Report - www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google

Report Overview

Submitted URL
www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette
IP
104.168.147.90
ASN
#54290 HOSTWINDS
Submitted
2022-09-21 15:16:34
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
platform.twitter.com	597	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	169 kB	93.184.220.66
ssbsync.smartadserver.com	1290	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	73 B	185.86.137.108
prebid-server.rubiconproject.com	1075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	448 B	519 B	3.65.16.214
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	746 B	216.58.211.10
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
syndication.twitter.com	833	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	1.7 kB	104.244.42.8
c.amazon-adsystem.com	300	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	667 B	143.204.46.73
ads.pubmatic.com	469	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	12 kB	23.38.200.201
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	143.204.42.165
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	59 kB	34.120.237.76
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	444 B	1.7 kB	151.101.85.229
eus.rubiconproject.com	556	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	882 B	10 kB	104.88.9.101
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	593 B	499 B	157.240.200.35
secure.adnxs.com	396	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	506 B	1.0 kB	37.252.173.22
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	59 kB	142.250.74.2
video.primis.tech	6377	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	76 kB	185.167.97.84
pixel.rubiconproject.com	314	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	237 B	213.19.162.80
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	7.4 kB	93.184.220.29
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	6.9 kB	192.124.249.41
sync.search.spotxchange.com	523	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.4 kB	185.94.180.125
ap.lijit.com	666	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	528 B	275 B	72.251.249.13
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.20.226
adx.adform.net	4501	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	463 B	601 B	37.157.4.24
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	18 kB	142.250.74.163
live.primis.tech	3001	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	550 kB	194.146.38.23
ssl.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	5.3 kB	142.250.74.99
ssum-sec.casalemedia.com	509	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	2.0 kB	104.18.18.126
cs.media.net	1838	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	708 B	941 B	23.38.200.22
ads.stickyadstv.com	701	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	2.0 kB	23.36.77.41
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
www.heidoc.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	289 kB	104.168.147.90
status.geotrust.com	3662	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	993 B	2.2 kB	93.184.220.29
ups.analytics.yahoo.com	287	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	786 B	991 B	3.126.56.137
eb2.3lift.com	402	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	637 B	206 B	76.223.111.18
mb9eo.publishers.tremorhub.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.1 kB	52.44.73.49
hbopenbid.pubmatic.com	455	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	453 B	225 B	185.64.190.77
cdn.syndication.twimg.com	1363	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	1.1 kB	192.229.233.50
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.88.220.109
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	2.7 kB	157.240.200.14
cmp.uniconsent.com	22479	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	817 B	172.64.141.6
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	657 B	743 B	216.58.207.237
x.bidswitch.net	286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	218 B	52.29.193.101
cs.admanmedia.com	2357	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	706 B	865 B	80.77.87.162
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	21 kB	142.250.74.174
u.openx.net	706	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	630 B	460 B	34.98.64.218

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (60)

	URL	Size	First Seen	Last Seen
	www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d	29 kB	2023-03-07	2024-04-15
Pretty URL www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-15 19:31:38 Times Seen1839 Hash a125594de09167bd2e9015d790029a64 b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692 b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2 Loading...

	www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d	2.1 kB	2023-03-07	2024-04-09
Pretty URL www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:37:36 Last Seen2024-04-09 17:02:51 Times Seen97 Hash 2527a612185a282ca5f11d1f140a8840 9ba9ea30eb662b74c23d56e770e5137452e4e9af 7b26c692500dd71cbd9b8d7e801152aa89394511bbe0e191f79aedef0951564b Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	28 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash 92f127c994d6eb52eb356b3a6f2e828a 90da65b187fe770ea5a87114915c6ee7715824a1 fa2fab97ed60be003ca7f6174c82602112120d13ed0a15c37729302987af2187 Loading...

	www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d	10 kB	2023-03-07	2024-04-19
Pretty URL www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 17:56:33 Times Seen37101 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	cmp.uniconsent.com/v2/8d3a096937/cmp.js	2.5 kB	2023-03-07	2023-03-07
Pretty URL cmp.uniconsent.com/v2/8d3a096937/cmp.js IP 172.64.141.6 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash ebf4c9e816d425037b92642eb9155dca e58fdb143def10f1753f9277bd1123e614234058 5f32881d2dfd8ee819ddf561c6ae9cc4fa9234224ca7ff4211d0bf665890fc51 Loading...

	cmp.uniconsent.com/v2/main.min.js	127 kB	2023-03-07	2023-03-07
Pretty URL cmp.uniconsent.com/v2/main.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:10 Last Seen2023-03-07 22:37:26 Times Seen1 Hash cc60d36a591e3f0181adc5b1cbf17fdb 939f9f2c69123d6bc4bd18dd1f6b6556fc1d285a bbeff590700782181d808a1d71764cba258112f17912edd3f4c52cf4e6511a25 Loading...

	www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed_v0.js	258 kB	2023-03-07	2024-04-06
Pretty URL www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed_v0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-06 16:29:38 Times Seen1930 Hash 327ffcc050307627c7de1c5573e54913 961deba0aa58564d08c2457438d9375770fe61de 35196923692f06f97491caf22422cce4b612d5ef07c51842ca94a088b15456e2 Loading...

	platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js	7.0 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 12:46:10 Times Seen1 Hash 3b5d132d3d3780b86a6d19d169faef45 6543b4f0ddd39a75c3745decde81552f48d6d06a 98b3ff3a8543eaee1f9946fde06f31cd9bb98f9e57cd431e0234db57c221334e Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	1.6 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash 566ded19b7e485d34541d52200c2a19b d352321a873a8c8ca1038196b749f449d496019f 919370060ac5deee9280a71c2f7670837edbc980e198d7861efcc6973d969b3c Loading...

	apis.google.com/js/platform.js	53 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 15765e8758982081f08a222a54783683 6282653ca157f529d587b92c552f2f9db446ad96 0da425eaadbec3853cae0b85493ea7ad6934972097b4f59d2a05dbb130585444 Loading...

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette	74 B	2023-03-07	2023-11-10
Pretty URL www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-11-10 06:31:51 Times Seen2 Hash 337357452617ce10561b068674c8e66f 103848eb58e6838c7df050e5bb89392b4e102a02 2c4f3a5479b7869985769155983787123fc877f430b2daa12778cc7d8c3a3563 Loading...

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette	416 B	2023-03-07	2023-11-10
Pretty URL www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-11-10 06:31:51 Times Seen2 Hash 6de8a8d6f84ce4dd1a9ba8cb154630ff bf486ab99ce43fa82e9ec3f4c85b86852002600d 07ebc495dd3f1c5ddec55a05ccb8ad242b262863b7800e78b1a060829732d123 Loading...

	platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net	327 kB	2023-03-07	2023-05-03
Pretty URL platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-03 22:50:00 Times Seen3 Hash 26599e03fbd14de8182dfc6fb71ab446 00642f9520c1d630f6474a3f910a3444d8e8d589 2af340a08ce2caffa6df9a38412f1df460199ea76e4bc1fe3957cc3ce2962518 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	126 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 11:38:02 Times Seen1 Hash c68dba65a0809b3bbbcb55951de7236d 411143c1717cb70190acb60c3740ebbee5b2a45b 96aec8c9f7981a987d0bacb3de756545e59a163f7fc94c47eea050b2f06316dd Loading...

	live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js	524 kB	2023-03-07	2023-03-10
Pretty URL live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:58 Last Seen2023-03-10 10:32:16 Times Seen1 Hash 73ad401506cd17dec40e2e0ad8125311 cda9a1d2c7938875a6b7406e852658d9d49286a0 a7f30e418e25a2d6f77cadc8a1476981548b1eb0e153c5d48280348dd8c77051 Loading...

	connect.facebook.net/en_GB/sdk.js?hash=9d5203918971be5f5351fa5cd179fabb	326 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/en_GB/sdk.js?hash=9d5203918971be5f5351fa5cd179fabb IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash a94789f57fbd3d6af3d0fd8e518d142b 7251b78ef20e42c39ac8c195b37582942baf1859 f5d6c84ebfcbd2761e585ae282808ab7d2ad37ecded0d78ca0e37e23dedbc047 Loading...

	www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed-card_v0.js	153 kB	2023-03-07	2024-04-03
Pretty URL www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed-card_v0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:36 Last Seen2024-04-03 15:38:14 Times Seen1760 Hash f9ba6497187042f135ea78004e9bef97 94d17b10ace330e3dab9c3ae9e8728865499aeed 1485460341dd7acce60bbff4b235101869025328e39f205fea7c0ea0f4b23ac6 Loading...

	www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d	34 kB	2023-03-07	2024-02-26
Pretty URL www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:08 Last Seen2024-02-26 07:58:13 Times Seen222 Hash 7566e885c7785049b4c8669f268c27b3 166fa6ff438e692e4919b331637649fb6765c6fd f7f32c7e2a74db1aa47f2c0d7284fef32779a39fea58a5f475513b0a574e8bab Loading...

	ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js	10 kB	2023-03-07	2023-03-17
Pretty URL ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 69c93809ee794c3e963df5e9aa5fe99d 53e4fac1a579d5cb826100d4dbe9e890385649ec 0d173137e6d7fab67e8e696fea473731e28fed08d552de686256d0d9dfa21275 Loading...

	live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition=	4.7 kB	2023-03-07	2023-03-07
Pretty URL live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition= IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash 980d644fe7a4254b40dbb22c556e1d5d 9e85c7100f47e90180e2b61ddb5a9c0622bcba92 9e3eb498b65d44b71a3ed5f5bb8b6bab91dcb1e878b07c1aac2f8377540eb249 Loading...

	platform.twitter.com/widgets.js	99 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/widgets.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 12:51:43 Times Seen1 Hash f116c7e6b28e2aebeb60ade5bdc8e2b4 ce0bda8b168f6686ced01dd1b7337fd056ffec32 8f4fc0f336126492b535be2e0b29fbb538a3079547d19a81368aec9268a54f26 Loading...

	ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D	16 kB	2023-03-07	2023-03-17
Pretty URL ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D IP 23.38.200.201 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2023-03-17 21:47:34 Times Seen1 Hash 772d546636c1872e4cb7a31a12729334 816b8fac9bc38963382ff30d12baa2b74cbd354b 7d799e920aa5b42a25cff20542a231174a917efb27799ca3c27b279bd832b979 Loading...

	platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-1&lang=en-gb&original_referer=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&size=m&text=Microsoft%20Windows%20and%20Office%20ISO%20Download%20Tool&time=1663773386099&type=share&url=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool&via=heidocnetwork	33 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-1&lang=en-gb&original_referer=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&size=m&text=Microsoft%20Windows%20and%20Office%20ISO%20Download%20Tool&time=1663773386099&type=share&url=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool&via=heidocnetwork IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 12:46:10 Times Seen1 Hash 517af9d29874f1af709253dc0e7b8ffc 873fff2046aec8ba0c419f0097fa89abcef209a2 c6f95834c455ccf6bcae5239fcc7e852a0abb20c3e5bd38e6cce8dd7c797c382 Loading...

	www.youtube.com/subscribe_embed?usegapi=1&channelid=UCRbhk5g9a1GupmixcWdMXRA&layout=default&count=default&origin=https%3A%2F%2Fwww.heidoc.net&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#_methods=onPlusOne%2C_ready%2C_close%2C_open%2C_resizeMe%2C_renderstart%2Concircled%2Cdrefresh%2Cerefresh%2Conload&id=I0_1663773384609&_gfid=I0_1663773384609&parent=https%3A%2F%2Fwww.heidoc.net&pfname=&rpctoken=31503073	291 B	2023-03-07	2023-03-07
Pretty URL www.youtube.com/subscribe_embed?usegapi=1&channelid=UCRbhk5g9a1GupmixcWdMXRA&layout=default&count=default&origin=https%3A%2F%2Fwww.heidoc.net&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#_methods=onPlusOne%2C_ready%2C_close%2C_open%2C_resizeMe%2C_renderstart%2Concircled%2Cdrefresh%2Cerefresh%2Conload&id=I0_1663773384609&_gfid=I0_1663773384609&parent=https%3A%2F%2Fwww.heidoc.net&pfname=&rpctoken=31503073 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash ff4cadf85a6d20e92d77a9e82dd7ad50 e22d55a9eef9574c691c820f9dfb45790a89cf7b 37a16eca15d6ad63a1fbfd10a180c152968f3f802bf40e0bfc1a66b51699d7ed Loading...

	connect.facebook.net/en_GB/sdk.js#xfbml=1&version=v3.0&appId=2124320294459970&autoLogAppEvents=1	3.1 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/en_GB/sdk.js#xfbml=1&version=v3.0&appId=2124320294459970&autoLogAppEvents=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash 5bae93d3f4a32133adb246db2b0ec195 60bc278fcf38e664ed559bd26bc1e56dbe72787c e5b0a68c9197cb3a7c5666cdcf4b06ad88c927e6c54471eb48bf38aec22db5ae Loading...

	apis.google.com/js/rpc:shindig_random.js?onload=init	14 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/rpc:shindig_random.js?onload=init IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:05 Times Seen1 Hash a5e64e272cfbb29d67a8908cf59f2965 d4697ea4bc7ec763e8d69cf52916f784f0b29085 ae8ca9667580cbfae698d922360d33e82dc3a0b93736bd3b41392e2036a50c17 Loading...

