102a1f0
da2e6e704f5bbf26cd2ee9b9d44f5ecba7179a0e9056f1a641f17d64b34c853d
GET /ct?id=11463&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675007720010&hl=1&op=0&ag=1317291471&rand=131269001852165506799222070256567791869188568011910107707812090902200921195&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=dh9stb35N0&pto=1114&ver=50&gac=1497018270.1675007720&mei=&ap=&duid=1.1675007720.LSsHCbmeU57QFSMb&suid=1.1675007720.ifQIQYownjgLUK0l&tuid=1.1675007720.39Z3wzqcUZbssSG6&fbc=->m=WyJ1c2VyX2NvdW50cnkiXQ%3D%3D&it=40%2C894%2C63&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 29 Jan 2023 15:55:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279; Max-Age=29030400; Path=/; Expires=Sun, 31 Dec 2023 15:55:12 GMT; HttpOnly; Secure; SameSite=None
content-length: 1018
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1664
Cache-Control: max-age=94555
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 18:11:07 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3cdf7a37df5fd660125c11f6c7f44064
929c5ec370ad00ff0508f86174d450407ac680bd
22ffbbc922da324c956478cfd8cb5bcc269831ac5c85e22ef6ecdd69e3512a7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-MX7217M0KX>m=2oe1p0&_p=988285402&_gaz=1&cid=1497018270.1675007720&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675007719&sct=1&seg=0&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&dr=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&dt=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&en=page_view&_fv=1&_nsi=1&_ss=2&ep.document_referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ep.gtm_debug_mode=false&ep.timestamp=2023-01-29T15%3A55%3A19.758%2B00%3A00&ep.gtm_version=441&ep.domain_region=global
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-MX7217M0KX>m=2oe1p0&_p=988285402&_gaz=1&cid=1497018270.1675007720&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675007719&sct=1&seg=0&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&dr=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&dt=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&en=page_view&_fv=1&_nsi=1&_ss=2&ep.document_referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ep.gtm_debug_mode=false&ep.timestamp=2023-01-29T15%3A55%3A19.758%2B00%3A00&ep.gtm_version=441&ep.domain_region=global
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MX7217M0KX>m=2oe1p0&_p=988285402&_gaz=1&cid=1497018270.1675007720&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675007719&sct=1&seg=0&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&dr=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&dt=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&en=page_view&_fv=1&_nsi=1&_ss=2&ep.document_referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&ep.gtm_debug_mode=false&ep.timestamp=2023-01-29T15%3A55%3A19.758%2B00%3A00&ep.gtm_version=441&ep.domain_region=global HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.forextime.com
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1
173.194.73.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1
IP 173.194.73.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MX7217M0KX&cid=1497018270.1675007720>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.forextime.com
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
obs.cheqzone.com/tracker/tc_imp.gif?e=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&cri=dh9stb35N0&ts=621&cb=1675007720631
54.83.110.109200 OK 43 B URL HTTP/2 obs.cheqzone.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc735ed408b9f9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f10896b2417071a10acf9f29f674880d08d54286c4ffc7b24528639db30c407615371c003005f37555fc5bc6c4677be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7e1523515ea78c2c317a0eacfe4a2d8ca3f57fc1b509701a24a9a4f79d9126bdcfc248b5038e523964c8f488f0b46882d6f033d3774e92f3d6335f51b07f39f7d2412caa81a6219155a01badd15ddd0d9e9826877c60d486789830cecfb9a0dcb0a6476ee433a4efaf3b5b35a0c121c5e501ec1b540bd45c5999c2828899bca91d8864909ef5d028a03c6c37c4207ddad4814923d7f863ac11a7cb0d9c61b96f5313198123aa1890c3a36fbf9d2ecc13e0c3ddd668c3494368f64f02546e0473d5ab6ffb46d5cd8a33a98825b3d02dd0c2b1be7c85b7f409746c89a91004d7b41d5107f7fae939fa2890f802fdfc3ce52dd36dcc068a50aefc2ecd0826e0a795663e3762042a155d11ade48c6cd505b5455c5f3baee63c83c14d52bac18ba8b67edffff8eec4a4bdfb204c20f84685aa446883437906d465591c70e42fea2f4dd0e1d3629461d1228eab2ccabf0f99657342637a0f41c19581de3b1a23f9651787cfcbf8f593071794a2bc6397c9747ed8d2153b6bf98f800040ce46ec00d844b968e777a0c84feaa620a6ded1868a4d70eefe3a658573a68db7ac149c72371f6f972f0911e2c635ddaf57a9ee9dda48dfc5c7651c3d2cd321b947ee0ca08b698a201a62387a0f23be09d5d86d02ab6596f6a9768c82&cri=dh9stb35N0&ts=621&cb=1675007720631
IP 54.83.110.109:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=dh9stb35N0&ts=621&cb=1675007720631 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 29 Jan 2023 15:55:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash d06ae4c607bf5f868f9b300b22384cfb
2629b2e0228105e2c1b21012c8095c041f857f97
65c2fdfa47c0e848e895e365ca185438e33fdae5776f4c430bf235cc24c35077
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2102
Cache-Control: max-age=160481
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Etag: "63d65e8b-138"
Expires: Tue, 31 Jan 2023 12:29:53 GMT
Last-Modified: Sun, 29 Jan 2023 11:54:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312
connect.facebook.net/en_US/sdk.js?hash=1f3970a3d8d3f5cceefc7e5807672e1a
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=1f3970a3d8d3f5cceefc7e5807672e1a
IP 157.240.205.11:0
File type ASCII text, with very long lines (18530)
Hash 6eeac2aad9b122c41c37cd3ff5ef88e7
5ffba4549edeff85511fa6c7e7e9f1959156f07c
9344e93eebc552b274a87d0a8a7651372b9eaa984238720f01f9fb2d8c609660
GET /en_US/sdk.js?hash=1f3970a3d8d3f5cceefc7e5807672e1a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 37b2f6185377e02fd9479b46b3b6d580
etag: "5b599614e7432d5464b470d4c055c008"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 29 Jan 2024 12:49:37 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: burCqtmxIsQcN80/9e+I5w==
x-fb-debug: FwQMXXhqhGJTpG83hMCJOhipfSRFPQtzfVFCFVggTiyhkq8tsP4VMUruKA/poz29l86vX7iaqOLp2zQzoeSc7A==
priority: u=3,i
content-length: 88416
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 15:55:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4439274%26time%3D1675007720431%26url%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQL3NGZGz9CUpwAAAYX-PV35f36LRMEYh5FrkKIXYcPogdVFp8G10Xa1PyVw_MdqgJzpuGmcdqGafQ; Max-Age=2592000; Expires=Tue, 28 Feb 2023 15:55:12 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJFNK5a-BXqUAAAAYX-PV35q-xqxWFwS-o14M4Y-9ctlJJLRUbHojrOjn2m5BbOZyFJSNbC0NgzCulVkvGDWA; Max-Age=2592000; Expires=Tue, 28 Feb 2023 15:55:12 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&9552dfd9-f83f-47cf-87da-ed8d33c9e9a0"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 29-Jan-2024 15:55:12 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675007712:t=1675094112:v=2:sig=AQFEOHIcx1i1zgQXxdiIHdGjhaHeVsGP"; Expires=Mon, 30 Jan 2023 15:55:12 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzaR+2/paAScR8KYHU9A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 427B6BF50F7C4994A3E469118DC78C8B Ref B: OSL30EDGE0220 Ref C: 2023-01-29T15:55:12Z
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:55:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:55:12 GMT
Connection: keep-alive
identity.mparticle.com/v1/identify
151.101.194.133200 OK 667 B URL HTTP/2 identity.mparticle.com/v1/identify
IP 151.101.194.133:0
Hash b183403aea40b30f57dd62d699213071
da4eae8938dcca219a1a2cb9efa08dae312b5f2c
c41866763ac3b64df3cee98ef0095f6957c68427ec93ff1b124ee2f4da054770
POST /v1/identify HTTP/1.1
Host: identity.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-mp-key: us1-9396d9c23a31454783af64f529f131bc
Content-Length: 320
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: Kestrel
access-control-allow-origin: *
content-encoding: gzip
x-origin-name: 4PrgpUXX9K0sNAH1JImfyI--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007713.617834,VS0,VE106
vary: Accept-Encoding
strict-transport-security: max-age=900
X-Firefox-Spdy: h2
sdk.fra-01.braze.eu/api/v3/data/
151.101.129.208200 OK 3.6 kB URL HTTP/2 sdk.fra-01.braze.eu/api/v3/data/
IP 151.101.129.208:0
Hash 32173f2a61f17a3ad72a1f2f31d3eedb
38a3145a69ac66b453510fce41fbe0ecf4c39d16
1e3434da782413e300b9d9a36f7487871979e9dfac64b7f1c20bc64d906dddf1
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.fra-01.braze.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
Referer: https://www.forextime.com/
Origin: https://www.forextime.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1663-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007713.595590,VS0,VE20
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=4JbWY9qlK4u57AOuiK6IAg&sscte=1&crd=
216.58.211.2302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=4JbWY9qlK4u57AOuiK6IAg&sscte=1&crd=
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=4JbWY9qlK4u57AOuiK6IAg&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9234067.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=4JbWY9qlK4u57AOuiK6IAg&random=3670071176&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 16:10:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 64706