	static.xx.fbcdn.net/rsrc.php/v3i7244/yH/l/en_GB/tUqVhMTH0Fe.js?_nc_x=Ij3Wp8lg5Kz	591 kB	2023-03-07	2023-03-07
Pretty URL static.xx.fbcdn.net/rsrc.php/v3i7244/yH/l/en_GB/tUqVhMTH0Fe.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:38:37 Times Seen1 Hash e4f72d63ab66c2d1c1981d1970a902aa 403e80b58d03b867703b2443ba949f58f29c4ec9 e08cce634d0344bcc3b652fc2353147d6e39a619841e2cd1c696b96a9c2be349 Loading...

	live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net	552 kB	2023-03-07	2023-03-07
Pretty URL live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash fffebc1b82f99165e1d7c5f1e2fe2d03 afb694eb65b91516b93271b3b4afc768fb1c7e95 c26db1549eb2fe1725f7dbe4e4983148b77b56e331a27ee5712d2b5d5581f07a Loading...

	live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js	19 kB	2023-03-07	2024-04-19
Pretty URL live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:58 Last Seen2024-04-19 16:12:04 Times Seen201 Hash f0121f768c7834f878c260f43e59d57f 4ea04a63cb0e398a02cd54386e4a302818563631 a3336e3373c170b40764f5a62d121335bec4243b0034e561937194dfe2e413fd Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	722 B	2023-03-07	2023-03-26
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:53 Last Seen2023-03-26 06:34:09 Times Seen39 Hash e6bac4b7b746ec4fe52342a4dabf9fa8 3111f1acb37dd5b1e0d2d8a01f334d4cb6ac84a2 205f222a7f66fd2ab44e9e0ba7ebc92ea970d1b40bd8493b0623b65e858605d0 Loading...

	www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d	13 kB	2023-03-07	2024-02-19
Pretty URL www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:08 Last Seen2024-02-19 22:48:56 Times Seen120 Hash 54d61010757655def8fdb7b32e3708f0 5c5d70a85eb591c0ad97fd178b96da806cf11589 9c39777f862a693bdfd529b7f86fcf46c3cd884c78a4e40cf2e8fe0e16be6f83 Loading...

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette	1.8 kB	2023-03-07	2023-11-10
Pretty URL www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-11-10 06:31:51 Times Seen4 Hash 6a821b90f121bf193d3cf34341495dfd 0a9ddbe354ba45a43227a45c09b42b127dac6cb4 b77831b2fa8e7c022f1cdbab2f8c67adcfb9cef9f255ca67fb9ee9e764da07fb Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_bubble/exm=auth,ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_2?le=scs	28 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_bubble/exm=auth,ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_2?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:36 Last Seen2023-03-17 12:38:25 Times Seen1 Hash 6070d8c8ffaba23bfb11be3e58676b5c 75388a49d227dfe8fb4c1dd874ccecaf350c7ecc 7659dc6c77000ec4b6745b5e6af107bd30ad9a0e92bfc0e406d5209ede488608 Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	811 B	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash eda394cc68252b994e4bfd813371a48a 91c1f2079244d43c0e15777d6369cc202e4e7516 092f702a72338649d3596002f59cb8f8c133d953589b7c92a959e7149d981a9d Loading...

	www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d	491 B	2023-03-07	2024-04-19
Pretty URL www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-19 17:50:59 Times Seen2378 Hash 27e0e11b572de3bc44be960d25d65570 9c431113357e1a7147388978bde9b70a3ff6114a 20f7c83ab9dfdc1e88f4c3fafc0712492200ab738fb30660526bad9dcb7282dc Loading...

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette	2.0 kB	2023-03-07	2023-11-10
Pretty URL www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool#google_vignette IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-11-10 06:31:51 Times Seen2 Hash 35d24396242deb0021169b9c603eae19 330f8d5bd0798b938a4fc807d4a7a106241b90b3 ef54bcfdc8ebaccf5bf0c715ae3e817679cbb881a5647e9270cc25b421ef0cb6 Loading...

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool	66 B	2023-03-07	2024-02-23
Pretty URL www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2024-02-23 20:12:42 Times Seen2 Hash 4d3141ef27e0a07d5a918185ed62459e 03a4f34afaf55984a4330ae9e8da976eaa571756 75194d833bd2f85f961ca8b0b5bb6f7bc81c7443fa314b567b80d63a06497260 Loading...

	live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js	7.9 kB	2023-03-07	2023-12-11
Pretty URL live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:58 Last Seen2023-12-11 12:17:46 Times Seen157 Hash b0781e18d9c8cbcedc4150ed7a006f6e e8eace2cd46f109f8a9f45a88c1b8ecb85b582af 5bb08412d18881e3fc69fdb44226bfc6f66a77d45dfff3f10b98a100c09bc970 Loading...

	googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html	9.8 kB	2023-03-07	2023-03-17
Pretty URL googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:04 Last Seen2023-03-17 17:17:05 Times Seen1 Hash c5a01b9bdfc392b3a440c04c25d912a0 9f741a618cc001a197f4fd39dda831059be42db5 e789ddac14d96021d2c048d3428317d12aa8f1a5c326ba957c3792e879982e6f Loading...

	cmp.uniconsent.com/v2/vendors-v2.js	100 kB	2023-03-07	2023-03-07
Pretty URL cmp.uniconsent.com/v2/vendors-v2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:10 Last Seen2023-03-07 22:37:26 Times Seen1 Hash bd3c93230638ab5ff7d2cbf08f972020 a404ebfc032176eae09793cfa98f39d4a404282c ec28527364d3d772a2cc0694e94868572ecca7fb0534e7e3d20d7b3f7cc72737 Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	10 B	2023-03-07	2024-04-19
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:18 Last Seen2024-04-19 19:43:27 Times Seen14073 Hash 91b3d54bc665b27a303ea5103da4f0b5 1ea644a3b2b1e427686c79e379e4074d576e732a 8c946addeada771d3dc6866cc23be2d1ef3f84b0ae6a98989cbf25b1a9249a61 Loading...

	live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js	8.8 kB	2023-03-07	2023-11-04
Pretty URL live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:58 Last Seen2023-11-04 14:44:24 Times Seen120 Hash 1fde6fb5274a0e6392638c0bc3afa8d0 a2b43004651383c5b98de2346982375251d7c746 154212eb976f7df7c79f5844fcb356740bcb6c51edacb2e8515108e2d7effa67 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	55 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:06 Times Seen1 Hash a706ac4f8b3931965ca926ee6ab4513b 17892ccd9114d77aaa5378ded48c9742e5ded111 98280a2e473b4c77505ccd09e2d3a336448fe7742694869634aaa872956727df Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0	131 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 8c367d9263e0440822e7e28574a782d6 37afed9428bb96e347d49f80f53ac4a5ab8e03d3 47858e4fa55e26f84c8025d699232106abfc921232a6f02edc556e59ce3a855b Loading...

	cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork	243 B	2023-03-07	2023-03-07
Pretty URL cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork IP 192.229.233.50 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash acfbe13ccdc7363fd4a9f84e848b5f92 3c7d9b6ce2cfee2bd10e3a722872c1d1ac26161c 3fc86149c71da400cabf332fa1a6d39d41c8284483b8ee4b3037d1b7ca991197 Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	2.5 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:38:37 Times Seen1 Hash 7d8f3820f0d31755dcb33b215a7067e6 864e1d089df8fd18efad124993d9fb527f5f818e 4e7de0aa8b257deec7e27981b8a67f3b62ee9c570859d63824f6de33f69dc9e0 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs	123 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2023-03-17 12:38:25 Times Seen1 Hash 9111badcca52758d9afbb517f3da1335 3c8682db6892cb9ef74c1d8387dd2a381855011c 3f08af001134142200d0ef8e41ecb0f6f8d91951208c13f9e207e78d8f928b40 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 04:26:36 Times Seen36969582 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	live.primis.tech/content/video/hls/hls.0.12.4_3.min.js	265 kB	2023-03-07	2024-04-19
Pretty URL live.primis.tech/content/video/hls/hls.0.12.4_3.min.js IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:58 Last Seen2024-04-19 16:12:05 Times Seen203 Hash f76c05de98989b05e5bf0f187de56d16 ea5db978eaab2109eb1f51c316add8f70d7d9bec a20010b26bce05ea3cfc83cf3a162b7c16b5d2fa2bcf2253b0394b0eb322347a Loading...

	pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-0889244685730329&plah=www.heidoc.net	354 kB	2023-03-07	2023-03-07
Pretty URL pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-0889244685730329&plah=www.heidoc.net IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:29:05 Last Seen2023-03-07 22:57:45 Times Seen1 Hash 1691d614009a2d440d284532969bf845 224d0ffcc68cfb12a5e447c8f16658dfbdc19f7b 7e77607bf4317799dbd85b4904ed822e614f66a7a7e9ff2656ff800c81924637 Loading...

	platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-0&lang=en-gb&screen_name=heidocnetwork&show_count=true&show_screen_name=false&size=m&time=1663773386093	364 B	2023-03-07	2023-05-03
Pretty URL platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-0&lang=en-gb&screen_name=heidocnetwork&show_count=true&show_screen_name=false&size=m&time=1663773386093 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:48 Last Seen2023-05-03 00:07:40 Times Seen25 Hash f1067af817b7f266427ac1092c148eb8 c70d2100259b12422f895c09bb359e600c773cd7 398881bebd231a57c9467e10cc3e82fc7980d7c615cfdfeeba16a3a5ff79f033 Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	252 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-07 18:38:30 Times Seen2234 Hash dfc334cd5201ae3c020f43848b1646c4 b951863e53fd874757a2d5a21c8739a4d3640947 6e28b909a82bf42f6a2b51d7bbdc3ecafc47cd43cd52d1a3b584250c2ae579fe Loading...

	www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small	217 B	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/share_button.php?app_id=2124320294459970&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df19a4a5fea8b952%26domain%3Dwww.heidoc.net%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.heidoc.net%252Ff47d5b7c863fca%26relation%3Dparent.parent&container_width=238&href=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&layout=button_count&locale=en_GB&mobile_iframe=true&sdk=joey&size=small IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash ffdce82ec5cff79a1dbdf3bb464c31a9 d336e06199a254417a539f98b0c08c4204dfd957 5be164b5574b968c2ad1948718d53f809d05e4c6ba1899c07ec6c69444ff9900 Loading...

	live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]	46 kB	2023-03-07	2023-03-07
Pretty URL live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED] IP 194.146.38.23 ASN #41436 Kamatera Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:37:26 Last Seen2023-03-07 22:37:26 Times Seen1 Hash 5a2e8e70b9f2a7d3015dfe2314cf663b 2267b7d6137ea0d29e7c2e18d43b895e8cfda862 266223a0d74abc35a76fe5784c4b8391275c91005c3e17fd281201f07c4e5bf0 Loading...

	www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d	98 kB	2023-03-07	2024-04-15
Pretty URL www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-15 19:47:38 Times Seen2712 Hash 48a197817927a6eda6f531064f1dba71 5ba19dcca2e2d7ac659af0fbc97dc99e505c498b 05d31c760df3e6f0c64e3da1cd299e5f73df51c974c6528a60d0685859bbc1ba Loading...

	www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d	21 B	2023-03-07	2024-04-19
Pretty URL www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90 ASN #54290 HOSTWINDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-19 17:50:59 Times Seen4660 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-0&lang=en-gb&screen_name=heidocnetwork&show_count=true&show_screen_name=false&size=m&time=1663773386093	36 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html#dnt=false&id=twitter-widget-0&lang=en-gb&screen_name=heidocnetwork&show_count=true&show_screen_name=false&size=m&time=1663773386093 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:48 Last Seen2023-03-17 12:39:17 Times Seen1 Hash fb17112d7bf67f2e5b0338438104d936 93e7ea1d9bffba5ec7251bdaaeff9d526c1268f7 d34d9bab7434e04761d1079b8e6ea45bab84bc48c9e438bc30995670e18b627f Loading...

	eus.rubiconproject.com/usync.js	32 kB	2023-03-07	2023-03-10
Pretty URL eus.rubiconproject.com/usync.js IP 104.88.9.101 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:02:39 Last Seen2023-03-10 10:38:20 Times Seen1 Hash 9c88b91439acc501fced967310b40840 7393563033972d2279849f486c0ac2e5f15cfe11 3f5290c1f4b5f3a83c99e25118127f4e2394760f54f25ee6bf94201a5936f5de Loading...

		Size	First Seen	Last Seen
	#1 Eval - a4d296427fc806b21335359e398c025c	6.5 kB	2023-03-07	2024-02-06
Pretty Observations First Seen2023-03-07 01:02:52 Last Seen2024-02-06 00:26:54 Times Seen1334 Hash a4d296427fc806b21335359e398c025c 46928ccd1407b4e55192bb9d0a07dcfebd9687b7 06b99248a163333e36980a6cfb756f1a7de60fa49517162b87b1a44d5d48f844 Loading...