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 68936
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 42837
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 32743
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVpetFv-oAMF_Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 14:55:48 GMT
age: 3564
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21dfd3ff-6ef1-481d-b7af-d5f7eb830cde.jpeg
34.120.237.76200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21dfd3ff-6ef1-481d-b7af-d5f7eb830cde.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 801d4d643e2fe5f23a2dcaa77c133ab8
b4a01701d16b84047d7c62d5ffa5165865042c57
f4f6a4902c0703b901271a0360c7ebbdb33fe85a68203e10639ae655b2bbe004
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21dfd3ff-6ef1-481d-b7af-d5f7eb830cde.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3203
x-amzn-requestid: 50873744-cce9-4788-9f05-9e66ba943b2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFEd_HBwoAMF-Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb8126-7e5f1963639215cb43992cd5;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:07:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ho5pTWplXBixyAs_iFwd0VPitF4IjOYaCNa_XdQ-BFH7kTuDIsca0g==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 22:03:16 GMT
age: 64316
etag: "b4a01701d16b84047d7c62d5ffa5165865042c57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.ads-twitter.com/oct.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/oct.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /oct.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
x-served-by: cache-iad-kiad7000092-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:12 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=f64126bc-367a-47e8-900d-08190fa2a22d; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:12 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 496ea017772b0472
strict-transport-security: max-age=0
x-response-time: 110
x-connection-hash: fed3a4259b54df93b58ab1c9f40dc9c91bb9321e239efa9ab6ac9ab905314adb
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/r20230124/r20110914/elements/html/omrhp.js
142.250.74.130200 OK 3.0 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/r20230124/r20110914/elements/html/omrhp.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (2812)
Hash 4eb6ea786b3ccb9a391ae42a87bd2464
e732e5d07807f747b24f6e4ec07a6974712e1f2c
13c2ff9f7ca635fdd1172a2a836df15ea2ddfa0cc0d2f24dc89ff215d0703c77
GET /pagead/js/r20230124/r20110914/elements/html/omrhp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 2986
x-xss-protection: 0
date: Sat, 28 Jan 2023 20:32:18 GMT
expires: Sat, 11 Feb 2023 20:32:18 GMT
cache-control: public, max-age=1209600
age: 69775
etag: 3296546412363819624
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=4JbWY9qlK4u57AOuiK6IAg&random=3670071176&resp=GooglemKTybQhCsO
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=4JbWY9qlK4u57AOuiK6IAg&random=3670071176&resp=GooglemKTybQhCsO
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=4JbWY9qlK4u57AOuiK6IAg&random=3670071176&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9234067.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/11017218552/?random=1265936595&cv=9&fst=1675007720638&num=1&npa=1&label=JPoLCL23hYEYEPjTtYUp&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F9234067.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9234067%3Btype%3Dbrows0%3Bcat%3Dallpa0%3Bord%3D8633784125758%3Bgtm%3D2wg1p0%3Bauiddc%3D2116228885.1675007720%3Bu10%3Dundefined%3Bu11%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3Bu3%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%3B~oref%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=4JbWY9qlK4u57AOuiK6IAg&random=3670071176&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/768686761/?random=1675007720772&cv=11&fst=1675004400000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&tiba=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=761348608&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/768686761/?random=1675007720772&cv=11&fst=1675004400000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&tiba=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=761348608&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/768686761/?random=1675007720772&cv=11&fst=1675004400000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&tiba=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=761348608&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:55:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.34200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.34:0
File type ASCII text, with very long lines (3504)
Hash eaf26b8f5900d361a5d447ea72df4752
26b0a44ca382082dde8648abd0a4d949bdf0c664
1334af0b91c26ce21cb75ab69d0c7e9c8ec1f00c0ce946a3689bb9d6fdcc4d37
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49065
date: Sun, 29 Jan 2023 15:55:13 GMT
expires: Sun, 29 Jan 2023 15:55:13 GMT
cache-control: private, max-age=3000
etag: "1674650782302584"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash cf578d5a5b0137f846d245ba44614698
717f6b4e775fdc7c085dec8b34a2f8ed1a013016
d35dcf01cb9b9b41ddce54201a3e2e360aac4b09ce86b355d1fa54fe827fd647
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1866
Cache-Control: max-age=114864
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:55:13 GMT
Etag: "63d5ad47-138"
Expires: Mon, 30 Jan 2023 23:49:37 GMT
Last-Modified: Sat, 28 Jan 2023 23:18:31 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssUFwu_mVZfswURVvSNAsmuOPYU21tZGG8_QsQdcpTKWunhaa49zANGMnasWo1B4mzD9HiR0HBp9poQhLGSk1O8fs0JoJZm-LbZbSN73D3ZNiPXmWjn_8h8YwVHKTr7ayifgWTijhQFW9NiDp4&sai=AMfl-YQzB8SqMnKr9-znCqeLMDoxxhakUqMMpXxne55tIVDUCp5toE4eWR0W1KG4UTYwmMaIN-pjfn8iNYaLSayKhA&sig=Cg0ArKJSzJlrVpmaFxzcEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cisv=r20230124.05446&arae=0&ftch=1&adurl=
142.250.74.34200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssUFwu_mVZfswURVvSNAsmuOPYU21tZGG8_QsQdcpTKWunhaa49zANGMnasWo1B4mzD9HiR0HBp9poQhLGSk1O8fs0JoJZm-LbZbSN73D3ZNiPXmWjn_8h8YwVHKTr7ayifgWTijhQFW9NiDp4&sai=AMfl-YQzB8SqMnKr9-znCqeLMDoxxhakUqMMpXxne55tIVDUCp5toE4eWR0W1KG4UTYwmMaIN-pjfn8iNYaLSayKhA&sig=Cg0ArKJSzJlrVpmaFxzcEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cisv=r20230124.05446&arae=0&ftch=1&adurl=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssUFwu_mVZfswURVvSNAsmuOPYU21tZGG8_QsQdcpTKWunhaa49zANGMnasWo1B4mzD9HiR0HBp9poQhLGSk1O8fs0JoJZm-LbZbSN73D3ZNiPXmWjn_8h8YwVHKTr7ayifgWTijhQFW9NiDp4&sai=AMfl-YQzB8SqMnKr9-znCqeLMDoxxhakUqMMpXxne55tIVDUCp5toE4eWR0W1KG4UTYwmMaIN-pjfn8iNYaLSayKhA&sig=Cg0ArKJSzJlrVpmaFxzcEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=0&cbvp=1&cisv=r20230124.05446&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 15:55:13 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 16:10:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 29 Jan 2023 15:55:13 GMT
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4439274%26time%3D1675007720431%26url%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4439274%26time%3D1675007720431%26url%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4439274%26time%3D1675007720431%26url%3Dhttps%253A%252F%252Fwww.forextime.com%252Feu%252Fregister%252Fopen-account%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&4e948f01-64c7-482a-8101-93209417bd12"; Domain=.linkedin.com; Expires=Mon, 29-Jan-2024 15:55:13 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230129155512ba43b076-c786-4c49-8212-970710f154e5AQFbtYXezhc2rVeyYnR97SlO0F5cQWrP"; Domain=.www.linkedin.com; Expires=Mon, 29-Jan-2024 15:55:13 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUwMDc3MTI7MjswMjGrihiTUndFm9qQ3ssUwpUd9j8yOElewQm6Yq1jNNsahg==; Domain=.linkedin.com; Expires=Fri, 28 Jul 2023 15:55:12 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675007713:t=1675094113:v=2:sig=AQGOJ4NFsU6HUdNX118uQOw70-C1XT1Y"; Expires=Mon, 30 Jan 2023 15:55:13 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzaR+6r+ekLvlihV1/pg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B35AF021FD464AA5B0B3234ABA2E5B04 Ref B: OSL30EDGE0220 Ref C: 2023-01-29T15:55:12Z
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 0
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=undefined
70.42.32.95200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 70.42.32.95:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:55:13 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 4f7cf333dc1b4e5d0bb05dd638c4f9c6
tr.outbrain.com/unifiedPixel?marketerId=006325f74137452b8eaa8aec2f8576314a&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&optOut=false&bust=015138467760820895&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account
70.42.32.95200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=006325f74137452b8eaa8aec2f8576314a&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&optOut=false&bust=015138467760820895&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account