	#2 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

HTTP Transactions (134)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	143.204.55.115	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.115:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 1b3053fa528e28810f8a2cc9284cc921 cca9eb471d941881a6b9a1793aecb6c281908f6a a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 21 Sep 2022 15:13:36 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: NZSS-9g5x---TVCOrpCYCvZLBpixPgkVmmpCV8-FH5I7k8M1IQi7Sw== Age: 167

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain	143.204.55.25	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP 143.204.55.25:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Wed, 21 Sep 2022 04:35:14 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: JWqXjGQN7VjOAU4iqPygxxFipPAYV5a-itK_VSTdL7clP8l6pmCNAA== age: 38470 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a26d0784548ecab22f417f3d689daf23 8893b79366bbadeb5c8d587b8f023e310694df1c 35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2" Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3052 Expires: Wed, 21 Sep 2022 16:07:15 GMT Date: Wed, 21 Sep 2022 15:16:23 GMT Connection: keep-alive`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:23 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.115	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.115:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Wed, 21 Sep 2022 15:03:22 GMT Cache-Control: max-age=3600 Expires: Wed, 21 Sep 2022 15:50:33 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: -ddzx0vB5FWSZi03EO2Cxr4Nek2JNfc-6ZpDaH1nK0C0y6Q7_9dZlw== Age: 781

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash ff6d50919e56aed75c47feb45ee2f2ec 98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4803 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Last-Modified: Wed, 21 Sep 2022 13:56:21 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash e5d7d983b288c67e17280c6a1c0d80d9 8a1e575f8b8427e872c1e4c5645d9ce3e5445e52 a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 87196299c7d78f0c9fa810e76396da69 495fbe3818b3fe996704cb14370d27c15d786881 5644ac089a5d15b976af9f45578739e63c8866f1b7ab493bb1865df576d7e2e6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 6cbf15e4fbd4d7b47884be950e77651c c50b9202568de1e325f51d9897ae1643ea018194 3895b05531b0330d9b154f5785b5a101615a341097618c4d6d6abe586f57e356 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6066 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Last-Modified: Wed, 21 Sep 2022 13:35:18 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 280`

	apis.google.com/js/platform.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 apis.google.com/js/platform.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1277) Size 20 kB (20361 bytes) Hash b5a31516be83fe4f962609045d824f88 939a49a9858bf23561279f9ca2d1941d3256c66f edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328 HTTP Headers `GET /js/platform.js HTTP/1.1 Host: apis.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-type: text/javascript access-control-allow-origin: * content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="gapi-team" report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]} timing-allow-origin: * content-length: 20361 date: Wed, 21 Sep 2022 15:16:24 GMT expires: Wed, 21 Sep 2022 15:16:24 GMT cache-control: private, max-age=1800, stale-while-revalidate=1800 etag: "40c22a9ccbd70870" x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c8ac2005f83e8a3a9da1a9837b6c2ff3 7c05f49683e49232c1e11b91253e684d2f96ab83 b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.heidoc.net/joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	882 B
URL HTTP/2 www.heidoc.net/joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text Size 882 B (882 bytes) Hash 40840162b74827df74d56b5c0f852cc9 a73d9d4418289341df5704f1d3785f27431b8a8d 89f69228223e7f74a4b3172d8f1624c368bdc3ab0bc6918d7714d58a2a758ba8 HTTP Headers GET /joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 882 content-type: text/css date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	2.5 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text Size 2.5 kB (2477 bytes) Hash 3b43d93e949645cdc801953016be48a8 757e19bb4b2e0953515a77b889a36b0cc2ce4f66 622c594ffa0e3e23031b7b57c3919ab2f769bf33b42ce87f035b254ceddd1fd2 HTTP Headers GET /joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 2477 content-type: text/css date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	21 B
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text Size 21 B (21 bytes) Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 HTTP Headers GET /joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes content-length: 21 vary: User-Agent content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	336 B
URL HTTP/2 www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (413) Size 336 B (336 bytes) Hash 6d37e4491c806fe1280ea6af868c307c 76bd49025156b7c2507189bb48cc83142e8177dd fcdc70db37bd7884b1b94358f4849eb7e6a88bcafe82c93df635913ae03039cb HTTP Headers GET /joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 336 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1b33d59cf038a3fe7273f78fda2cce3a 0b367731ef6df8e1f6c1b8774198daa9959d7cf5 b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	4.0 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (9959) Size 4.0 kB (4014 bytes) Hash a6c81e2f02bd04160d2de88c4e8f3559 e3f3c91427d785820ca97dabe738f01faf041f36 b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe HTTP Headers GET /joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 4014 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	854 B
URL HTTP/2 www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text Size 854 B (854 bytes) Hash cba5cd2c73fc5ac6dd94499cf2944789 38adac5e9554915b77bcd0b8a064610b022e7eba 50a39514f9ab1d04a0fa77ce29bbec83aecb50669aaa8c9b413f4b3459db4660 HTTP Headers GET /joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 854 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	7.7 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (34239), with no line terminators Size 7.7 kB (7734 bytes) Hash 5081b3c5184481953f70a939db265e84 fc18cf7535fb7418c125c17af5304372006a6101 0bff322b82238815f3daf0bad29c2a0bd8206fcf969c0d1f37021adc1b56b055 HTTP Headers GET /joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 7734 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 6cbf15e4fbd4d7b47884be950e77651c c50b9202568de1e325f51d9897ae1643ea018194 3895b05531b0330d9b154f5785b5a101615a341097618c4d6d6abe586f57e356 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6066 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Last-Modified: Wed, 21 Sep 2022 13:35:18 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 280`

	ocsp.godaddy.com/	192.124.249.41	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1777 bytes) Hash 11bdefa1c173000212023bd4e57ee5b9 746c1f161d540f528b426c86876e386f7c50188d 10b3551dd7d7211511dd7c4f0e0e529c869e930cebadcb51bc3091b3fb03bbf2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Wed, 21 Sep 2022 15:16:23 GMT Content-Type: application/ocsp-response Content-Length: 1777 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Tue, 20 Sep 2022 20:56:14 GMT Expires: Wed, 21 Sep 2022 20:56:14 GMT ETag: "746c1f161d540f528b426c86876e386f7c50188d" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	25 kB
URL HTTP/2 www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text Size 25 kB (25412 bytes) Hash cdb80559d7c2ca3f447dabcf4c23e5d6 f657ae4404f48c4c6afade113783c98defbcdf99 2f655d27f9854b6724aee1dedaf6e09b4ee2923eb4eea948bb641b0c5018d4c8 HTTP Headers GET /joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 25412 content-type: text/css date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	7.7 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (28972) Size 7.7 kB (7747 bytes) Hash b332934475ad590347e3386f241697ed fce0455f58c1e3292eaf206918feeebc283f8009 b3a551f32b7b8f113b7c46efaa38d1ea3f7ee07ae92c27e32f29544b01fad830 HTTP Headers GET /joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 7747 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	push.services.mozilla.com/	52.88.220.109	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.88.220.109:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: RHtLtOzxH3RziALTgCJjWg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: VDF8LEqh9GVm5Jpf5PYPcv7hS3A=`

	www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	34 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (65462) Size 34 kB (34137 bytes) Hash 1e4c4d71727b85c5b25e291f18f71d46 4f5765c8610f20bbb598333f6f89582c7c4392c9 2db97efab7e8c7d66985d945ba302ab4990fb7aee2b98a26a50ed2e74bc58a92 HTTP Headers GET /joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 34137 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d	104.168.147.90	200 OK	4.4 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type ASCII text, with very long lines (12836), with CRLF line terminators Size 4.4 kB (4448 bytes) Hash 0a8b81a0d2ca0951db4e4e178bdac5c7 d76b1ba0ff09bebf37c53aa81945a1eb4fafcb83 02285bb1d14b00507cc14df29b61f2a686424e9c8838c12ed023955030b3e503 HTTP Headers GET /joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 4448 content-type: application/javascript date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/templates/protostar/images/system/rating_star.png	104.168.147.90	200 OK	201 B
URL HTTP/2 www.heidoc.net/joomla/templates/protostar/images/system/rating_star.png IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data Size 201 B (201 bytes) Hash 9d5b327713e633a65977e78043af759e 9332bbc4e2b2778081f636cde137e27fd6bfd95d 5cf849bf338d400f7a08a7a65a8a06e13c46fead0d3865705269f8b813e5ff40 HTTP Headers GET /joomla/templates/protostar/images/system/rating_star.png HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes content-length: 201 content-type: image/png date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/templates/protostar/images/system/rating_star_blank.png	104.168.147.90	200 OK	186 B
URL HTTP/2 www.heidoc.net/joomla/templates/protostar/images/system/rating_star_blank.png IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data Size 186 B (186 bytes) Hash add5dec655f51377a42bca8bacbe325b 7b60b58902e1955b14fe09a932fa8eb848cb1d51 b47b00e13c8e9fcb8ff501c9f2ddbe67493111796e4b5693f0a9a37e60e7ee55 HTTP Headers GET /joomla/templates/protostar/images/system/rating_star_blank.png HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes content-length: 186 content-type: image/png date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/system/images/arrow.png	104.168.147.90	200 OK	107 B
URL HTTP/2 www.heidoc.net/joomla/media/system/images/arrow.png IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type PNG image data, 9 x 9, 8-bit/color RGB, non-interlaced\012- data Size 107 B (107 bytes) Hash fabb7d983ab5d85e40a4cac217434f91 0f1affe3748426e03504d98b01f30eb402f70fa4 1f52c94170d531a2e706e6eba721d81bffc13847e1873592f729ff49acf58d4b HTTP Headers GET /joomla/media/system/images/arrow.png HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes content-length: 107 content-type: image/png date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/images/heidoc/header.jpg	104.168.147.90	200 OK	31 kB
URL HTTP/2 www.heidoc.net/joomla/images/heidoc/header.jpg IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=3d illustration of detailed virtual planet Earth. Technological digital globe world, xresolution=2278, yresolution=2286, resolutionunit=2], baseline, precision 8, 700x120, components 3\012- data Size 31 kB (31238 bytes) Hash 6f101cf8bed5b5cb3022e230fddedd55 905967747cf416f896e1ad063dfd530bc60c7d0d fbfd6c560e9baf3ed614703f75649a083cb66a788eb3fae75faacdb521f29aed HTTP Headers GET /joomla/images/heidoc/header.jpg HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Thu, 25 May 2017 15:34:01 GMT accept-ranges: bytes content-length: 31238 content-type: image/jpeg date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/images/microsoft/win-downloader.png	104.168.147.90	200 OK	69 kB
URL HTTP/2 www.heidoc.net/joomla/images/microsoft/win-downloader.png IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type PNG image data, 1256 x 788, 8-bit colormap, non-interlaced\012- data Size 69 kB (68597 bytes) Hash 24e3dc852d4e225cb00bf41183041652 d065186c09fcc0ec55b3fbb86531ad37789709e1 7b62fbb3f30a93e598172bbfa880520d6abed49fc4f2a51cb0583cc6e810ac75 HTTP Headers GET /joomla/images/microsoft/win-downloader.png HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Thu, 20 Dec 2018 17:06:12 GMT accept-ranges: bytes content-length: 68597 content-type: image/png date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c683e61e63df92799aa274fdac42cd3b 191aeec95861fa8596a90a10c60b22434431c033 898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2	142.250.74.163	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data Size 17 kB (16740 bytes) Hash e43b535855a4ae53bd5b07a6eeb3bf67 6507312d9491156036316484bf8dc41e8b52ddd9 b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681 HTTP Headers `GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.heidoc.net Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 19 Sep 2022 18:53:39 GMT expires: Tue, 19 Sep 2023 18:53:39 GMT cache-control: public, max-age=31536000 age: 159765 last-modified: Mon, 15 Aug 2022 18:14:44 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5149084af9bb01e5471e0be93a009ab0 1aaae44973461346130015cba0c36e9d1b5b77f2 db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]	194.146.38.23	200 OK	17 kB
URL HTTP/2 live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED] IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 17 kB (17291 bytes) Hash f7421db4bd87aeed285ec1bacdd1af74 816fe6c71dc290e60350695db6e31024e430969e 2b7924acb914228e981744b932a7e25247dc6ebf9a55100c04dcb1c0e4f29d34 HTTP Headers `GET /live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED] HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: text/javascript; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: * cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/media/jui/fonts/IcoMoon.woff	104.168.147.90	200 OK	25 kB
URL HTTP/2 www.heidoc.net/joomla/media/jui/fonts/IcoMoon.woff IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type Web Open Font Format, CFF, length 25424, version 1.0\012- data Size 25 kB (25424 bytes) Hash 910a8fd387e6c5ac62dbe014dc131960 78d797741e92a0fb3094ad076dfd0ae8f1c36713 6d362fa22342a2d22cbe8d4472d2d11a8d0864310ee2e8e48ede3148465a609d HTTP Headers GET /joomla/media/jui/fonts/IcoMoon.woff HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes content-length: 25424 vary: Accept-Encoding,User-Agent content-type: font/woff date: Wed, 21 Sep 2022 15:16:24 GMT server: Apache X-Firefox-Spdy: h2`

	platform.twitter.com/widgets.js	93.184.220.66	200 OK	29 kB
URL HTTP/1.1 platform.twitter.com/widgets.js IP 93.184.220.66:0 ASN #15133 EDGECAST File type Unicode text, UTF-8 text, with very long lines (33915) Size 29 kB (29220 bytes) Hash 0ccf02d52b75b85c65aa5460aa24aebf 50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38 HTTP Headers `GET /widgets.js HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Max-Age: 3000 Age: 393 Cache-Control: public, max-age=1800 Content-Type: application/javascript; charset=utf-8 Date: Wed, 21 Sep 2022 15:16:24 GMT Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip" Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F71C) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1 Vary: Accept-Encoding x-amzn-internal-status: 304 X-Cache: HIT x-tw-cdn: VZ Content-Length: 29220