IP 70.42.32.95:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=006325f74137452b8eaa8aec2f8576314a&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&optOut=false&bust=015138467760820895&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:55:13 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: bbb7651fe433a014b6cb0aead2469c5b
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6af028f7-c440-45cf-bfc7-0bbeb9dcd99e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&txn_id=oadtt&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:12 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167500771311707153; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167500771311707153; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_nayY0IYDmqUEmcOYis7NqA=="; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167500771311707153; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 003f1822e0710c62
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: eb2ffbc7d6bcee83573981eced203e7347ad7174ae3879c871b88efdc6f7361f
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=4439274&time=1675007720431&url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&95724881-2e06-4207-8562-e09b53bb7280"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 29-Jan-2024 15:55:13 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2450:u=1:x=1:i=1675007713:t=1675094113:v=2:sig=AQH6FnV8ue0zCkn3iy0WwX4h63gnX0a3"; Expires=Mon, 30 Jan 2023 15:55:13 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzaR+9YdSzT3xU1SG1rQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3EE6FCEFA9474E1D90D850DA55619163 Ref B: OSL30EDGE0220 Ref C: 2023-01-29T15:55:13Z
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=549567273353642&ev=CHEQ&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&if=false&ts=1675007721223&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675007721223.1572187213&it=1675007720950&coo=false&rqm=GET
31.13.72.36302 Found 0 B URL HTTP/2 www.facebook.com/tr/?id=549567273353642&ev=CHEQ&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&if=false&ts=1675007721223&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675007721223.1572187213&it=1675007720950&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=549567273353642&ev=CHEQ&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&if=false&ts=1675007721223&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675007721223.1572187213&it=1675007720950&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
date: Sun, 29 Jan 2023 15:55:13 GMT
set-cookie:
location: /tr/?coo=false&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ec=0&ev=CHEQ&fbp=fb.1.1675007721223.1572187213&id=549567273353642&if=false&it=1675007720950&o=30&r=stable&redirect=0&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&rqm=GET&sh=1024&sw=1280&ts=1675007721223&v=2.9.92
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-type: text/plain
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?coo=false&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ec=0&ev=CHEQ&fbp=fb.1.1675007721223.1572187213&id=549567273353642&if=false&it=1675007720950&o=30&r=stable&redirect=0&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&rqm=GET&sh=1024&sw=1280&ts=1675007721223&v=2.9.92
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?coo=false&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ec=0&ev=CHEQ&fbp=fb.1.1675007721223.1572187213&id=549567273353642&if=false&it=1675007720950&o=30&r=stable&redirect=0&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&rqm=GET&sh=1024&sw=1280&ts=1675007721223&v=2.9.92
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?coo=false&dl=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&ec=0&ev=CHEQ&fbp=fb.1.1675007721223.1572187213&id=549567273353642&if=false&it=1675007720950&o=30&r=stable&redirect=0&rl=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&rqm=GET&sh=1024&sw=1280&ts=1675007721223&v=2.9.92 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 29 Jan 2023 15:55:13 GMT
X-Firefox-Spdy: h2
content.mql5.com/st?id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&p_di=541&p_dcl_s=555&p_dcl_e=556&p_dc=2400&p_dns_s=0&p_dns_e=0&p_tcp_s=0&p_tcp_e=0&p_req=40&p_res_s=211&p_res_e=212&d_fcp=593&r_other_s=234&r_other_e=1787&r_script_s=234&r_script_e=2236&r_img_s=235&r_img_e=2397&r_style_s=235&r_style_e=1274&r_font_s=583&r_font_e=714&r_iframe_s=902&r_iframe_e=1006&r_ajax_s=1150&r_ajax_e=2117&ssn=1675007719417731114&ssn_dr=2&ssn_sr=0&fv_date=1675007719&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=167500772131689018&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A1493%2C%22at%22%3A%7B%22kd%22%3A0%2C%22ku%22%3A0%2C%22md%22%3A0%2C%22mm%22%3A0%2C%22mu%22%3A0%2C%22fc%22%3A0%2C%22br%22%3A0%2C%22ts%22%3A0%2C%22tm%22%3A0%2C%22te%22%3A0%2C%22sc%22%3A0%2C%22sw%22%3A0%2C%22ge%22%3A0%2C%22gy%22%3A0%2C%22dm%22%3A0%2C%22do%22%3A0%7D%2C%22sg%22%3A0%2C%22jc%22%3A0%2C%22bd%22%3A50%7D
78.140.180.86200 OK 70 B URL HTTP/2 content.mql5.com/st?id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&p_di=541&p_dcl_s=555&p_dcl_e=556&p_dc=2400&p_dns_s=0&p_dns_e=0&p_tcp_s=0&p_tcp_e=0&p_req=40&p_res_s=211&p_res_e=212&d_fcp=593&r_other_s=234&r_other_e=1787&r_script_s=234&r_script_e=2236&r_img_s=235&r_img_e=2397&r_style_s=235&r_style_e=1274&r_font_s=583&r_font_e=714&r_iframe_s=902&r_iframe_e=1006&r_ajax_s=1150&r_ajax_e=2117&ssn=1675007719417731114&ssn_dr=2&ssn_sr=0&fv_date=1675007719&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=167500772131689018&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A1493%2C%22at%22%3A%7B%22kd%22%3A0%2C%22ku%22%3A0%2C%22md%22%3A0%2C%22mm%22%3A0%2C%22mu%22%3A0%2C%22fc%22%3A0%2C%22br%22%3A0%2C%22ts%22%3A0%2C%22tm%22%3A0%2C%22te%22%3A0%2C%22sc%22%3A0%2C%22sw%22%3A0%2C%22ge%22%3A0%2C%22gy%22%3A0%2C%22dm%22%3A0%2C%22do%22%3A0%7D%2C%22sg%22%3A0%2C%22jc%22%3A0%2C%22bd%22%3A50%7D
IP 78.140.180.86:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 48b7a1e65c0e92830152164b22a7c37d
16f99525ed7feee4e80d1e32df48d36286cdfca4
e3849fdc1eab88579b20b1b56875d6ef8299c4ad165e03921400ccae69149861
GET /st?id=nxrrynhtikdhvfhdklcsvtpfgwisklqrej&p_di=541&p_dcl_s=555&p_dcl_e=556&p_dc=2400&p_dns_s=0&p_dns_e=0&p_tcp_s=0&p_tcp_e=0&p_req=40&p_res_s=211&p_res_e=212&d_fcp=593&r_other_s=234&r_other_e=1787&r_script_s=234&r_script_e=2236&r_img_s=235&r_img_e=2397&r_style_s=235&r_style_e=1274&r_font_s=583&r_font_e=714&r_iframe_s=902&r_iframe_e=1006&r_ajax_s=1150&r_ajax_e=2117&ssn=1675007719417731114&ssn_dr=2&ssn_sr=0&fv_date=1675007719&ref=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&back_ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&title=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&scr_res=1280x1024&ac=167500772131689018&sv=2431&fz_uniq=6370652491363780839&an=%7B%22vn%22%3A%22%22%2C%22cd%22%3A24%2C%22dm%22%3A-1%2C%22ln%22%3A%22en-US%22%2C%22rn%22%3A%5B1280%2C1024%5D%2C%22ar%22%3A%5B1280%2C1002%5D%2C%22ss%22%3A1%2C%22lb%22%3A1%2C%22cb%22%3A1%2C%22ls%22%3A1%2C%22db%22%3A1%2C%22ax%22%3A0%2C%22pm%22%3A%22Linux%20x86_64%22%2C%22to%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22hc%22%3A16%2C%22ab%22%3A0%2C%22ts%22%3A0%2C%22ps%22%3A%2220100101%22%2C%22od%22%3A0%2C%22dr%22%3A0%2C%22bb%22%3A0%2C%22bo%22%3A1%2C%22bl%22%3A0%2C%22bs%22%3A0%2C%22dt%22%3A1493%2C%22at%22%3A%7B%22kd%22%3A0%2C%22ku%22%3A0%2C%22md%22%3A0%2C%22mm%22%3A0%2C%22mu%22%3A0%2C%22fc%22%3A0%2C%22br%22%3A0%2C%22ts%22%3A0%2C%22tm%22%3A0%2C%22te%22%3A0%2C%22sc%22%3A0%2C%22sw%22%3A0%2C%22ge%22%3A0%2C%22gy%22%3A0%2C%22dm%22%3A0%2C%22do%22%3A0%7D%2C%22sg%22%3A0%2C%22jc%22%3A0%2C%22bd%22%3A50%7D HTTP/1.1
Host: content.mql5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: _fz_uniq=6370652491363780839
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-length: 70
content-type: image/png
expires: -1
strict-transport-security: max-age=31536000; includeSubDomains; preload
date: Sun, 29 Jan 2023 15:55:12 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 671
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
date: Sun, 29 Jan 2023 15:55:13 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fcookiesync.mparticle.com%2Fv1%2Fsync%3Fesid%3D60203%26MPID%3D-7424737205323017604%26ID%3D%24UID%26Key%3Dus1-9396d9c23a31454783af64f529f131bc%26env%3D2
185.89.211.132307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fcookiesync.mparticle.com%2Fv1%2Fsync%3Fesid%3D60203%26MPID%3D-7424737205323017604%26ID%3D%24UID%26Key%3Dus1-9396d9c23a31454783af64f529f131bc%26env%3D2
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fcookiesync.mparticle.com%2Fv1%2Fsync%3Fesid%3D60203%26MPID%3D-7424737205323017604%26ID%3D%24UID%26Key%3Dus1-9396d9c23a31454783af64f529f131bc%26env%3D2 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:55:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fcookiesync.mparticle.com%252Fv1%252Fsync%253Fesid%253D60203%2526MPID%253D-7424737205323017604%2526ID%253D%2524UID%2526Key%253Dus1-9396d9c23a31454783af64f529f131bc%2526env%253D2
AN-X-Request-Uuid: 455ac33b-9dfd-4ab1-87b3-db08054673a3
Set-Cookie: uuid2=3131190388737304053; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 29-Apr-2023 15:55:13 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 144
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.516782,VS0,VE22
content-length: 0
X-Firefox-Spdy: h2
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 517
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.522144,VS0,VE20
content-length: 0
X-Firefox-Spdy: h2
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 518
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.525997,VS0,VE19
content-length: 0
X-Firefox-Spdy: h2
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 549
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.528235,VS0,VE19
content-length: 0
X-Firefox-Spdy: h2
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 518
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.528652,VS0,VE20
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 110 kB IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, from Unix\012- data
Size 110 kB (110055 bytes)
Hash 711916dcfdd9cfe36754304f77569057
78c77d4080de0798e57e83fdd413ff38df4d241b
864e787df2b83e92ecea93ceb634502072e5692901ee5049ac3a9b33c5fb46c8
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&RedC=c.clarity.ms&MXFR=0B635F2AC1576A0600FA4D82C55764E9
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=0B635F2AC1576A0600FA4D82C55764E9; domain=.clarity.ms; expires=Fri, 23-Feb-2024 15:55:13 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sun, 29 Jan 2023 15:55:12 GMT
content-length: 0
X-Firefox-Spdy: h2
t.co/i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: muc_ads=f64126bc-367a-47e8-900d-08190fa2a22d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:12 GMT
perf: 7626143928
server: tsa_o
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 2cf6458ef0e7bb6e
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: fed3a4259b54df93b58ab1c9f40dc9c91bb9321e239efa9ab6ac9ab905314adb
X-Firefox-Spdy: h2
jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
151.101.194.133202 Accepted 0 B URL HTTP/2 jssdks.mparticle.com/v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/JS/us1-9396d9c23a31454783af64f529f131bc/Forwarding HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 519
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
server: Kestrel
access-control-allow-origin: *
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.561539,VS0,VE19
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&RedC=c.clarity.ms&MXFR=0B635F2AC1576A0600FA4D82C55764E9
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&RedC=c.clarity.ms&MXFR=0B635F2AC1576A0600FA4D82C55764E9
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&RedC=c.clarity.ms&MXFR=0B635F2AC1576A0600FA4D82C55764E9 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&MUID=2C4ABCD92BD1627C0EB8AE712A866370
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2C4ABCD92BD1627C0EB8AE712A866370; domain=c.bing.com; expires=Fri, 23-Feb-2024 15:55:13 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 35ECE9C1BFCF46EC9105A463ABC271F9 Ref B: OSL30EDGE0415 Ref C: 2023-01-29T15:55:13Z
date: Sun, 29 Jan 2023 15:55:13 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=4&eci=1&event_id=5d20ce78-5d6b-4df4-bda1-d9aa311b0ad7&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=68b28eaa-e74f-494c-a5ee-2257dd6fedc6&tw_document_href=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw97l&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:13 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_Rx1Ix/oGuHW0iYGLw3aoUA=="; Max-Age=63072000; Expires=Tue, 28 Jan 2025 15:55:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f6e5e9f7969bc37a
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: eb2ffbc7d6bcee83573981eced203e7347ad7174ae3879c871b88efdc6f7361f
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fcookiesync.mparticle.com%252Fv1%252Fsync%253Fesid%253D60203%2526MPID%253D-7424737205323017604%2526ID%253D%2524UID%2526Key%253Dus1-9396d9c23a31454783af64f529f131bc%2526env%253D2
185.89.211.132302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fcookiesync.mparticle.com%252Fv1%252Fsync%253Fesid%253D60203%2526MPID%253D-7424737205323017604%2526ID%253D%2524UID%2526Key%253Dus1-9396d9c23a31454783af64f529f131bc%2526env%253D2
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fcookiesync.mparticle.com%252Fv1%252Fsync%253Fesid%253D60203%2526MPID%253D-7424737205323017604%2526ID%253D%2524UID%2526Key%253Dus1-9396d9c23a31454783af64f529f131bc%2526env%253D2 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:55:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://cookiesync.mparticle.com/v1/sync?esid=60203&MPID=-7424737205323017604&ID=0&Key=us1-9396d9c23a31454783af64f529f131bc&env=2
AN-X-Request-Uuid: 75881f34-687b-4b83-970b-586912e3ea3c
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
obs.cheqzone.com/mon
54.83.110.109200 OK 0 B IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1613
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.forextime.com
content-type: application/json
date: Sun, 29 Jan 2023 15:55:13 GMT
content-length: 0
X-Firefox-Spdy: h2
sdk.fra-01.braze.eu/api/v3/content_cards/sync
151.101.129.208201 Created 94 B URL HTTP/2 sdk.fra-01.braze.eu/api/v3/content_cards/sync
IP 151.101.129.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f9ae43bdc3692c0a8aee26ba764a434
3d4f5adbcca437f056ca454b5b4bf1e5cd3bb7ca
1734082de9ec9368cca82077e05a57f0a5cf4c10dccc44e506340bad73227c38
POST /api/v3/content_cards/sync HTTP/1.1
Host: sdk.fra-01.braze.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
X-Braze-Api-Key: 6fd4f390-31e4-4ddb-b049-e6a615bc5049
X-Braze-DataRequest: true
X-Braze-ContentCardsRequest: true
Content-Length: 475
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
etag: W/"f7e3992ac5eccc3e584cda7fa52e8456"
cache-control: max-age=0, private, must-revalidate
x-request-id: e153a362-26eb-48ff-b2db-ddc27418d305
x-runtime: 0.021171
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1663-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.605202,VS0,VE41
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4d2529e0c0c6f7146a3e0b4cf87c3c5b
8b270c03a3644bd040783f2d341c47c6e0fc0ddb
c1c0a900b85b2b671f52cb27ff581e1b60f8ecc87446580d2191f2b39b31ba00
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:55:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 15:38:21 GMT
Expires: Sat, 04 Feb 2023 15:38:20 GMT
Etag: "8b270c03a3644bd040783f2d341c47c6e0fc0ddb"
Cache-Control: max-age=602986,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 868
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791326a39c5cfab8-OSL
c.clarity.ms/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&MUID=2C4ABCD92BD1627C0EB8AE712A866370
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&MUID=2C4ABCD92BD1627C0EB8AE712A866370
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=E02AF6A19BE44F31B24DEEAB4ABF8614&MUID=2C4ABCD92BD1627C0EB8AE712A866370 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sun, 29-Jan-2023 16:05:13 GMT; path=/; SameSite=None; Secure;
date: Sun, 29 Jan 2023 15:55:13 GMT
content-length: 42
X-Firefox-Spdy: h2
use.fontawesome.com/7f85a56ba4.css
172.64.132.15200 OK 367 B URL HTTP/2 use.fontawesome.com/7f85a56ba4.css
IP 172.64.132.15:0
Hash 643208b6f1ed44d752cad1a39f3cb481
e590de89551535d03468110d3e62b660c9e01cdf
8e7b970a56b62fafdb58997d95d80c6a4042d5a6ecd8f9fee4e8e3968e289dc3
GET /7f85a56ba4.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:12 GMT
content-type: text/css
x-amz-id-2: Zsfkg1LG0dsTpAconQXPl6g4jbtswHSNTo/BYLIoDURwur1V1m8id2p1l1X55EdCMC0FXbnDGAY=
x-amz-request-id: T5W1NXHY5YT1ZBNQ
last-modified: Wed, 30 Jun 2021 21:14:33 GMT
etag: W/"8360eb270b919a1fb4776bc448d9ed14"
cache-control: max-age=1800
cf-cache-status: HIT
age: 3053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C7tJZuTtTNsyM3GDcsr7TYqaehgWne%2BJkJjlCmTSP7DrVl767juFNZz7tMsrQtquJF82iMfiGOZ5FK5YnYTPClcvvuOeYy8NYyjR06j%2BVi%2ByWusjXSj3%2FRu33FwqjrDcutjvXMri"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791326993ef43854-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 111845
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
date: Sun, 29 Jan 2023 15:55:14 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1497822/log/3/unip?en=pre_d_eng_tb&tos=1652&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=1500&msa=3057&rv=1&tim=1675007722167&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1497822/log/3/unip?en=pre_d_eng_tb&tos=1652&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=1500&msa=3057&rv=1&tim=1675007722167&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1497822/log/3/unip?en=pre_d_eng_tb&tos=1652&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=1500&msa=3057&rv=1&tim=1675007722167&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 29 Jan 2023 15:55:14 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
cookiesync.mparticle.com/v1/sync?esid=60203&MPID=-7424737205323017604&ID=0&Key=us1-9396d9c23a31454783af64f529f131bc&env=2
151.101.2.133204 No Content 0 B URL HTTP/2 cookiesync.mparticle.com/v1/sync?esid=60203&MPID=-7424737205323017604&ID=0&Key=us1-9396d9c23a31454783af64f529f131bc&env=2
IP 151.101.2.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/sync?esid=60203&MPID=-7424737205323017604&ID=0&Key=us1-9396d9c23a31454783af64f529f131bc&env=2 HTTP/1.1
Host: cookiesync.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Kestrel