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3ef019ce781ddbb79938868e1bf969be 27db5803c535a597bb29c96fc111255b14f4219d 60ade2388afdea80bb7c88016be34c92f7005c21dda6fe6ad07d4dba060744d2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 14d31c538ef2caf4422a82eae13752fb 64a60fba95891f5dcc3d098c78ca3705d679c073 9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2248 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Last-Modified: Wed, 21 Sep 2022 14:38:56 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 471`

	connect.facebook.net/en_GB/sdk.js	157.240.200.14	200 OK	1.7 kB
URL HTTP/2 connect.facebook.net/en_GB/sdk.js IP 157.240.200.14:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (1961) Size 1.7 kB (1687 bytes) Hash f720d391e4a05c6d7044f801e0afe276 8ac1553dd5d6b0b323c399c0f85455266af5ffdd f9f8d2e7e1feb334a19bddb1fa783afcf98126c6da2dc68eb54da466a88a82f8 HTTP Headers `GET /en_GB/sdk.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip access-control-expose-headers: X-FB-Content-MD5 x-fb-content-md5: 5bae93d3f4a32133adb246db2b0ec195 etag: "cfaf5be0e68469ce49ef38fda7d863fc" content-type: application/x-javascript; charset=utf-8 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin expires: Wed, 21 Sep 2022 15:23:16 GMT cache-control: public,max-age=1200,stale-while-revalidate=3600 document-policy: force-load-at-top cross-origin-opener-policy: same-origin-allow-popups x-content-type-options: nosniff x-fb-rlafr: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains content-md5: 9yDTkeSgXG1wRPgB4K/idg== x-fb-debug: R6Cg4Z7ZmvMiuuOdtBe8WU2Il+1X75ymFq7Q8bPDJwUPK03HCWr+aLV7MR/8JOJmodwN7R7EWrJ3YV0gUN4aIQ== priority: u=3,i content-length: 1687 x-fb-trip-id: 1679558926 date: Wed, 21 Sep 2022 15:16:24 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 14d31c538ef2caf4422a82eae13752fb 64a60fba95891f5dcc3d098c78ca3705d679c073 9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4741 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Last-Modified: Wed, 21 Sep 2022 13:57:23 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	142.250.74.2	200 OK	58 kB
URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.2:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2903) Size 58 kB (58017 bytes) Hash 2f550994df82cf1bec56ff023ae294e5 e47e3b7d8071bd8e5b3b583f0e52def74dab02d3 4259b29579a00c74eb0eacd12a3f7d6a9cab932620628f73230ad616204e0680 HTTP Headers `GET /pagead/js/adsbygoogle.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin vary: Accept-Encoding, Origin date: Wed, 21 Sep 2022 15:16:24 GMT expires: Wed, 21 Sep 2022 15:16:24 GMT cache-control: private, max-age=3600 content-type: text/javascript; charset=UTF-8 etag: 10098719205867780677 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 58017 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net	93.184.220.66	200 OK	105 kB
URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net IP 93.184.220.66:0 ASN #15133 EDGECAST File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168) Size 105 kB (105445 bytes) Hash aa228863765c3263e12f1d7c71015518 619739a12e0f16eab26a43a913b35779edea57a6 cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a HTTP Headers GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 1794793 Cache-Control: public, max-age=315360000 Content-Type: text/html; charset=utf-8 Date: Wed, 21 Sep 2022 15:16:24 GMT Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip" Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F706) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1 Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 105445

	www.heidoc.net/joomla/templates/protostar/favicon.ico	104.168.147.90	200 OK	1.5 kB
URL HTTP/2 www.heidoc.net/joomla/templates/protostar/favicon.ico IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 1.5 kB (1480 bytes) Hash 722e588e6f0d1f72c00f595514924dd8 ea90659b7a6b829ff1d04e342ff91598653ca70e 41984554d48cf9b42fcf3c11f25cf1e37a5e5785755b82aad327d9eef92ec0aa HTTP Headers GET /joomla/templates/protostar/favicon.ico HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK x-content-type-options: nosniff last-modified: Sun, 14 Aug 2022 15:21:56 GMT accept-ranges: bytes vary: Accept-Encoding,User-Agent content-encoding: gzip content-length: 1480 content-type: image/x-icon date: Wed, 21 Sep 2022 15:16:24 GMT server: Apache X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c3488c12aad0554e2bf27b9973ec0870 dd261f39ecb54fd67196520d215c3fd7aff023cc 94aa53fc93c54c467f9a214585bb3c6ad81529c24bce8f4c48608925e52c039d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js	194.146.38.23	200 OK	92 kB
URL HTTP/2 live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type ASCII text, with very long lines (18598) Size 92 kB (92313 bytes) Hash 28f53a9471929ce48c57e3a7beae3f1f c897e662467ce5c7b67e4c1668c7a190c7b957f3 8ddf42d27d1f8e4521d3eb73c7d242da6da7049702e969c8e67ce4db8ce59dc4 HTTP Headers `GET /content/ClientDetections/DetectGDPR2.v1.1.js HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript last-modified: Thu, 11 Feb 2021 09:45:48 GMT etag: W/"6024fccc-228f" expires: Thu, 21 Sep 2023 15:16:24 GMT cache-control: max-age=31536000, public accept-ranges: bytes content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D	23.38.200.201	200 OK	5.5 kB
URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D IP 23.38.200.201:0 ASN #16625 AKAMAI-AS File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators Size 5.5 kB (5549 bytes) Hash 7725e8e949141c8ded449d86975d4c04 8cd8c314a2002cc26f821d331ab9512f52a551a2 a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae HTTP Headers GET /AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D HTTP/1.1 Host: ads.pubmatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/2 200 OK last-modified: Tue, 01 Feb 2022 06:38:00 GMT etag: "1300708-3de4-5d6ef246ef4cf" server: Apache accept-ranges: bytes content-encoding: gzip p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC" content-length: 5549 content-type: text/html; charset=UTF-8 cache-control: max-age=64744 expires: Thu, 22 Sep 2022 09:15:29 GMT date: Wed, 21 Sep 2022 15:16:25 GMT vary: Accept-Encoding X-Firefox-Spdy: h2

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	3.2 kB
URL HTTP/2 live.primis.tech/live/liveView.php?hash=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 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type JSON data\012- , ASCII text, with very long lines (8711), with no line terminators Size 3.2 kB (3228 bytes) Hash e7ef52cff2edec170cb539b920b40958 b4336f552b822a4450a55af0e7e25d72b820d2d4 85cc99b962e8b2b2e386a151bb1574a37d8c59727d306276f2dd89747a300281 HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/json; charset=utf-8 content-length: 3228 content-encoding: gzip p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: https://www.heidoc.net access-control-allow-credentials: true cache-control: no-store pragma: no-cache age: 0 X-Firefox-Spdy: h2`

	status.geotrust.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 status.geotrust.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b1d8d534a614ce4982334f15a21b8529 85f2f73fcbf7d6aa037a3c4ed98be481752f88bb 938d4dd7e4c2419f567dd2ba64c6527bf8f7a4253e24aaba675f9ac029eaa112 HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4392 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:03:13 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition=	194.146.38.23	200 OK	2.7 kB
URL HTTP/2 live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition= IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 2.7 kB (2684 bytes) Hash 6908402006c1a94e76e66cb73da44491 5d641d6c6a646e212c433fa84edb3b173e9ab53b cb82b4d2dfaa2414c4a1ccf2a2cabadd7d5a33ed21fc474323d72e728aade6d1 HTTP Headers GET /live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition= HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: text/javascript; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: * cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	3.2 kB
URL HTTP/2 live.primis.tech/live/liveView.php?hash=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 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type JSON data\012- , ASCII text, with very long lines (8707), with no line terminators Size 3.2 kB (3215 bytes) Hash 6e6cebd1217394b868290d6c41a3ea5d e7a1c1a4fdc0dd668f6db17a345d8e7e89061900 b1cc00035ed0ce0ba2a5d5071604e62eea9ca04e62c4d74a0da2362b261e2192 HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/json; charset=utf-8 content-length: 3215 content-encoding: gzip p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: https://www.heidoc.net access-control-allow-credentials: true cache-control: no-store pragma: no-cache age: 0 X-Firefox-Spdy: h2`

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	5.4 kB
URL HTTP/2 live.primis.tech/live/liveView.php?hash=pm01ODA1NlZ2nWRsqzFmqFRcoWViqXQ9LTEzqzyxX3Zup3RUrXByPTMzqzyxX3BfYXyypyZypw0mLwEhMCZ2nWRsqzyyq2FvnWkcqHyTqGF0ZT0kJaZcZF9wo250ZW50X3VloD1bqHRjplUmQSUlRvUlRaZcZGViLaBlnW1cpl50ZWNbJTJGqXBfo2FxplUlRzNhMTEyMxZ2nWRyolUlRaVmZXJmJTJGY29hqzVlqGVxJTJGMmAjMmpyMxZ2nWRyo181Zwx2OWQ0Y2YjZTA0NwY4MmE3NTE5JTJGqzyxNwMlYTM0NWU2N2U0ZTtmMTY4NmMkNl5gpDQyM0Z0o2fyM0Ryq29aSUNBZ0ygRaNnrUx2SUNKSVV6STFOnUymQ2yBZ0yDQWyxSGk3SWciZ0yepFuWQ0yLZyEhZXqiZ0yDQWqJoWk6Y3yJNxyDSyFwoWk0YVuNnUkBo2qJQ0FaSW5OMVycSTZJQ0y2ZFuCp2IlRzgwrTydYzcFrEjmWaBnR1Z2TDNWrycYSacMMx52Yz5noGNhUzknQmu6TURBrx55OTJuV1JfYwE4MVcdnmJPV1EjWTJZq1cUQTBOnyx0TXcFM05URTVMM1cjWxRZrx1gRXcORFZfTzcxoE5HVTRNrxUlT0Rwrx1UY3VvWEEjSWy3S0yDQWqJQ0c1WW1ZnU9cQXuOnyy6TacBM05dQXqMQW9aSUNBZ0ygVwRwQ0x2SURFMx5dTTRNVGpkTxRBS2ZRLyIjOGNJpmBiZ1RJVFMjQTRDN0MgVaBXomRHS3yIrXU1X2yFT0ZSR3uaY2pzqzyxX2NioaRyoaRsnWQ9MwUlNmI0OSZ2nWRsY29hqGVhqF9xZXNwPUFjpGkyK2NiLWZiqW5xZXIeU3RyqzUeV296ozyunlglZW51nXRyplg3nXRbJTJDK3NcZ25mK2ucplfkOTp2K0FjpGkyK0xeoW90nGVlYz9upzQeY3JyYXRco24zqzyxX2NioaRyoaRsqGy0oGU9QXBjoGUeY28gZz91ozRypvgTqGV2ZSgXo3chnWFeK3JyoaVcqGVmK3qcqGtyMxMep2yaoaMenGymKmE5NmYeQXBjoGUeSSggo3RbZXJvo2FlZCgwpzVuqGyiovZ2nWRsY29hqGVhqF9xqXJuqGyiow02MCZxZWJ1Z0yhZz9loWF0nW9hPSZ4PTImOCZ5PTE2OCZjqWJVpzj9nHR0pHMyM0EyMxYyMxZ3q3phnGVcZG9wLz5yqCUlRzcio21fYSUlRaRyY2uho2kiZ3xgp2NcZW5wZSUlRz1cY3Jip29zqCUlRwY3LW1cY3Jip29zqC13nW5xo3qmLWFhZC1iZzZcY2UgnXNiLWRiq25fo2FxLXRio2jyMwNao29aoGVsqzyaozV0qGUzpzx9NxM2OTp2NwU1Mmp0NwE3NDpmN0M3MmZCMmE3QwU0MmA3RDqCNwQmMwMjMmImMwJEMmAmOTJEMmImMTVGMmEmODqEN0I3MmMkMmEmODM2MmImMDM3Mmt3RDqCNDMmMwMkMmp3RDqCNTM2NDMmNwQmMmRDNxQ2ODZDNwE1NmUlNmY1OTp5MmU3NTVBNTt1MTNEN0Q3QwYlNwY2OTplNwU2NwZGNmt3RDqCNmE2NDY1NmM2Qwp0NxY3MDqEN0I2RwZDNwx2RTp1Nmt3RDqCNTtmMmMmMmA3RDqCNTxmMTM4MmA3RDqCNwYmMTqEN0I0QmM2MmEmODMjN0RGRUZFJzymQXBjPTAzp2Reqw0zZ2ViTGF0nT01OS45NDUlJzqyo0kiozp9MTAhNmU1OSZ1p2VlSXBBZGRlPTxkLwxjLwQlLwE1NCZ1p2VlVUE9TW96nWkfYSUlRwUhMCfyMwuYMTEyM0IeTGyhqXterDt2XmY0JTNCK3J2JTNBOTYhMCUlOSgHZWNeolUlRwIjMTAjMTAkK0ZcpzVzo3tyMxY5Nv4jJaBfYXyypxFjnUyxPSZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwYaVmqGVlPTE2NwM3NmMmODUlMDQzZ2Rjpw0kJzqxpHJDo25mZW50PSZcp1qyUGFmp0qxpHI9MA== IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type JSON data\012- , ASCII text, with very long lines (37691), with no line terminators Size 5.4 kB (5419 bytes) Hash 92cc69af0f55b05019a1e873c55b7abe d55bab7eb4a529dd02edf91f5c8d32ab9a23ad49 c1767c6c4d4547ff86ea103af1ec7ac3ca7d7db9ed7b4c7336a80150ad41540f HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/json; charset=utf-8 content-length: 5419 content-encoding: gzip p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: https://www.heidoc.net access-control-allow-credentials: true cache-control: no-store pragma: no-cache age: 0 X-Firefox-Spdy: h2`

	u.openx.net/w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D	34.98.64.218	200 OK	56 B
URL HTTP/2 u.openx.net/w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D IP 34.98.64.218:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 56 B (56 bytes) Hash 15669dda86db3cbff7835fa202dc0b16 ce788cab9c1aa7e458a3971a59702c410b37e64d 5cc3f958039a8885c4e9526e22d454da47d579b9a02861e7a60b41fa0ba910df HTTP Headers GET /w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D HTTP/1.1 Host: u.openx.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK vary: Accept, Accept-Encoding server: OXGW/0.0.0 pragma: no-cache p3p: CP="CUR ADM OUR NOR STA NID" expires: Mon, 26 Jul 1997 05:00:00 GMT date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html content-length: 56 content-encoding: gzip cache-control: private, max-age=0, no-cache via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	6.1 kB
URL HTTP/2 live.primis.tech/live/liveView.php?hash=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 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type JSON data\012- , ASCII text, with very long lines (45116), with no line terminators Size 6.1 kB (6089 bytes) Hash 9b6d0abed88c71b39fa69a7116c8a9d8 01f769a983f4048b7dd3e028de60ccded6c12431 82b73d30a7f3eb3a51d71fb0a87aa03d68af26521339b7554ad74a0aa9180deb HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: application/json; charset=utf-8 content-length: 6089 content-encoding: gzip p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: https://www.heidoc.net access-control-allow-credentials: true cache-control: no-store pragma: no-cache age: 0 X-Firefox-Spdy: h2`

	video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305	185.167.97.84	200 OK	13 kB
URL HTTP/2 video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305 IP 185.167.97.84:0 ASN #41436 Kamatera Inc File type JPEG image data, baseline, precision 8, 640x360, components 3\012- data Size 13 kB (12993 bytes) Hash b71d2a739f4e80eff8630042b3e6dce0 0d70964aff954caafe41441117c7b39eb9008bf7 b86d3693599ce6ac628845cf53997793f0c43c6e4829d8c13799fe28451fe2ff HTTP Headers `GET /uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305 HTTP/1.1 Host: video.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: Tengine date: Wed, 21 Sep 2022 15:16:25 GMT content-type: image/jpeg content-length: 12993 last-modified: Tue, 20 Sep 2022 21:47:34 GMT etag: "b71d2a739f4e80eff8630042b3e6dce0" vary: Accept-Encoding via: 1.1 a5a8e743f28968822c126102a78bb7c6.cloudfront.net (CloudFront) x-amz-cf-pop: FRA60-P4 x-amz-cf-id: GNoAgytJ4sZpjTdxzg1H-1ICdj6ZIRTNJfO7L_P5vEJzU8KLZTn4hg== expires: Thu, 22 Sep 2022 15:16:25 GMT cache-control: max-age=86400 x-proxy-cache: HIT access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	x.bidswitch.net/sync?ssp=sekindo&gdpr=1&gdpr_consent=	52.29.193.101	200 OK	43 B
URL HTTP/1.1 x.bidswitch.net/sync?ssp=sekindo&gdpr=1&gdpr_consent= IP 52.29.193.101:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash df3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 HTTP Headers `GET /sync?ssp=sekindo&gdpr=1&gdpr_consent= HTTP/1.1 Host: x.bidswitch.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Type: image/gif Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Length: 43 Connection: keep-alive`

	status.geotrust.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 status.geotrust.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b1d8d534a614ce4982334f15a21b8529 85f2f73fcbf7d6aa037a3c4ed98be481752f88bb 938d4dd7e4c2419f567dd2ba64c6527bf8f7a4253e24aaba675f9ac029eaa112 HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4392 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:03:13 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	status.geotrust.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 status.geotrust.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 1a6ba8b99be5dbe186929b9f38510167 90e6447b57bcdd0bb7d7ada783370ff4a73ff870 c9f2ec28f0d4c8c42218f838f9165001cfa50262c1520bd58c78ae9e1176948c HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3039 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:25:46 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID	185.94.180.125	302 Found	0 B
URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID IP 185.94.180.125:0 ASN #35220 SpotXchange, INC File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID HTTP/1.1 Host: sync.search.spotxchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 302 Found Server: nginx Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Type: text/plain Content-Length: 0 Connection: keep-alive Set-Cookie: audience=5bc07f4b-39c0-11ed-9a1f-1d37f49c0506; expires=Wed, 19-Oct-2022 15:16:25 GMT; path=/; domain=.spotxchange.com; SameSite=none Location: /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506 X-fe: 14 Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: false Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

	video.primis.tech/uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303	185.167.97.84	200 OK	56 kB
URL HTTP/2 video.primis.tech/uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303 IP 185.167.97.84:0 ASN #41436 Kamatera Inc File type PNG image data, 1500 x 1500, 8-bit/color RGBA, non-interlaced\012- data Size 56 kB (56239 bytes) Hash d36f84d7cdf6bb676e78918690e996e8 7771b6520def589d9259b091180ff2fba231b091 397ef531771d91d36d16c4207b838086076a7972f44fda65bb15c859acd4c0e3 HTTP Headers `GET /uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303 HTTP/1.1 Host: video.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: Tengine date: Wed, 21 Sep 2022 15:16:25 GMT content-type: image/png content-length: 56239 last-modified: Tue, 17 Aug 2021 17:19:58 GMT etag: "d36f84d7cdf6bb676e78918690e996e8" vary: Accept-Encoding via: 1.1 edd6d90087c4f2b49e182778a2273adc.cloudfront.net (CloudFront) x-amz-cf-pop: AMS54-C1 x-amz-cf-id: XBR4HtAzuIPCPu6G75KNy4hBzcpOzC0Njbi14boWTAL0LdHVntJq_Q== expires: Thu, 22 Sep 2022 15:16:25 GMT cache-control: max-age=86400 x-proxy-cache: HIT access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506	185.94.180.125	200 OK	43 B
URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506 IP 185.94.180.125:0 ASN #35220 SpotXchange, INC File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 55fade2068e7503eae8d7ddf5eb6bd09 317496a096d6c86486a71d4521994bcd171a6bb3 e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e HTTP Headers GET /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506 HTTP/1.1 Host: sync.search.spotxchange.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Server: nginx Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Type: image/gif Content-Length: 43 Connection: keep-alive Set-Cookie: audience=5bc4ae1e-39c0-11ed-83ba-162d46060406; expires=Wed, 19-Oct-2022 15:16:25 GMT; path=/; domain=.spotxchange.com x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience. X-fe: 16 Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: false Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

	live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27	194.146.38.23	200 OK	7.9 kB
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 7.9 kB (7904 bytes) Hash 9bbe0f42ef78c66a93280da7da1fe1df 68002f9468da87850a5a425cca9c64850461e707 422a68697f3643da68756c4252b00493d20a2d8e2ee6831f3b886861934938d0 HTTP Headers `GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js	142.250.74.99	200 OK	4.3 kB
URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js IP 142.250.74.99:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2267) Size 4.3 kB (4294 bytes) Hash 3f7502705229ccec9d066c5cd75e6c31 ede1663155afaa5a5213d075e6295c6d839b05c3 2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282 HTTP Headers `GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1 Host: ssl.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://accounts.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access" report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]} content-length: 4294 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 08:39:19 GMT expires: Thu, 21 Sep 2023 08:39:19 GMT cache-control: public, max-age=31536000 last-modified: Mon, 19 Sep 2022 22:13:13 GMT content-type: text/javascript age: 23826 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.godaddy.com/	192.124.249.41	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1777 bytes) Hash b8d63cf87e43643021f6d4cee4457bb1 b3b5417d11e76eeee97652e7f5aba0f334076d06 873b5ef31eb0c3fcbc2da82cd61cf7dc52324c17d14f4e55a4817d312bfa2f21 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Type: application/ocsp-response Content-Length: 1777 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Tue, 20 Sep 2022 21:47:14 GMT Expires: Wed, 21 Sep 2022 21:47:14 GMT ETag: "b3b5417d11e76eeee97652e7f5aba0f334076d06" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305	185.167.97.84	200 OK	2.0 kB
URL HTTP/2 video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305 IP 185.167.97.84:0 ASN #41436 Kamatera Inc File type JPEG image data, baseline, precision 8, 162x92, components 3\012- data Size 2.0 kB (1984 bytes) Hash 8566dc56e2fead9602ef213b01f8cb18 bc274c7766ccef63095819be45c7ff38867c8a4a a6e6bfc5e96b5a07ae0c0e96570ebd875729b0f4f54e3313ac37f34deea9c3ad HTTP Headers `GET /uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305 HTTP/1.1 Host: video.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: Tengine date: Wed, 21 Sep 2022 15:16:25 GMT content-type: image/jpeg content-length: 1984 last-modified: Tue, 20 Sep 2022 21:47:35 GMT etag: "8566dc56e2fead9602ef213b01f8cb18" vary: Accept-Encoding via: 1.1 2b298af2bb6f21ab0dee9e764d8bcb28.cloudfront.net (CloudFront) x-amz-cf-pop: AMS54-C1 x-amz-cf-id: h7rea_-h904uzC4Yw5h0QzcYzDWX4n2BkelzGuHljWauvNB5UPIc9g== expires: Thu, 22 Sep 2022 15:16:25 GMT cache-control: max-age=86400 x-proxy-cache: HIT access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	video.primis.tech/uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003	185.167.97.84	200 OK	2.8 kB
URL HTTP/2 video.primis.tech/uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003 IP 185.167.97.84:0 ASN #41436 Kamatera Inc File type JPEG image data, JFIF standard 1.02, aspect ratio, density 736x729, segment length 16, comment: "Lavc59.22.100", baseline, precision 8, 162x92, components 3\012- data Size 2.8 kB (2774 bytes) Hash 9a856456db72ff94d2eb47c8a8166c13 e4cf084bd7e3607c6f8ecd9d46c5deb42450de22 d95b4a68a8b9f2f649a4647fe5b0ebb8578104911d9144bc1fe2cfa62344974c HTTP Headers `GET /uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003 HTTP/1.1 Host: video.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: Tengine date: Wed, 21 Sep 2022 15:16:25 GMT content-type: image/jpeg content-length: 2774 last-modified: Thu, 15 Sep 2022 15:14:18 GMT etag: "9a856456db72ff94d2eb47c8a8166c13" vary: Accept-Encoding via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront) x-amz-cf-pop: AMS54-C1 x-amz-cf-id: xncgVYGsk4da1TJqALpZe9-Vr11AtdSqWDl7xkH5xWtjx0qWYIlW7A== expires: Thu, 22 Sep 2022 15:16:25 GMT cache-control: max-age=86400 x-proxy-cache: HIT access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net	194.146.38.23	200 OK	275 kB
URL HTTP/2 live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 275 kB (275029 bytes) Hash cfef1c8ff940eb7027f67c08bd0fa64f 739475ba1df653a71273b3daed1ce30396d0a3f1 1666295d221341722b8794188ec8a6fe380f5c2394bad0dbe8f881b68a935ee4 HTTP Headers GET /live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:23 GMT content-type: text/html; charset=UTF-8 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 01b00df44f694ebb0b6ffe39de5b2606 a720735f26b6a516f6ac17d2b517c558d7978122 e56f91b6085d349ed90bec1c0d07150ecde0db400dc28bb757cf0c058a4d1b72 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5494 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 13:44:51 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 313`

	ssum-sec.casalemedia.com/usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D	104.18.18.126	302 Found	0 B
URL HTTP/2 ssum-sec.casalemedia.com/usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D IP 104.18.18.126:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D HTTP/1.1 Host: ssum-sec.casalemedia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found date: Wed, 21 Sep 2022 15:16:25 GMT content-length: 0 location: /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1 cf-ray: 74e3c30c2bb0b4fa-OSL cache-control: no-cache expires: 0 cf-cache-status: DYNAMIC p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI" pragma: no-cache set-cookie: CMID=YysqyfvZ.-ELb5DZx5XXZQAA; Path=/; Domain=casalemedia.com; Expires=Thu, 21 Sep 2023 15:16:25 GMT; Max-Age=31536000; Secure; SameSite=None CMPS=4538; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:16:25 GMT; Max-Age=7776000; Secure; SameSite=None CMPRO=4538; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:16:25 GMT; Max-Age=7776000; Secure; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r2kOobKVtR0gripXhNUSn7gd7WkSb0AlQ9QE2xAxuieDSuJ9mlajyrB9TpdMb0hwdcSOzehtDtkExZq7D1hGT%2B%2FJaV6Tslkja9L42MfwSsMDZhOPkUFjne0E39NlxPl51xgF0x5ZK7G5xQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cs.media.net/cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E	23.38.200.22	302 Moved Temporarily	154 B
URL HTTP/1.1 cs.media.net/cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E IP 23.38.200.22:0 ASN #16625 AKAMAI-AS File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 154 B (154 bytes) Hash 52558d05355ee6e9d14ff3cf8a5a3ef0 52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2 bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060 HTTP Headers GET /cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E HTTP/1.1 Host: cs.media.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 302 Moved Temporarily Server: Apache Content-Length: 154 Content-Type: text/html Location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA Set-Cookie: data-pri=632b2ac856195~~34;Expires=Thu, 21 Sep 2023 15:16:25 GMT;path=/;domain=.media.net; P3P: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA X-MNET-HL2: E Expires: Wed, 21 Sep 2022 15:16:25 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 21 Sep 2022 15:16:25 GMT Connection: keep-alive