x-origin-name: 6pOFtq5qpnIJ0Pt8WbH5c2--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1637-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.953686,VS0,VE367
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 20C835B212804A848C9807FC30B7EB9F Ref B: OSL30EDGE0415 Ref C: 2023-01-29T15:55:15Z
date: Sun, 29 Jan 2023 15:55:15 GMT
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
54.83.110.109200 OK 0 B IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1637
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.forextime.com
content-type: application/json
date: Sun, 29 Jan 2023 15:55:15 GMT
content-length: 0
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
54.83.110.109200 OK 0 B IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1632
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.forextime.com
content-type: application/json
date: Sun, 29 Jan 2023 15:55:15 GMT
content-length: 0
X-Firefox-Spdy: h2
i5rwkk4h.micpn.com/p/js/1.js
54.230.111.36200 OK 15 kB URL HTTP/2 i5rwkk4h.micpn.com/p/js/1.js
IP 54.230.111.36:0
Hash 07c916b8c8036059c4258b4bac5be7d7
3927cdf9574b6a7e1768c136953e3da4540af233
2566b96969e51e56aae8e29c5af2f0011231c4dece4e1310309f7c1e445ccd12
GET /p/js/1.js HTTP/1.1
Host: i5rwkk4h.micpn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
x-uuid: ba011cac-a442-462f-93f6-c635d82b337f
cache-control: no-cache max-age=0
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
p3p: policyref="https://movableink.com/w3c/p3p.xml", CP="DEVa PSAa PSDa IVAa IVDa OUR IND DSP NON COR NAV UNI"
timing-allow-origin: https://www.forextime.com
date: Sun, 29 Jan 2023 15:50:32 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bJWDnkL1zE6qTUeB6KNKBzkSbbDjGwbFWKGN4U4SnwYRYuwgsFuGDw==
age: 283
X-Firefox-Spdy: h2
cdn.shareaholic.net/assets/pub/shareaholic.js
151.139.128.10200 OK 4.3 kB URL HTTP/2 cdn.shareaholic.net/assets/pub/shareaholic.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (10540), with no line terminators
Hash e33511561808ca812c76b301b406d103
94e974603a6d772f66614045d19f0e3e18ccae6e
a61f812802a68805c57d74929ca078ac0ce1e6cec9685d5280a9f3d02d27050e
GET /assets/pub/shareaholic.js HTTP/1.1
Host: cdn.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:15 GMT
content-encoding: gzip
content-length: 4285
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 19 Dec 2022 20:20:18 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: ou2ReEd0RFDoPYruRxGcy3ocPadYjtSO+KyIjgBF9Cko1cKCf1k/pwcdThvq8BSwCfsRT4jwFAs=
x-amz-request-id: PAK7VNS8VVERBSSM
etag: "e33511561808ca812c76b301b406d103"
cache-control: max-age=1200, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1675007715.cds223.sk1.hn,1675007715.cds201.sk1.sc,1675007715.dop171.dc2.r,1675007715.cds211.dc2.c,1675007715.cds201.sk1.pr
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5152714&tm=gtm002&Ver=2&mid=6a6be9b0-e1b3-43f8-ac55-8f63f50d4782&sid=571031c09fed11eda12a57b5c07bb2e3&vid=57104a209fed11ed851dbb24b2ffa4e4&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Register%20with%20FXTM%20and%20trade%20Forex,%20Gold,%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&p=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account<=2423&evt=pageLoad&sv=1&rn=363679
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5152714&tm=gtm002&Ver=2&mid=6a6be9b0-e1b3-43f8-ac55-8f63f50d4782&sid=571031c09fed11eda12a57b5c07bb2e3&vid=57104a209fed11ed851dbb24b2ffa4e4&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Register%20with%20FXTM%20and%20trade%20Forex,%20Gold,%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&p=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account<=2423&evt=pageLoad&sv=1&rn=363679
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5152714&tm=gtm002&Ver=2&mid=6a6be9b0-e1b3-43f8-ac55-8f63f50d4782&sid=571031c09fed11eda12a57b5c07bb2e3&vid=57104a209fed11ed851dbb24b2ffa4e4&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Register%20with%20FXTM%20and%20trade%20Forex,%20Gold,%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&p=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account<=2423&evt=pageLoad&sv=1&rn=363679 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=04DBB17B158D6DBA22B6A3D314DA6CC0; domain=.bing.com; expires=Fri, 23-Feb-2024 15:55:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 90525F7DA8FD48B49795A67699E65D6F Ref B: OSL30EDGE0415 Ref C: 2023-01-29T15:55:15Z
date: Sun, 29 Jan 2023 15:55:15 GMT
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/up/pixie.js
151.101.1.108200 OK 3.3 kB URL HTTP/1.1 acdn.adnxs.com/dmp/up/pixie.js
IP 151.101.1.108:0
File type ASCII text, with very long lines (9139), with no line terminators
Hash 75b9af81e30e45403e6856566e888545
d013e9a47331447f32c2bdf6f35b286e711788f0
dd26e2e55783f6174ceea7c7a3b10e5af1c7fca56fc2543956a38b848f32a151
GET /dmp/up/pixie.js HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3340
Server: nginx/1.18.0 (Ubuntu)
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 15:04:00 GMT
ETag: W/"60b79de0-23b3"
Expires: Mon, 31 Oct 2022 05:58:51 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 15:55:15 GMT
Age: 49450
X-Served-By: cache-lga21930-LGA, cache-bma1639-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 9702
X-Timer: S1675007716.988220,VS0,VE0
Vary: Accept-Encoding
bat.bing.com/p/action/5152714.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5152714.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5152714.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 054BA84CFC184D648E2C6EC76B443238 Ref B: OSL30EDGE0415 Ref C: 2023-01-29T15:55:15Z
date: Sun, 29 Jan 2023 15:55:15 GMT
X-Firefox-Spdy: h2
m9m6e2w5.stackpathcdn.com/v2/bec87dbf/main.js
151.139.128.10200 OK 42 kB URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/bec87dbf/main.js
IP 151.139.128.10:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash bfbe20460e43896d158d4b21e5c02ca8
12ec31148e52a5a0861d63e98344f45bba7523dc
bc9563b66fafb04f290b402270af0cf8ac5349619ccdf556103024652198f87a
GET /v2/bec87dbf/main.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:16 GMT
content-encoding: gzip
content-length: 41854
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 19 Dec 2022 20:19:59 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: UfjmZKB7E9YUrY0vXGV2Q4QFmkUFf7Rkudm6LThhwpl7+eRxcirLt8dDB2kADGk4IpJE000Z+08=
x-amz-request-id: PAKD9GVGPTREG1NW
etag: "bfbe20460e43896d158d4b21e5c02ca8"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1675007716.cds208.sk1.hn,1675007716.cds230.sk1.c
X-Firefox-Spdy: h2
ib.adnxs.com/pixie?e=PageView&pi=c25fd88d-1ad7-4656-a57b-e121e35243ad&it=1675007723970&v=0.0.20&u=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&st=1675007723970&et=1675007723970&if=0
185.89.211.132200 OK 42 B URL HTTP/1.1 ib.adnxs.com/pixie?e=PageView&pi=c25fd88d-1ad7-4656-a57b-e121e35243ad&it=1675007723970&v=0.0.20&u=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&st=1675007723970&et=1675007723970&if=0
IP 185.89.211.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=c25fd88d-1ad7-4656-a57b-e121e35243ad&it=1675007723970&v=0.0.20&u=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&r=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&st=1675007723970&et=1675007723970&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 15:55:16 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
s.yimg.com/wi/config/10097064.json
188.125.94.206200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10097064.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2818f7c1d0a6c6df2bab1d3d6344fd8a
a33691eb219b8913737e56120be7e29101ff63e1
81a55d12e0229dbfaad3014d29723654a7f35079d81b89757ed29859f980c9a3
GET /wi/config/10097064.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TwcmEetlirSCIfQOdTYAbxaJK0CYB4OpwRaCBWJm4MhpSMw6THOzd37Df0auR+xPo9l0bTZCZUg=
x-amz-request-id: SQW272J4JK62WAM1
date: Sun, 29 Jan 2023 15:07:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Wed, 25 May 2022 20:57:37 GMT
x-amz-expiration: expiry-date="Fri, 30 Jun 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "2818f7c1d0a6c6df2bab1d3d6344fd8a"
x-amz-server-side-encryption: AES256
x-amz-version-id: KQKpbIpBo_BF8DsjNEnFDLJ8ZF_P6J47
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 2890
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.yimg.com/wi/config/10133581.json
188.125.94.206200 OK 2 B URL HTTP/2 s.yimg.com/wi/config/10133581.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10133581.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: HPJARXBS8PF04EZ0
x-amz-id-2: wQPicbvKiz0kNXHp4nYMrqmsCI6+jh5okAFlXhYcvKarUzZTl3slqLGFwLdQ42iiSJAcvAsNFxs=
content-type: application/json
date: Sun, 29 Jan 2023 15:22:29 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1967
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 492ff8489b691cb1bce800a56ecbe286
902a7abe425c040dd753f48068705e5c229e9e14
956b0cf0adede8be0b985b610751076a78f1057651a2b9f23fff4ad7d0702dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "956B0CF0ADEDE8BE0B985B610751076A78F1057651A2B9F23FFF4AD7D0702DAC"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14936
Expires: Sun, 29 Jan 2023 20:04:12 GMT
Date: Sun, 29 Jan 2023 15:55:16 GMT
Connection: keep-alive
sp.analytics.yahoo.com/sp.pl?a=10000&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10097064&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10097064&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10097064&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:16 GMT
expires: Sun, 29 Jan 2023 15:55:16 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBOSW1mMCEIcaz7GGHR6EQJmqJ5ymbc8FEgEBAQHo12PgYwAAAAAA_eMAAA&S=AQAAAvRDhtDDqk0DDCM99OjI8yU; Expires=Mon, 29 Jan 2024 21:55:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2015%3A55%3A24%20GMT&n=0&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10133581&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2015%3A55%3A24%20GMT&n=0&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10133581&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Sun%2C%2029%20Jan%202023%2015%3A55%3A24%20GMT&n=0&b=Register%20with%20FXTM%20and%20trade%20Forex%2C%20Gold%2C%20Oil%20%26%20CFDs%20%7C%20FXTM%20EU&.yp=10133581&f=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&e=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:16 GMT
expires: Sun, 29 Jan 2023 15:55:16 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBOSW1mMCEKkRcmEXzj7hS1gc-bvbZKIFEgEBAQHo12PgYwAAAAAA_eMAAA&S=AQAAAryWe6ZUIEBDPrqGEKq0j48; Expires=Mon, 29 Jan 2024 21:55:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
www.shareaholic.net/config/7bb553f715a185b64e387629db153b8a.json
54.197.98.98200 OK 831 B URL HTTP/2 www.shareaholic.net/config/7bb553f715a185b64e387629db153b8a.json
IP 54.197.98.98:0
File type JSON data\012- , ASCII text, with very long lines (2287), with no line terminators
Hash e94f2b40db6152553cc9f5726cfb48db
608b296295f32b083c228cf6f46e1036fce9a329
5e10e1b4a74db23863ddb0a359b37987c510a4611b7fc3850339a205552def9e
GET /config/7bb553f715a185b64e387629db153b8a.json HTTP/1.1
Host: www.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 07:20:19 GMT
etag: W/"98f36442d7b084f203822a30b3660b6f"
vary: Accept-Encoding
content-encoding: gzip
content-type: application/json
cache-control: max-age=3, public, must-revalidate
x-varnish: 561710035 554615774
via: 1.1 varnish (Varnish/6.0)
access-control-allow-methods: GET, HEAD
access-control-allow-headers: *
access-control-allow-origin: *
access-control-expose-headers: Etag, Access-Control-Allow-Origin, x-client-geo-latlong, x-client-geo-country, x-client-geo-city, x-client-geo-zip, x-client-geo-region, x-client-geo-metrocode
access-control-max-age: 2000
x-client-geo-latlong: 59.945200,10.755900
x-client-geo-country: NO,Norway
x-client-geo-city:
x-client-geo-region:
x-client-geo-metrocode:
x-client-geo-zip:
accept-ranges: bytes
content-length: 831
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9ace895d3f0898b29ce4a91ed65cad72
02436d2208b821c4702ad080c52bea7f386fb037
89c3591b9f47e18488280ff5ab0ad14f867aa440b5afa256f82b8673e66e8e01
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C3591B9F47E18488280FF5AB0AD14F867AA440B5AFA256F82B8673E66E8E01"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2578
Expires: Sun, 29 Jan 2023 16:38:14 GMT
Date: Sun, 29 Jan 2023 15:55:16 GMT
Connection: keep-alive
partner.shareaholic.com/partners.js?location=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cl=en&id_sync=f16d8bd3-3d34-40ba-86e4-05e2ff4d5150&pvs=1&site=7bb553f715a185b64e387629db153b8a
107.20.140.231200 OK 0 B URL HTTP/2 partner.shareaholic.com/partners.js?location=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cl=en&id_sync=f16d8bd3-3d34-40ba-86e4-05e2ff4d5150&pvs=1&site=7bb553f715a185b64e387629db153b8a
IP 107.20.140.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partners.js?location=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account&referrer=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cl=en&id_sync=f16d8bd3-3d34-40ba-86e4-05e2ff4d5150&pvs=1&site=7bb553f715a185b64e387629db153b8a HTTP/1.1
Host: partner.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:16 GMT
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding, User-Agent
content-length: 0
p3p: CP='OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC'
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e2f4f95b80f0c2fc5b2ca67d4f8f8c2e
997063b7c35a518ceb3ac7c5239bb486bfbed455
8ba0cac5458b3f1b794b01645faf4c21f218ab45807d144a4c904cd80fd85f2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167988
Date: Sun, 29 Jan 2023 15:55:16 GMT
Etag: "63d66f55-1d7"
Expires: Tue, 31 Jan 2023 14:35:04 GMT
Last-Modified: Sun, 29 Jan 2023 13:06:29 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0nUbyVtlSP9psV4-lRE83RDqsrJVabP52Z7ewrEVaK4kh944VQJ5YQ==
Age: 5315
analytics.shareaholic.com/e
34.206.246.212200 OK 43 B URL HTTP/2 analytics.shareaholic.com/e
IP 34.206.246.212:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
POST /e HTTP/1.1
Host: analytics.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 239
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:17 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.forextime.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC"
expires: Thu, 01 Jan 1970 00:00:00 GMT
referer-policy: unsafe-url
content-security-policy: referrer always
X-Firefox-Spdy: h2
trc-events.taboola.com/1497822/log/3/unip?en=pre_d_eng_tb&tos=4654&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=3000&msa=3057&rv=1&tim=1675007725169&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1497822/log/3/unip?en=pre_d_eng_tb&tos=4654&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=3000&msa=3057&rv=1&tim=1675007725169&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1497822/log/3/unip?en=pre_d_eng_tb&tos=4654&scd=0&ssd=1&est=1675007720513&ver=36&isls=true&src=i&invt=3000&msa=3057&rv=1&tim=1675007725169&vi=1675007720510&ri=e222cb28556b73bfb8a6b9d46c129d61&ref=https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 29 Jan 2023 15:55:17 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3248
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
date: Sun, 29 Jan 2023 15:55:17 GMT
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
54.83.110.109200 OK 0 B IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1632
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.forextime.com
content-type: application/json
date: Sun, 29 Jan 2023 15:55:17 GMT
content-length: 0
X-Firefox-Spdy: h2
jssdks.mparticle.com/v3/JS/us1-9396d9c23a31454783af64f529f131bc/events
151.101.194.133202 Accepted 590 B URL HTTP/2 jssdks.mparticle.com/v3/JS/us1-9396d9c23a31454783af64f529f131bc/events
IP 151.101.194.133:0
File type JSON data\012- , ASCII text, with very long lines (586)
Hash d114e80d32d034a6660af58649fcf721
bd54be9009ef6c748b499acc9b78f22b1ae9bb29
a2b3be93d66643c43a50a86534abdfb5b435d8b8096aee9cd8c0f7e462d3edcf
POST /v3/JS/us1-9396d9c23a31454783af64f529f131bc/events HTTP/1.1
Host: jssdks.mparticle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain;charset=UTF-8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forextime.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.forextime.com
Content-Length: 1861
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
content-type: application/json
server: Kestrel
access-control-allow-origin: *
content-encoding: gzip
x-origin-name: 7arPuRjnqGEhiMyprEtnLk--F_us1_origin
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007718.412091,VS0,VE23
vary: Accept-Encoding
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/wdceu/141328/onsite/generic1674551057955.js
151.101.1.230200 OK 83 kB URL HTTP/2 resources.digital-cloud.medallia.eu/wdceu/141328/onsite/generic1674551057955.js
IP 151.101.1.230:0
File type Unicode text, UTF-8 text, with very long lines (20668)
Hash aa78bb4aa9c733b986836b2c6d71452a
01f66f907ef117379b5a52b7604d030dd59cc803
ad6c8febb49f9bc9ca9ba771033daf006fca5e3fe71ecda29fd1540471627514
GET /wdceu/141328/onsite/generic1674551057955.js HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 74S7Cr77rlqPLXuC4yJlD7b2z6aDyrpZ5WYdHuXdrh2UHoRapQFFeKwL70VMB+RUDk+1QSXQYF0=
x-amz-request-id: JANHA0BP5M3HKN5Y
last-modified: Tue, 24 Jan 2023 09:04:19 GMT
etag: "e74e3c956c10a9048c1c80ae45467fe0"
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 392299
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675007719.575794,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 82954
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite
151.101.1.230200 OK 519 B URL HTTP/2 resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite
IP 151.101.1.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 25330fbb189537140f6fc85590bf8f14
3f4612cbfb10ebfdca3aba1d0e3f42b8e921de96
f9e850f36529dab680e508ad734dc7a93e8ff4b2c4d0be94a65f600942a90c3b
GET /wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: nwl9+5q6FHunuAYsFsF8JDm7g1jthJrH7jQzcCitwSq6RfgmptDbvpMk2VCDfP5kECz6hTWQE/w=
x-amz-request-id: 4R9GYPDP5XW6HM2H
last-modified: Mon, 22 Aug 2022 06:02:40 GMT
etag: "9d3166d76464b0c9fdc16ceb4bdf31c8"
content-type: text/html
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 533245
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675007719.693062,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 519
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitationData1661148159108_en.json
151.101.1.230200 OK 885 B URL HTTP/2 resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitationData1661148159108_en.json
IP 151.101.1.230:0
File type JSON data\012- , ASCII text, with very long lines (2989), with no line terminators
Hash 97faa6e6f4717ca3a431bdeaf51d902e
e93dcf7070e3d40aff40d76b9421c3ca7fa20524
b4c1c18fd596f158ce2796390d56a9085460bd937f13540776dd395ece729742
GET /wdceu/141328/forms/7416/invitationData1661148159108_en.json HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xOLI+otgUFD4Z2nqGRpnEMBVbsp5OCZg8HW4IgFg9zT/sPtCbpf7t0yBBBSqhPLQ2arlfdMi/FQ=
x-amz-request-id: 4R9XMV8CXG24RTA6
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 06:02:40 GMT
etag: "24918723cd2a87a5d535055b1a2fc990"
content-type: application/json
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 533245
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675007719.693949,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 885
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/resources/form/FormBuilder/vendor/fonts-googleapis/css/open-sans-v14.css
151.101.1.230200 OK 474 B URL HTTP/2 resources.digital-cloud.medallia.eu/resources/form/FormBuilder/vendor/fonts-googleapis/css/open-sans-v14.css
IP 151.101.1.230:0
Hash e4809706be39cbb8606d9d80a9628b13
a0f711018f7bbd2d047f61b21d2dc27493c213bc
e09f03079e31e2229ac271e126166a8b2598d14a36ccb16db7dce8b0e14cd799
GET /resources/form/FormBuilder/vendor/fonts-googleapis/css/open-sans-v14.css HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: wmLKoAb1FtWoix0NjViB5Vj133glpHFmn/PPqjxX5nS6JTRdsL816nEwjlKfpiBnMZYydcrpPXI=
x-amz-request-id: 3KFPC4D6H2DSW31R
last-modified: Mon, 23 Jan 2023 10:37:56 GMT
etag: "b83b0d5cdb07a65903182f93e298266b"
content-type: text/css
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 536740
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 11
x-timer: S1675007719.782619,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 474
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/resources/dist/assets/js/invite-react-app-177107031f.js
151.101.1.230200 OK 40 kB URL HTTP/2 resources.digital-cloud.medallia.eu/resources/dist/assets/js/invite-react-app-177107031f.js
IP 151.101.1.230:0
File type ASCII text, with very long lines (22375)
Hash d4981406a6f3c59f5bc59f722c8671aa
4232628b5526cc824eab6aea0f55a10d10604bf9
c13f4560e5fa62a03364da283cdc28cf5efe1434a41819dab0e9ec10a99fe7b4
GET /resources/dist/assets/js/invite-react-app-177107031f.js HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: x2Ad4SE75zmNoWzWZl26pnOQ4oecCWhLeXclRAZo8FclmhoKWtFAZDfufNlBkonhpxYfPjmTpuI=
x-amz-request-id: 4R9X4QTR2X5XT0MQ
last-modified: Sun, 04 Sep 2022 05:25:23 GMT
etag: "177107031f34671f0c0676eb4316f52c"
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 533245
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 439
x-timer: S1675007719.783113,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 40442
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
54.83.110.109200 OK 0 B IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1653
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Cookie: cg_uuid=12c4c4cd23cf124b33afbca002a03279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.forextime.com
content-type: application/json
date: Sun, 29 Jan 2023 15:55:18 GMT
content-length: 0
X-Firefox-Spdy: h2
resources.digital-cloud.medallia.eu/wdceu/141328/onsite/domains-configuration.json
151.101.1.230200 OK 52 B URL HTTP/2 resources.digital-cloud.medallia.eu/wdceu/141328/onsite/domains-configuration.json
IP 151.101.1.230:0
File type JSON data\012- , ASCII text
Hash 8336b42577355c42714c0394fce0e6ba
90ab2bf6f9101ca11da10bb1eb1b920e96e557c0
fc2c03f47f5220e594e1668b0bb6e7b4f4279b7f10c628bede338c19763ff00d
GET /wdceu/141328/onsite/domains-configuration.json HTTP/1.1
Host: resources.digital-cloud.medallia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.digital-cloud.medallia.eu/wdceu/141328/forms/7416/invitation1661148159077.html?formId=7416&domainsListRelativePath=..|..|..|..|wdceu/141328/onsite
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 24D2bobywykRJJUw6KpGO4FSEloA0Pn6Bi1FjW6OzWojEWLtht6JwqG05o72TLIFqpIOzyMjOlc=
x-amz-request-id: C3QTWH9ZRJQFPCVW
last-modified: Mon, 22 Aug 2022 05:58:04 GMT
etag: "d1519ab3841084eaa9bc2a71b1459ac4"
content-type: application/json
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:18 GMT
via: 1.1 varnish
age: 534903
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675007719.868056,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 52
X-Firefox-Spdy: h2
ocsps.ssl.com/
52.6.97.148200 OK 1.8 kB IP 52.6.97.148:0
Hash 29ae0975d49a69f621dbc26c945ab250
bd26371439f8e4ed314e9ee65b708fa232dafad1
9264ddc1ce7f890f2ea5dc11b528bfa69f16242b0f7ae48898537798e2f8ef0a
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 15:55:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sun, 05 Feb 2023 15:31:59 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "bd26371439f8e4ed314e9ee65b708fa232dafad1"
Last-Modified: Sun, 29 Jan 2023 15:32:00 GMT
X-Proxy-Cache: HIT
ocsps.ssl.com/
52.6.97.148200 OK 1.8 kB IP 52.6.97.148:0
Hash 592bd92e9bd77128232f0e2dec5ad79d
f1c0e55f12aa81eb2be78b41e1c8581a4445384f
c9564549c3fd59bd80148024198b0dcb57ffc73262a6b0207c8f2f96e22091b1
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 15:55:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sun, 05 Feb 2023 15:26:17 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "f1c0e55f12aa81eb2be78b41e1c8581a4445384f"
Last-Modified: Sun, 29 Jan 2023 15:26:18 GMT
X-Proxy-Cache: HIT
udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInJlZmVycmluZ191cmwiOiAiaHR0cHM6Ly93d3cuZm9yZXh0aW1lLmNvbS9yZWdpc3Rlci9vcGVuLWFjY291bnQiLCJyZWZlcnJpbmdfZG9tYWluIjogInd3dy5mb3JleHRpbWUuY29tIiwicGFnZV90aXRsZSI6ICJSZWdpc3RlciB3aXRoIEZYVE0gYW5kIHRyYWRlIEZvcmV4LCBHb2xkLCBPaWwgJiBDRkRzIHwgRlhUTSBFVSIsInBhZ2VfdXJsIjogImh0dHBzOi8vd3d3LmZvcmV4dGltZS5jb20vZXUvcmVnaXN0ZXIvb3Blbi1hY2NvdW50IiwidHJhY2tlcl90eXBlIjogImphdmFzY3JpcHQiLCJ0cmFja2VyX3ZlcnNpb24iOiAiMi4yLjIzIiwiZXZlbnRfbmFtZSI6ICJuZWJ1bGFfcGFnZV92aWV3IiwiZXZlbnRfdGltZXN0YW1wX2Vwb2NoIjogIjE2NzUwMDc3MjY2MjMiLCJldmVudF90aW1lem9uZV9vZmZzZXQiOiAwLCJ1c2VyX2lkIjogIjE4NWZlM2Q5NDE1NjItMGExMDY5YzRhMzk5YTg4LWM1MDU0MjUtMTQwMDAwLTE4NWZlM2Q5NDE2M2VmIiwiZW52aXJvbWVudCI6ICJkaWdpdGFsLWNsb3VkLWV1IiwiYWNjb3VudElkIjogMTQxMzI2LCJ1cmwiOiAiaHR0cHM6Ly93d3cuZm9yZXh0aW1lLmNvbS9ldS9yZWdpc3Rlci9vcGVuLWFjY291bnQiLCJ3ZWJzaXRlSWQiOiAxNDEzMjgsImZvcm1JZCI6IG51bGwsImZvcm1UcmlnZ2VyVHlwZSI6IG51bGwsImthbXB5bGVfZGF0YSI6IHsibWRfaXNTdXJ2ZXlTdWJtaXR0ZWRJblNlc3Npb24iOiAiIiwiTEFTVF9JTlZJVEFUSU9OX1ZJRVciOiAiIiwiREVDTElORURfREFURSI6ICIiLCJrYW1weWxlSW52aXRlUHJlc2VudGVkIjogIiIsImthbXB5bGVfdXNlcmlkIjogIjU0MDctNzc0OC1hYmU2LWFlNTYtY2M0Zi0xNzgxLWZmMmUtODE4MSIsImthbXB5bGVVc2VyU2Vzc2lvbiI6ICIxNjc1MDA3NzI2NjIxIiwia2FtcHlsZVVzZXJQZXJjZW50aWxlIjogIiIsIlNVQk1JVFRFRF9EQVRFIjogIiJ9LCJjb29raWVfc2l6ZSI6IDE5ODcsImthbXB5bGVfdmVyc2lvbiI6ICIyLjQ5LjAiLCJvbnNpdGVfdmVyc2lvbiI6ICIyLjQ5LjAiLCJoaXN0b3J5X2xlbmd0aCI6IDEsImV2ZW50X2xvY2FsX3RpbWVzdGFtcCI6IDE2NzUwMDc3MjY2MjMsInBvc2l0aW9uIjogbnVsbCwiaXNVc2VySWRlbnRpZmllZCI6IGZhbHNlfQpdfQ==
35.241.45.82200 OK 0 B URL HTTP/2 udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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
IP 35.241.45.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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 HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:18 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-pkz9
x-application-context: application:9090
content-type: image/gif; charset=UTF-8
content-length: 0
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
35.241.45.82200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP 35.241.45.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2165
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:19 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.forextime.com
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-5xv6
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/4439274/domain/forextime.com/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/4439274/domain/forextime.com/token
IP 54.230.111.8:0
GET /partner/4439274/domain/forextime.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forextime.com
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sun, 29 Jan 2023 15:31:37 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: erCvkULMS-GWDquqPgRKoVgWtnkTE77LFlJw-VlcSgIYPxSwGJcHFA==
age: 1415
X-Firefox-Spdy: h2
www.forextime.com/themes/custom/fxi_theme/dist/assets/icons/global-icons/circle-x.svg
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/themes/custom/fxi_theme/dist/assets/icons/global-icons/circle-x.svg
IP 104.17.161.73:0
GET /themes/custom/fxi_theme/dist/assets/icons/global-icons/circle-x.svg HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: image/svg+xml
last-modified: Thu, 26 Jan 2023 08:38:25 GMT
vary: Accept-Encoding
etag: W/"63d23c01-196"
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 4584
expires: Sun, 29 Jan 2023 16:55:10 GMT
cache-control: public, max-age=3600
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb2cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/js/js_ue5Mm8uao5hCAUWVaGOAQMLNMo6K83ivOmwdIvm8-Tg.js
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/sites/global/files/js/js_ue5Mm8uao5hCAUWVaGOAQMLNMo6K83ivOmwdIvm8-Tg.js
IP 104.17.161.73:0
GET /sites/global/files/js/js_ue5Mm8uao5hCAUWVaGOAQMLNMo6K83ivOmwdIvm8-Tg.js HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 07:30:20 GMT
vary: Accept-Encoding
etag: W/"63cf890c-3f55"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb3fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/themes/custom/fxi_theme/dist/assets/js/register.bundle.js?v=1.x
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/themes/custom/fxi_theme/dist/assets/js/register.bundle.js?v=1.x
IP 104.17.161.73:0
GET /themes/custom/fxi_theme/dist/assets/js/register.bundle.js?v=1.x HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 08:38:24 GMT
vary: Accept-Encoding
etag: W/"63d23c00-103ef"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 16480
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb3db518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/themes/custom/fxi_theme/dist/assets/icons/global-icons/search.svg
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/themes/custom/fxi_theme/dist/assets/icons/global-icons/search.svg
IP 104.17.161.73:0
GET /themes/custom/fxi_theme/dist/assets/icons/global-icons/search.svg HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: image/svg+xml
last-modified: Thu, 26 Jan 2023 08:38:25 GMT
vary: Accept-Encoding
etag: W/"63d23c01-2f7"
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
expires: Sun, 29 Jan 2023 16:55:10 GMT
cache-control: public, max-age=3600
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690eb1fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/css/css_MP6tCQSmCu7O3kv-TpzmaeQU3inBr9gPmdtJEkAs_V0.css
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/sites/global/files/css/css_MP6tCQSmCu7O3kv-TpzmaeQU3inBr9gPmdtJEkAs_V0.css
IP 104.17.161.73:0
GET /sites/global/files/css/css_MP6tCQSmCu7O3kv-TpzmaeQU3inBr9gPmdtJEkAs_V0.css HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: text/css
last-modified: Tue, 17 Jan 2023 10:02:35 GMT
vary: Accept-Encoding
etag: W/"63c6723b-1f27"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690eb15b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/css/css_299Lf0M55YgtKEHQWc_4wEvercmuxgtJJLWZ45ZspUs.css
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/sites/global/files/css/css_299Lf0M55YgtKEHQWc_4wEvercmuxgtJJLWZ45ZspUs.css
IP 104.17.161.73:0
GET /sites/global/files/css/css_299Lf0M55YgtKEHQWc_4wEvercmuxgtJJLWZ45ZspUs.css HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 13:31:35 GMT
vary: Accept-Encoding
etag: W/"63c15d37-34750"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 16480
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690eb18b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css
IP 172.64.132.15:0
GET /releases/v4.7.0/css/font-awesome-css.min.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.fontawesome.com/7f85a56ba4.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:12 GMT
content-type: text/css
x-amz-id-2: YGAIlEZpQBjm3fE0LvQNboDKhML/FzebhJ1cumigsSrBWTYLtcDfsfN6lCmcMDSNqfbAR6hTz3c=
x-amz-request-id: F0PJX42H64DVEGVG
last-modified: Wed, 30 Jun 2021 15:26:48 GMT
etag: W/"36082410df2ef7f83932219089dc1443"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 182604
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6FaKt%2BtXoItvtdIyqqa6CY1Nbc0nybRmVgdALcCiUZEihFTK1%2Bht5pynV3pjw0%2BNwcluNczpbwPXzECwK04ewyFTQS5MFHXsLG21nDHRwGkFyGgsPDcSatHvXUqbhWMEhbYAQ3AA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791326997f733854-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sdk.fra-01.braze.eu/api/v3/content_cards/sync
151.101.129.208200 OK 0 B URL HTTP/2 sdk.fra-01.braze.eu/api/v3/content_cards/sync
IP 151.101.129.208:0
OPTIONS /api/v3/content_cards/sync HTTP/1.1
Host: sdk.fra-01.braze.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-braze-api-key,x-braze-contentcardsrequest,x-braze-datarequest,x-requested-with
Referer: https://www.forextime.com/
Origin: https://www.forextime.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-braze-api-key,x-braze-contentcardsrequest,x-braze-datarequest,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1663-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007714.568977,VS0,VE20
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/js/js_8-wQVTAocl9MpGf77vUcuwV3tjwhOdhGC0_o2mLjaJM.js
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/sites/global/files/js/js_8-wQVTAocl9MpGf77vUcuwV3tjwhOdhGC0_o2mLjaJM.js
IP 104.17.161.73:0
GET /sites/global/files/js/js_8-wQVTAocl9MpGf77vUcuwV3tjwhOdhGC0_o2mLjaJM.js HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 10:02:35 GMT
vary: Accept-Encoding
etag: W/"63c6723b-1da7"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb30b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/modules/contrib/fxi_global/js/fxtm-mparticle.js?v=1.x
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/modules/contrib/fxi_global/js/fxtm-mparticle.js?v=1.x
IP 104.17.161.73:0
GET /modules/contrib/fxi_global/js/fxtm-mparticle.js?v=1.x HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 09:07:23 GMT
vary: Accept-Encoding
etag: W/"63d242cb-cfe"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690fb32b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
188.125.94.206200 OK 0 B IP 188.125.94.206:0
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: W6kvdulq8zNbAwTZjaYnMVHktWVubM/07JsaZuzCk9WRw5YTWVo2yLhy6686LtdEvmyxd67GWVQ=
x-amz-request-id: 1CR0BJQS9MP1HVYN
date: Sun, 29 Jan 2023 15:28:00 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1636
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0gW3VYwAAAABr+MpdSwlST73dcu6iGuA0RlJBMjMxMDUwNDE3MDE3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 04JbWYwAAAADEj8Wv/5oLTI3scoCkIQkYQ1BIMzBFREdFMDQyMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 29 Jan 2023 15:55:11 GMT
X-Firefox-Spdy: h2
trc.taboola.com/1497822/trc/3/json?tim=1675007720517&data=%7B%22id%22%3A870%2C%22ii%22%3A%22%2Feu%2Fregister%2Fopen-account%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675007720510%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22e%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dexinitylimited-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675007720515%2C%22ref%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/1497822/trc/3/json?tim=1675007720517&data=%7B%22id%22%3A870%2C%22ii%22%3A%22%2Feu%2Fregister%2Fopen-account%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675007720510%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22e%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dexinitylimited-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675007720515%2C%22ref%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
GET /1497822/trc/3/json?tim=1675007720517&data=%7B%22id%22%3A870%2C%22ii%22%3A%22%2Feu%2Fregister%2Fopen-account%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675007720510%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22e%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dexinitylimited-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675007720515%2C%22ref%22%3A%22https%3A%2F%2Fwww.forextime.com%2Fregister%2Fopen-account%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.forextime.com%2Feu%2Fregister%2Fopen-account%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:55:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675007713.646876,VS0,VE101
vary: Accept-Encoding
x-vcl-time-ms: 101
X-Firefox-Spdy: h2
www.forextime.com/register/open-account
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/register/open-account
IP 104.17.161.73:0
GET /register/open-account HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
cache-control: public, max-age=3600
x-drupal-dynamic-cache: HIT
x-ua-compatible: IE=edge
content-language: en
x-content-type-options: nosniff
expires: Sun, 29 Jan 2023 16:55:10 GMT
last-modified: Sun, 29 Jan 2023 11:46:26 GMT
x-generator: Drupal 9 (https://www.drupal.org)
reporting-endpoints: csp="https://www.forextime.com/system/reporting/csp", csp_reportonly="https://www.forextime.com/system/reporting/csp_reportonly", default="https://www.forextime.com/system/reporting/default"
x-drupal-cache: HIT
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 791326901a34b518-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.forextime.com/sites/global/files/js/js_FxkXdw-2asu7zg1bMvSrWk7pHE87OkBle7smc8vMuSc.js
104.17.161.73200 OK 0 B URL HTTP/2 www.forextime.com/sites/global/files/js/js_FxkXdw-2asu7zg1bMvSrWk7pHE87OkBle7smc8vMuSc.js
IP 104.17.161.73:0
GET /sites/global/files/js/js_FxkXdw-2asu7zg1bMvSrWk7pHE87OkBle7smc8vMuSc.js HTTP/1.1
Host: www.forextime.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forextime.com/register/open-account
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:55:10 GMT
content-type: application/javascript
last-modified: Mon, 02 Jan 2023 08:01:04 GMT
vary: Accept-Encoding
etag: W/"63b28f40-1e8c"
expires: Wed, 26 Jan 2033 15:55:10 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
access-control-allow-origin: https://www.forextime.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
cf-cache-status: HIT
age: 195673
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 79132690eb1cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2