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 3423ede4e385b098f165a74c5866fbd9 93c10d1e17d52b5a776c9db81e0edeefee332534 16fe3d4ac2f3f66754d28da5da6fa16d1cf9ff0b7ecfa139daffea89a7e1e623 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4464 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:02:01 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a76cf05e93c25a824c39294e8f8b9517 f38d9f687947c6816685cd03448847aa16104f5f 0f0c176669e2a60f8f7f3bcbc42cb2dcef99d89e13001311e9d9412c416c1b19 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4580 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:00:05 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	ads.stickyadstv.com/user-matching?id=3586&gdpr=1&gdpr_consent=	23.36.77.41	302 Moved Temporarily	0 B
URL HTTP/1.1 ads.stickyadstv.com/user-matching?id=3586&gdpr=1&gdpr_consent= IP 23.36.77.41:0 ASN #20940 Akamai International B.V. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /user-matching?id=3586&gdpr=1&gdpr_consent= HTTP/1.1 Host: ads.stickyadstv.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 302 Moved Temporarily Server: nginx Content-Length: 0 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true x-sticky-vk: 1663773385587087-558 Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d Expires: Wed, 21 Sep 2022 15:16:25 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 21 Sep 2022 15:16:25 GMT Connection: keep-alive Set-Cookie: UID=31d8e29f4cb09bf3adf893739b51b8d; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:25 GMT; Path=/ sessionId=9dbf4feb7af8434fd0faa7c3497a6; Domain=ads.stickyadstv.com; Path=/

	ocsp.digicert.com/	93.184.220.29	200 OK	314 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 314 B (314 bytes) Hash 8449eee5d39e7c47bbce4b14fd8e84de e9d56fc7e163661f3922dd23fc4e42b747147814 657fc1ef75bf1b156aeba67425911db52aac8ba24cb7db636507c7ac8efa30db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2867 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:28:38 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 314`

	pixel.rubiconproject.com/exchange/sync.php?p=primis	213.19.162.80	204 No Content	0 B
URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=primis IP 213.19.162.80:0 ASN #26667 RUBICONPROJECT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /exchange/sync.php?p=primis HTTP/1.1 Host: pixel.rubiconproject.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 204 No Content P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Pragma: no-cache Cache-Control: no-cache,no-store,must-revalidate Expires: 0 X-RPHost: 49049ff336235ad60cb44abcb1cec1d6 Content-Type: image/gif`

	ssum-sec.casalemedia.com/usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1	104.18.18.126	302 Found	0 B
URL HTTP/2 ssum-sec.casalemedia.com/usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1 IP 104.18.18.126:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1 HTTP/1.1 Host: ssum-sec.casalemedia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 302 Found date: Wed, 21 Sep 2022 15:16:25 GMT content-length: 0 location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0 cf-ray: 74e3c30c8c16b4fa-OSL cache-control: no-cache expires: 0 cf-cache-status: DYNAMIC pragma: no-cache report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MBMOz6R7wz64dgfYE0COaySrNxiimQ9z7z2Mq42nUU0MYe8LEmcMxnHQWJT94jlKj%2Fa%2Btoa0X0cfQfdynxdV9QJLTyWEzagzqEUI9la8rnSCeb0bdDzHrVWTVQ%2FFNTISVrPStBcnrNWbg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.facebook.com/tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at=	157.240.200.35	200 OK	44 B
URL HTTP/2 www.facebook.com/tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at= IP 157.240.200.35:0 ASN #32934 FACEBOOK File type GIF image data, version 89a, 1 x 1\012- data Size 44 B (44 bytes) Hash b798f4ce7359fd815df4bdf76503b295 f8cc6addf1707ad236ad9970b0a48f9733d07da5 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa HTTP Headers GET /tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at= HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: image/gif date: Wed, 21 Sep 2022 15:16:25 GMT expires: Wed, 21 Sep 2022 15:16:25 GMT last-modified: Fri, 21 Dec 2012 00:00:01 GMT cache-control: no-cache, must-revalidate, max-age=0 set-cookie: strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 44 server: proxygen-bolt alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	secure.adnxs.com/getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID	37.252.173.22	307 Redirection	0 B
URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID IP 37.252.173.22:0 ASN #29990 ASN-APPNEX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID HTTP/1.1 Host: secure.adnxs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 307 Redirection Server: nginx/1.21.3 Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" X-XSS-Protection: 0 Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Flive.primis.tech%252Flive%252FliveCS.php%253Fsource%253Dexternal%2526csuuid%253D632b2ac856195%2526pixel%253D%2526advId%253D105%2526advUuid%253D%2524UID AN-X-Request-Uuid: e3639ac0-7b24-459f-9c73-ae9c3946e057 Set-Cookie: uuid2=1035702905354830918; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 15:16:25 GMT; Domain=.adnxs.com; Secure; HttpOnly X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

	ups.analytics.yahoo.com/ups/58627/occ	3.126.56.137	302 Found	0 B
URL HTTP/2 ups.analytics.yahoo.com/ups/58627/occ IP 3.126.56.137:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ups/58627/occ HTTP/1.1 Host: ups.analytics.yahoo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found date: Wed, 21 Sep 2022 15:16:25 GMT content-length: 0 strict-transport-security: max-age=31536000 p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV location: https://ups.analytics.yahoo.com/ups/58627/occ?verify=true age: 0 server: ATS/9.1.10.25 set-cookie: A3=d=AQABBMkqK2MCEICqS8mpwUR23ltrnPnOAkMFEgEBAQF8LGM1YwAAAAAA_eMAAA&S=AQAAAn0gXzWdxW3vU7lwZ-VAAf8; Expires=Thu, 21 Sep 2023 21:16:25 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly X-Firefox-Spdy: h2

	ssbsync.smartadserver.com/api/sync?callerId=21&gdpr=1&gdpr_consent=	185.86.137.108	200 OK	0 B
URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=21&gdpr=1&gdpr_consent= IP 185.86.137.108:0 ASN #201081 SmartAdServer SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /api/sync?callerId=21&gdpr=1&gdpr_consent= HTTP/1.1 Host: ssbsync.smartadserver.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK content-length: 0 date: Wed, 21 Sep 2022 15:16:25 GMT`

	cs.admanmedia.com/3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D	80.77.87.162	302 Found	0 B
URL HTTP/1.1 cs.admanmedia.com/3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D IP 80.77.87.162:0 ASN #46636 NATCOWEB File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D HTTP/1.1 Host: cs.admanmedia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 302 Found Server: nginx Date: Wed, 21 Sep 2022 15:16:25 GMT Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: admtr=e05fa551-ec7c-41c4-af12-52433ed51dc4; path=/; domain=.admanmedia.com; expires=Wed, 05 Oct 2022 15:16:25 GMT;SameSite=None;Secure ac_r=CS116; path=/; domain=.admanmedia.com; expires=Wed, 05 Oct 2022 15:16:25 GMT;SameSite=None;Secure Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4 Strict-Transport-Security: max-age=63072000; includeSubdomains; preload X-Frame-Options: DENY

	ocsp.godaddy.com/	192.124.249.41	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1778 bytes) Hash 8c92455701b09e42442e3525a304301b f03bbd382caad559c48fe23bc082ae14c87bc60c 3ca1e8a5af6486aa3c63c8661474c4378fba1ce0210621a7c82cddaaa9f39972 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 76 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Wed, 21 Sep 2022 15:16:25 GMT Content-Type: application/ocsp-response Content-Length: 1778 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Tue, 20 Sep 2022 21:59:08 GMT Expires: Wed, 21 Sep 2022 21:59:08 GMT ETag: "f03bbd382caad559c48fe23bc082ae14c87bc60c" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.sca1b.amazontrust.com/	143.204.42.165	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.165:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 838827064245a6e17630f07b02021ec7 4b71efe74a2ac92ff9d9896e4d6f93d8edc7c2b9 a7e7914f27a22e077aa9968e7b80316073c8bbff0ee77e8c2feed2ac1fa352e9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 14:37:00 GMT Server: ECS (nyb/1D0D) X-Cache: Miss from cloudfront Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Zn0eMQU6FZQpKVJoxZwTMGUKuBCLL5p5X7ZzAPyVl5qPaxs0IVUQ4A== Age: 2365`

	ap.lijit.com/pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID	72.251.249.13	204 No Content	0 B
URL HTTP/1.1 ap.lijit.com/pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID IP 72.251.249.13:0 ASN #29791 VOXEL-DOT-NET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID HTTP/1.1 Host: ap.lijit.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 204 No Content Date: Wed, 21 Sep 2022 15:16:25 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, DELETE, PUT Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: X-Requested-With, Content-Type X-Sovrn-Pod: ad_ap2ams1`

	eb2.3lift.com/getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID	76.223.111.18	200 OK	37 B
URL HTTP/2 eb2.3lift.com/getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID IP 76.223.111.18:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 37 B (37 bytes) Hash 3eacd0132310ea44cad756b378a3bc07 e2216a7e9b73f5cb0279351c78ce61c33475cea7 bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96 HTTP Headers GET /getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID HTTP/1.1 Host: eb2.3lift.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:25 GMT content-type: image/gif content-length: 37 cache-control: no-cache, no-store, must-revalidate X-Firefox-Spdy: h2`

	syndication.twitter.com/settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae	104.244.42.8	200 OK	327 B
URL HTTP/2 syndication.twitter.com/settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae IP 104.244.42.8:0 ASN #13414 TWITTER File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators Size 327 B (327 bytes) Hash 21b37ea7072f5ae3a8fefdf555c10764 a509a3feca059bd0dc935c1ac59d600db3a68cb1 4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b HTTP Headers `GET /settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1 Host: syndication.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://platform.twitter.com/ Origin: https://platform.twitter.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:25 GMT vary: Origin server: tsa_o content-type: application/json; charset=utf-8 cache-control: must-revalidate, max-age=600 last-modified: Wed, 21 Sep 2022 15:16:25 GMT content-length: 327 content-encoding: gzip strict-transport-security: max-age=631138519 access-control-allow-origin: https://platform.twitter.com access-control-allow-credentials: true x-response-time: 109 x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd X-Firefox-Spdy: h2

	ups.analytics.yahoo.com/ups/58627/occ?verify=true	3.126.56.137	204 No Content	0 B
URL HTTP/2 ups.analytics.yahoo.com/ups/58627/occ?verify=true IP 3.126.56.137:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ups/58627/occ?verify=true HTTP/1.1 Host: ups.analytics.yahoo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content date: Wed, 21 Sep 2022 15:16:25 GMT p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV strict-transport-security: max-age=31536000 age: 0 server: ATS/9.1.10.25 set-cookie: A3=d=AQABBMkqK2MCED_wPcMYnWoCgtDXpxNK86UFEgEBAQF8LGM1YwAAAAAA_eMAAA&S=AQAAApcwUIxQmb8zjAWhg2bTEXk; Expires=Thu, 21 Sep 2023 21:16:25 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly X-Firefox-Spdy: h2`

	live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d	194.146.38.23	200 OK	20 B
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers GET /live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2" Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11866 Expires: Wed, 21 Sep 2022 18:34:11 GMT Date: Wed, 21 Sep 2022 15:16:25 GMT Connection: keep-alive`

	live.primis.tech/content/video/hls/hls.0.12.4_3.min.js	194.146.38.23	200 OK	120 kB
URL HTTP/2 live.primis.tech/content/video/hls/hls.0.12.4_3.min.js IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 120 kB (120430 bytes) Hash f78f921d46330743c6dadce45487b8b6 f5d67b8fa1a8b2730e47db217057d9c599c81011 e166d2001d5a4e69f9522c6cabdb1a55ff81d9a482a7b5ad86b8ba1d2cb5af9c HTTP Headers `GET /content/video/hls/hls.0.12.4_3.min.js HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript last-modified: Wed, 23 Mar 2022 12:48:35 GMT etag: W/"623b1723-409bc" expires: Thu, 21 Sep 2023 15:16:24 GMT cache-control: max-age=31536000, public accept-ranges: bytes content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2" Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11866 Expires: Wed, 21 Sep 2022 18:34:11 GMT Date: Wed, 21 Sep 2022 15:16:25 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2" Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11866 Expires: Wed, 21 Sep 2022 18:34:11 GMT Date: Wed, 21 Sep 2022 15:16:25 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9227 bytes) Hash 9556616ca10eb4383b1e15f360fbf6d4 cb328d0f66f4c2779bc64342ef89735636ae5ded 4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9227 x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YiFzKG2zIAMFoDw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0 x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: K-lCBW5v2irK9UtfyGeaE7jkaIjQkpEUREIMd2hMXUrlsc6k-p6F1A== via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Wed, 21 Sep 2022 05:27:48 GMT age: 35317 etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10038 bytes) Hash dab1f2cd68979d2004ba4449d759a341 54ed14436a75ba2aeb8459bad2ce70229aff4203 e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10038 x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Yxy1mHDCIAMF5-g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0 x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: hDCOWNm2vFa9h7BffUJwcwZ6i27jM2qBuSTasH9q_wsQ9oNWhVpQCg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Sep 2022 21:47:24 GMT etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203" content-type: image/jpeg age: 62941 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.165	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.165:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 509e39b847d4ba05f981d6769b72731b 9b75e098c161fa310f3fb6f815315df9600aa4fd 783d59c20a5aa3a68db6ccbdde61e65317ab320cef41e0b0965986efee892783 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 21 Sep 2022 15:16:25 GMT Last-Modified: Wed, 21 Sep 2022 13:34:48 GMT Server: ECS (nyb/1D31) X-Cache: Miss from cloudfront Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pwrwtmo7cTl6URxGnP0KcdpT9t5HiVsV9aK2Jgu_VFqfx6s2Yw38Ag== Age: 6097`

	live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4	194.146.38.23	200 OK	9.2 kB
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 9.2 kB (9221 bytes) Hash d963b9b9a74c713a33e99c3a427759d5 57256dc9a36040011e2bfd3681a9263341576fcd 8e6554dd7d1e3b5580330c159268b389c2cb4aa4c7070f07170e91d7e30fd9c8 HTTP Headers GET /live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12048 bytes) Hash c2db94039cb675cb250519fe57b2b3c9 37222a70df5d9a69073b4b32ebc3a5da60006001 444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12048 x-amzn-requestid: d9bd4ac9-5032-45d5-9689-c5c3347912d3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YO2wuFz4oAMFZug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631c3804-6fb7d6a52eecab471f67d9a9;Sampled=0 x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: sfGk3C3HLGDYDSXw1d4R7wPRsGdHNKD31chUVzQ8KYBRnsIL0aOW1g== via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Sep 2022 21:41:17 GMT age: 63308 etag: "37222a70df5d9a69073b4b32ebc3a5da60006001" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10244 bytes) Hash 14e6ddceb639a5f4875aecb796f95c79 b1cd04a66852694284eeef16a1cde38896e33c03 4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10244 x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YYwBkGqjIAMFz0Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0 x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google date: Wed, 21 Sep 2022 12:08:27 GMT age: 11278 etag: "b1cd04a66852694284eeef16a1cde38896e33c03" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11832 bytes) Hash 2ed7323b395e757f7766ea0045efdaca 8b91bc3069a3217bc719c27959d578b353b5d9dc 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11832 x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YugI_EsLIAMFdmQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0 x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 7sCevVX1nGXxZxnrXSURjUcap1a7vCZwrMMIXfzcBPR1srMxJHLGUg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Sep 2022 22:09:43 GMT age: 61602 etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	mb9eo.publishers.tremorhub.com/pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D	52.44.73.49	302 Found	0 B
URL HTTP/2 mb9eo.publishers.tremorhub.com/pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D IP 52.44.73.49:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D HTTP/1.1 Host: mb9eo.publishers.tremorhub.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found date: Wed, 21 Sep 2022 15:16:25 GMT content-length: 0 location: pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D server: Apache-Coyote/1.1 p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/' set-cookie: tvid=685c9a2d9a5244dbb443721f2ac692f9; Domain=.tremorhub.com; Expires=Thu, 21-Sep-2023 21:04:45 GMT; Path=/; Secure; SameSite=None X-Firefox-Spdy: h2

	platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js	93.184.220.66	200 OK	2.4 kB
URL HTTP/1.1 platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js IP 93.184.220.66:0 ASN #15133 EDGECAST File type ASCII text, with very long lines (7017), with no line terminators Size 2.4 kB (2361 bytes) Hash 4f1f60563bf717e97c0a9d0ea41656bd e81bc1de4809ad69c612311ef322d10920f565c9 76b3c3593522fdfb24ca4b06087d457bad98ae873958f032deea5151ad8762ca HTTP Headers `GET /js/button.c6c95b9789db97ea1e9742d215fff751.js HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 1794791 Cache-Control: public, max-age=315360000 Content-Type: application/javascript; charset=utf-8 Date: Wed, 21 Sep 2022 15:16:26 GMT Etag: "3b5d132d3d3780b86a6d19d169faef45+gzip" Last-Modified: Wed, 31 Aug 2022 20:40:49 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F71C) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1 Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 2361

	cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220921	151.101.85.229	200 OK	916 B
URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220921 IP 151.101.85.229:0 ASN #54113 FASTLY File type JSON data\012- , ASCII text, with very long lines (1647), with no line terminators Size 916 B (916 bytes) Hash c85eec2aa439761e6874191e10e1b89e e34700495404ad729a495b56f2746c00a23ee459 ac30767dad7b759a2792e7a0286bfd7f6cc25255d5d73ac8d5832261bb3b8e7d HTTP Headers `GET /gh/prebid/currency-file@1/latest.json?date=20220921 HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/json; charset=utf-8 x-jsd-version: 1.0.1470 x-jsd-version-type: version etag: W/"66f-cUWJkK7EI2gPfNoWAjukgw720XU" content-encoding: gzip accept-ranges: bytes date: Wed, 21 Sep 2022 15:16:26 GMT age: 927 x-served-by: cache-fra19145-FRA, cache-bma1630-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 916 X-Firefox-Spdy: h2

	live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0	194.146.38.23	200 OK	491 B
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type data Size 491 B (491 bytes) Hash 763ed62a0ccb96612f9d0cb37c30fa0a c56ebd063315932a624dd1572b82e50b20d4401a 436cc9d641f1ae30bf70fdb92854028dd92fb4b6e94f631b7bdd21d1b419a577 HTTP Headers `GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 405a6f77ccbd6fb67479319e95cabe16 db9ed8d9426b98735e994d563ed5bbb35f0d6aaf 892bb01cf12bf057de3b16fcf1604459c18ae2db306c6eeefe617dd759ba845c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2679 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:26 GMT Last-Modified: Wed, 21 Sep 2022 14:31:47 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 471`

	ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1	104.18.20.226	200 OK	1.5 kB
URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1462 bytes) Hash 27a94a0ff6f4c75a1ba21dd1caa47527 658d1917a81d1d0a68151903973992e2b59b3697 d1da53aff49d81c8d0139382b6c338d27eb349c0bde61e41ccb9e0e7ab7234f2 HTTP Headers `POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 21 Sep 2022 15:16:26 GMT Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive Etag: "0D300EB098696BC238787019CF374F8685E820CB" Expires: Thu, 22 Sep 2022 02:00:00 GMT Last-Modified: Wed, 21 Sep 2022 14:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Age: 1858 Vary: Accept-Encoding Server: cloudflare CF-RAY: 74e3c30f0877b51d-OSL`

	ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang&timestamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168	23.36.77.41	200 OK	67 B
URL HTTP/1.1 ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang&timestamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168 IP 23.36.77.41:0 ASN #20940 Akamai International B.V. File type XML 1.0 document text\012- XML document, ASCII text Size 67 B (67 bytes) Hash b753854b354a90a85ac6ff282b64b05d 1da3eb0c1b574c639024a54a679db90e403fc1b7 291437ea71e62b1c35d4ec5d3c5ad02cfa930343b41b1472fba70243089c8bbe HTTP Headers GET /www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang&timestamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168 HTTP/1.1 Host: ads.stickyadstv.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Server: nginx Content-Type: application/xml;charset=UTF-8 Access-Control-Allow-Origin: https://www.heidoc.net Access-Control-Allow-Credentials: true x-sticky-vk: 1663773385949065-541 Content-Length: 67 Expires: Wed, 21 Sep 2022 15:16:26 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 21 Sep 2022 15:16:26 GMT Connection: keep-alive Set-Cookie: UID=43c7427291e184b1753443381244a; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:26 GMT; Path=/`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7e72d0126a31fd2be9fd85369e3f8c70 14affab3e2fb05cc7e77b45e6519a258de91d73b 78cdd8cf188c2b94cb04ae9ee1565779d11bc85edf4bc156dc9ca91aaf810d89 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1997 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Sep 2022 15:16:26 GMT Last-Modified: Wed, 21 Sep 2022 14:43:09 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	hbopenbid.pubmatic.com/translator?source=prebid-client	185.64.190.77	204 No Content	0 B
URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client IP 185.64.190.77:0 ASN #62713 AS-PUBMATIC File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /translator?source=prebid-client HTTP/1.1 Host: hbopenbid.pubmatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1221 Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content access-control-allow-credentials: true access-control-allow-origin: https://www.heidoc.net cache-control: no-cache, no-store, must-revalidate date: Wed, 21 Sep 2022 15:16:24 GMT X-Firefox-Spdy: h2`

	prebid-server.rubiconproject.com/openrtb2/auction	3.65.16.214	200 OK	168 B
URL HTTP/2 prebid-server.rubiconproject.com/openrtb2/auction IP 3.65.16.214:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 168 B (168 bytes) Hash f93b4b23dde424368812670ebe8e393e cd80ba586309a136706ebcf84e6a4a271a6aa3ad 9616f1bb891ed2b871ffce1d7f40e107d35d3b61b24255f116fdc85c27fd5863 HTTP Headers `POST /openrtb2/auction HTTP/1.1 Host: prebid-server.rubiconproject.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1397 Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:26 GMT content-type: application/json content-length: 168 cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-origin: https://www.heidoc.net x-prebid: pbs-java/1.98.0 content-encoding: gzip X-Firefox-Spdy: h2`

	platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html	93.184.220.66	200 OK	15 kB
URL HTTP/1.1 platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html IP 93.184.220.66:0 ASN #15133 EDGECAST File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401) Size 15 kB (15133 bytes) Hash 0262a4c9df3cd76805f2cff429fce32d b724cfa7429c56f49bfb52479f6de794a6522f16 2858f6b0d45005a789c68c3e790aa88646d4cd525dbdb0c19f802de39092c3da HTTP Headers GET /widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 1794129 Cache-Control: public, max-age=315360000 Content-Type: text/html; charset=utf-8 Date: Wed, 21 Sep 2022 15:16:26 GMT Etag: "ed4a924809ffabb3cf1726e3c3186960+gzip" Last-Modified: Wed, 31 Aug 2022 20:40:50 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F71C) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1 Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 15133

	platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html	93.184.220.66	200 OK	14 kB
URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html IP 93.184.220.66:0 ASN #15133 EDGECAST File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033) Size 14 kB (13758 bytes) Hash 4857c35b0e573da8597c313bc75e21b8 32700b3b24c1b14c8414b0c43b062c68a6223e44 c9fda336f239ab983cd973bd30c67e03435d64602a57bf9766ab02fb440e1bdf HTTP Headers GET /widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 1794591 Cache-Control: public, max-age=315360000 Content-Type: text/html; charset=utf-8 Date: Wed, 21 Sep 2022 15:16:26 GMT Etag: "d8dd327ea254eb1c64338d52d55fa0c8+gzip" Last-Modified: Wed, 31 Aug 2022 20:40:54 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F71C) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1 Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 13758

	adx.adform.net/adx/openrtb	37.157.4.24	200 OK	0 B
URL HTTP/2 adx.adform.net/adx/openrtb IP 37.157.4.24:0 ASN #198622 Adform A/S File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /adx/openrtb HTTP/1.1 Host: adx.adform.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.heidoc.net/ Origin: https://www.heidoc.net Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:26 GMT access-control-allow-credentials: true access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With access-control-allow-methods: POST,OPTIONS access-control-allow-origin: https://www.heidoc.net access-control-max-age: 86400 allow: POST,OPTIONS cache-control: no-cache, no-store, must-revalidate, no-transform expires: -1 pragma: no-cache p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT" strict-transport-security: max-age=31536000; includeSubDomains X-Firefox-Spdy: h2

	syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae	104.244.42.8	200 OK	43 B
URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae IP 104.244.42.8:0 ASN #13414 TWITTER File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957 HTTP Headers GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1 Host: syndication.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:25 GMT vary: Origin server: tsa_o content-type: image/gif cache-control: must-revalidate, max-age=600 last-modified: Wed, 21 Sep 2022 15:16:26 GMT content-length: 43 strict-transport-security: max-age=631138519 x-response-time: 109 x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd X-Firefox-Spdy: h2`

	syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae	104.244.42.8	200 OK	43 B
URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae IP 104.244.42.8:0 ASN #13414 TWITTER File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957 HTTP Headers GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1 Host: syndication.twitter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:25 GMT vary: Origin server: tsa_o content-type: image/gif cache-control: must-revalidate, max-age=600 last-modified: Wed, 21 Sep 2022 15:16:26 GMT content-length: 43 strict-transport-security: max-age=631138519 x-response-time: 115 x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd X-Firefox-Spdy: h2`

	mb9eo.publishers.tremorhub.com/pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D	52.44.73.49	302 Found	0 B
URL HTTP/2 mb9eo.publishers.tremorhub.com/pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D IP 52.44.73.49:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D HTTP/1.1 Host: mb9eo.publishers.tremorhub.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 302 Found date: Wed, 21 Sep 2022 15:16:26 GMT content-length: 0 location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid= server: Apache-Coyote/1.1 p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/' X-Firefox-Spdy: h2`

	cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork	192.229.233.50	200 OK	187 B
URL HTTP/2 cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork IP 192.229.233.50:0 ASN #15133 EDGECAST File type ASCII text, with no line terminators Size 187 B (187 bytes) Hash d70e2379fe372f6359e67f23c1e42955 3c2b594a72fd3279ebca9d5758c395ad43126e3d d9540280e7ce86a49435a1d11ecd07fe12ba3ba8c4c06c2299bd48ead667da5d HTTP Headers `GET /widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork HTTP/1.1 Host: cdn.syndication.twimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://platform.twitter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-contol-allow-origin: platform.twitter.com access-control-allow-methods: GET age: 273 cache-control: must-revalidate, max-age=600 content-disposition: attachment; filename=jsonp.jsonp content-type: application/javascript;charset=utf-8 date: Wed, 21 Sep 2022 15:16:26 GMT expires: Wed, 21 Sep 2022 15:26:26 GMT last-modified: Wed, 21 Sep 2022 15:11:53 GMT server: ECS (lhb/62B4) server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=31 strict-transport-security: max-age=631138519 timing-allow-origin: * vary: Accept-Encoding x-cache: HIT x-connection-hash: 0a984feac8c6d2ef749c86c5ca777f59d9507bc0f1cc76c565e273362bdcddb6 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-response-time: 111 x-transaction: 9ea61075d83af5e2 x-tw-cdn: VZ, VZ x-xss-protection: 0 content-length: 187 X-Firefox-Spdy: h2

	www.heidoc.net/php/HeiDoc.png	104.168.147.90	200 OK	68 kB
URL HTTP/2 www.heidoc.net/php/HeiDoc.png IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type data Size 68 kB (67507 bytes) Hash ab409bc5b6c8bee6a1e7695dcea6d0bb e22eb2ccaca1aabf9d77995b4692f0cb902ba8a2 f731811ceca5a668585f93a24daee9646241ac2c9b136b732f8f2666cca291fe HTTP Headers GET /php/HeiDoc.png HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195; __unid=2b594114-0957-ffe3-eb0d-339af3313175 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK last-modified: Thu, 29 Nov 2018 14:26:44 GMT accept-ranges: bytes content-length: 56239 content-type: image/png date: Wed, 21 Sep 2022 15:16:26 GMT server: Apache X-Firefox-Spdy: h2`

	ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent=	23.38.200.201	200 OK	5.5 kB
URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent= IP 23.38.200.201:0 ASN #16625 AKAMAI-AS File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators Size 5.5 kB (5549 bytes) Hash 7725e8e949141c8ded449d86975d4c04 8cd8c314a2002cc26f821d331ab9512f52a551a2 a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae HTTP Headers GET /AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent= HTTP/1.1 Host: ads.pubmatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK last-modified: Tue, 01 Feb 2022 06:38:00 GMT etag: "1300708-3de4-5d6ef246ef4cf" server: Apache accept-ranges: bytes content-encoding: gzip p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC" content-length: 5549 content-type: text/html; charset=UTF-8 cache-control: max-age=64742 expires: Thu, 22 Sep 2022 09:15:29 GMT date: Wed, 21 Sep 2022 15:16:27 GMT vary: Accept-Encoding X-Firefox-Spdy: h2

	ads.stickyadstv.com/auto-user-sync?gdpr=1&gdpr_consent=	23.36.77.41	200 OK	43 B
URL HTTP/1.1 ads.stickyadstv.com/auto-user-sync?gdpr=1&gdpr_consent= IP 23.36.77.41:0 ASN #20940 Akamai International B.V. File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7 HTTP Headers `GET /auto-user-sync?gdpr=1&gdpr_consent= HTTP/1.1 Host: ads.stickyadstv.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Server: nginx Content-Type: image/gif Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true x-sticky-vk: 1663773387526037-579 Content-Length: 43 Expires: Wed, 21 Sep 2022 15:16:27 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 21 Sep 2022 15:16:27 GMT Connection: keep-alive Set-Cookie: UID=18c499c9e41cd9a5135292fa013f9; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:27 GMT; Path=/ sessionId=12e84dd5bbc9b8fe273ea3e65cad5; Domain=ads.stickyadstv.com; Path=/

	eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=	104.88.9.101	200 OK	233 B
URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent= IP 104.88.9.101:0 ASN #16625 AKAMAI-AS File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 233 B (233 bytes) Hash 6220919f0a2b24a12a281ea8b891ecf6 759111c360edc6df73ed10aaaa212cb22c47ce0d 030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180 HTTP Headers `GET /usync.html?gdpr=1&gdpr_consent= HTTP/1.1 Host: eus.rubiconproject.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: Apache/2.2.15 (CentOS) Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT ETag: "40014-119-5d32342a551c0" Accept-Ranges: bytes Content-Encoding: gzip Content-Length: 233 Content-Type: text/html; charset=UTF-8 Date: Wed, 21 Sep 2022 15:16:27 GMT Connection: keep-alive Vary: Accept-Encoding`

	eus.rubiconproject.com/usync.js	104.88.9.101	200 OK	9.4 kB
URL HTTP/1.1 eus.rubiconproject.com/usync.js IP 104.88.9.101:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (17962) Size 9.4 kB (9421 bytes) Hash a20f3b88f594f6b3b76b2824d9719603 eba04551acb08e66d1747b374c7a2d031b70cfc0 a36cf252208e21f17b21841023b8f0ef0c9226ead672a9fd67748310e8787aaf HTTP Headers `GET /usync.js HTTP/1.1 Host: eus.rubiconproject.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: Apache/2.2.15 (CentOS) X-Powered-By: PHP/5.3.3 p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT" Last-Modified: Thu, 15 Sep 2022 22:38:47 GMT Content-Encoding: gzip Content-Length: 9421 Content-Type: text/html; charset=UTF-8 Cache-Control: max-age=47695 Expires: Thu, 22 Sep 2022 04:31:22 GMT Date: Wed, 21 Sep 2022 15:16:27 GMT Connection: keep-alive Vary: Accept-Encoding`

	fonts.googleapis.com/css?family=Open+Sans	216.58.211.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans IP 216.58.211.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 21 Sep 2022 15:16:24 GMT date: Wed, 21 Sep 2022 15:16:24 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	cmp.uniconsent.com/v2/8d3a096937/cmp.js	172.64.141.6	200 OK	0 B
URL HTTP/2 cmp.uniconsent.com/v2/8d3a096937/cmp.js IP 172.64.141.6:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/8d3a096937/cmp.js HTTP/1.1 Host: cmp.uniconsent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript; charset=utf-8 last-modified: Tue, 18 Jan 2022 00:38:54 GMT etag: W/"ebf4c9e816d425037b92642eb9155dca" cache-control: max-age=86400 x-cache-status: MISS access-control-allow-origin: * cf-cache-status: HIT age: 23105 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xNVixz%2B8Zxe8h%2BTzu%2Brn%2B3krauYAtA7GVld%2BoiCres8cE6ht0mIcsCxBWLc4pSckVsXUaRSVN7b0QY4akC30QuGiJYDG0Ni%2BMfwSwX0hORMjwhIRHxzJEBrdARnL0ARTqVgzxGU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 74e3c3035fba888b-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers `GET /content/ClientDetections/iab_consent_sdk.v1.0.js HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript last-modified: Wed, 12 Feb 2020 15:01:36 GMT etag: W/"5e441350-4be0" expires: Thu, 21 Sep 2023 15:16:24 GMT cache-control: max-age=31536000, public accept-ranges: bytes content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid=	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid= IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid= HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:26 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers `GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/live/liveView.php?hash=ozcmPTEznXRiPTEzqzyxX2V2ZW50PTM2JaNypaZypyRcoWU9MTY2Mmp3MmM4NCZ2nWRspGkurWVlVzVlPTMhMS4jJaM9MTAjMwp5JaN0YT0jJat9MmMjJax9MTtjJaZcZF9jYXNmRG9gYWyhPXq3ql5bZWyxo2MhozV0JaN1YxyxPXq3ql5bZWyxo2MhozV0JzRyYaVaSW5zo3JgYXRco249JzymQXBjPTAzp2Reqw0zqXNypxyjQWRxpw05MS45MC40Mv4kNTQzqXNypyVBPU1irzyfoGEyMxY1LwAyMwAyMwuYMTEyM0IyMwBMnW51rCUlMHt4Ny82NCUmQvUlMHJ2JTNBOTYhMCUlOSUlMEqyY2giJTJGMwAkMDAkMDEyMwBGnXJyZz94JTJGOTYhMCZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwo250ZW50RzyfZUyxPTAzoWVxnWFQoGF5TGymqEyxPTAzoWVxnWFMnXN0SWQ9MCZaZHBlPTEzZ2RjpxNioaNyoaQ9Q1BzpDBaQVBzpDBaQUJFQUNCRU5DnENaQUFBQUFIX0FBQaBZQUFBUVuuXl12Xl0mqy9QOV8mN19sYz84rHFsN18mX2Y5pG5IQl03Ywx0YaNsLXYgWDR2X3NnM2VMqwFUWHqWY2c4SzR1MxNRZmquT2RPNG1jTzbkUxglWG1zWTNKp1cYMzFVVDJzSx5QWTI5pmZ3TVA3X1A3qW4grVV6M19sX19sXmNsX19sX19sX19sX19sX19sX19sX19sX185X19sX183X19sX19sX19sX19sN19sX184QUFBJzymV2VQYXNmR2Rjpw0jJzNwpGE9MCZwY3BuQ29hp2VhqD0zY2J1p3Rypw0kNwYmNmpmMmt3NTQ4JaVcZD1TZWgcozRiU1BfYXyypwYmMzIlYWM4ZGNuNmMzpHVvVXJfPWu0qHBmJTNBJTJGJTJGq3q3LzuynWRiYl5hZXQyMxZdo29goGEyMxZ0ZWNboz9fo2q5LXNwnWVhY2UyMxZgnWNlo3NiZaQyMxY2Nl1gnWNlo3NiZaQgq2yhZG93pl1uozQgo2ZznWNyLWymol1xo3qhoG9uZC10o29fJTImZ29iZ2kyX3ZcZ25yqHRyJzZfo2F0U3RuqHVmPWZuoHNyJzVcZHNjPXBlZWJcZA== IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:26 GMT content-type: text/html; charset=UTF-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: * cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool	104.168.147.90	200 OK	0 B
URL HTTP/2 www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool IP 104.168.147.90:0 ASN #54290 HOSTWINDS File type Size 0 B (0 bytes) Hash HTTP Headers GET /joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool HTTP/1.1 Host: www.heidoc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" expires: Wed, 17 Aug 2005 00:00:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache content-encoding: gzip vary: Accept-Encoding,User-Agent set-cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; path=/; secure; HttpOnly x-content-type-options: nosniff last-modified: Wed, 21 Sep 2022 15:16:23 GMT content-type: text/html; charset=utf-8 date: Wed, 21 Sep 2022 15:16:23 GMT server: Apache X-Firefox-Spdy: h2

	accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__	216.58.207.237	200 OK	0 B
URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ IP 216.58.207.237:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1 Host: accounts.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/html; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 21 Sep 2022 15:16:25 GMT content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-ikCuVVOabmL5LLTPIMG-AQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport content-encoding: gzip server: ESF x-xss-protection: 0 x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.heidoc.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:25 GMT content-type: text/html; charset=utf-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers `GET /content/prebid/prebidVid.6.18.0_15.min.js HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript last-modified: Mon, 22 Aug 2022 17:00:33 GMT etag: W/"6303b631-7fe72" expires: Thu, 21 Sep 2023 15:16:24 GMT cache-control: max-age=31536000, public accept-ranges: bytes content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers `GET /content/ClientDetections/DetectGDPR.v1.1.js HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: application/javascript last-modified: Thu, 11 Feb 2021 09:45:48 GMT etag: W/"6024fccc-1ef8" expires: Thu, 21 Sep 2023 15:16:24 GMT cache-control: max-age=31536000, public accept-ranges: bytes content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js	143.204.46.73	200 OK	0 B
URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js IP 143.204.46.73:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1 Host: c.amazon-adsystem.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.heidoc.net Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Mon, 19 Sep 2022 09:37:07 GMT x-amz-version-id: I95TjGhhrR3O7F99m0mjPLrSrnJRj9o4 server: AmazonS3 content-encoding: gzip date: Wed, 21 Sep 2022 09:37:52 GMT cache-control: public, max-age=86400 etag: W/"a4d296427fc806b21335359e398c025c" vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 4YuobT6UCbMFYSgnWqjin2TE9VH4kVdTfyG8JZbJZjzjXHjZueJwVQ== age: 20314 X-Firefox-Spdy: h2

	live.primis.tech/live/liveView.php?hash=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	194.146.38.23	200 OK	0 B
URL HTTP/2 live.primis.tech/live/liveView.php?hash=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 IP 194.146.38.23:0 ASN #41436 Kamatera Inc File type Size 0 B (0 bytes) Hash HTTP Headers GET /live/liveView.php?hash=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 HTTP/1.1 Host: live.primis.tech User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.heidoc.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 21 Sep 2022 15:16:24 GMT content-type: text/html; charset=UTF-8 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" access-control-allow-origin: * cache-control: no-store pragma: no-cache age: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (60)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations