firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 15:13:36 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NZSS-9g5x---TVCOrpCYCvZLBpixPgkVmmpCV8-FH5I7k8M1IQi7Sw==
Age: 167
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JWqXjGQN7VjOAU4iqPygxxFipPAYV5a-itK_VSTdL7clP8l6pmCNAA==
age: 38470
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 21 Sep 2022 16:07:15 GMT
Date: Wed, 21 Sep 2022 15:16:23 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 15:50:33 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -ddzx0vB5FWSZi03EO2Cxr4Nek2JNfc-6ZpDaH1nK0C0y6Q7_9dZlw==
Age: 781
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Last-Modified: Wed, 21 Sep 2022 13:56:21 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 87196299c7d78f0c9fa810e76396da69
495fbe3818b3fe996704cb14370d27c15d786881
5644ac089a5d15b976af9f45578739e63c8866f1b7ab493bb1865df576d7e2e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6cbf15e4fbd4d7b47884be950e77651c
c50b9202568de1e325f51d9897ae1643ea018194
3895b05531b0330d9b154f5785b5a101615a341097618c4d6d6abe586f57e356
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Last-Modified: Wed, 21 Sep 2022 13:35:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Wed, 21 Sep 2022 15:16:24 GMT
expires: Wed, 21 Sep 2022 15:16:24 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.heidoc.net/joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 882 B URL HTTP/2 www.heidoc.net/joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
Hash 40840162b74827df74d56b5c0f852cc9
a73d9d4418289341df5704f1d3785f27431b8a8d
89f69228223e7f74a4b3172d8f1624c368bdc3ab0bc6918d7714d58a2a758ba8
GET /joomla/media/com_finder/css/finder.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 882
content-type: text/css
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 2.5 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
Hash 3b43d93e949645cdc801953016be48a8
757e19bb4b2e0953515a77b889a36b0cc2ce4f66
622c594ffa0e3e23031b7b57c3919ab2f769bf33b42ce87f035b254ceddd1fd2
GET /joomla/media/jui/css/chosen.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2477
content-type: text/css
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 21 B URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
GET /joomla/media/jui/js/jquery-noconflict.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
content-length: 21
vary: User-Agent
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 336 B URL HTTP/2 www.heidoc.net/joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (413)
Hash 6d37e4491c806fe1280ea6af868c307c
76bd49025156b7c2507189bb48cc83142e8177dd
fcdc70db37bd7884b1b94358f4849eb7e6a88bcafe82c93df635913ae03039cb
GET /joomla/media/system/js/caption.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 336
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 4.0 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
GET /joomla/media/jui/js/jquery-migrate.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4014
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 854 B URL HTTP/2 www.heidoc.net/joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
Hash cba5cd2c73fc5ac6dd94499cf2944789
38adac5e9554915b77bcd0b8a064610b022e7eba
50a39514f9ab1d04a0fa77ce29bbec83aecb50669aaa8c9b413f4b3459db4660
GET /joomla/templates/protostar/js/template.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 854
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 7.7 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (34239), with no line terminators
Hash 5081b3c5184481953f70a939db265e84
fc18cf7535fb7418c125c17af5304372006a6101
0bff322b82238815f3daf0bad29c2a0bd8206fcf969c0d1f37021adc1b56b055
GET /joomla/media/jui/js/chosen.jquery.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7734
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6cbf15e4fbd4d7b47884be950e77651c
c50b9202568de1e325f51d9897ae1643ea018194
3895b05531b0330d9b154f5785b5a101615a341097618c4d6d6abe586f57e356
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Last-Modified: Wed, 21 Sep 2022 13:35:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 11bdefa1c173000212023bd4e57ee5b9
746c1f161d540f528b426c86876e386f7c50188d
10b3551dd7d7211511dd7c4f0e0e529c869e930cebadcb51bc3091b3fb03bbf2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 15:16:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 20:56:14 GMT
Expires: Wed, 21 Sep 2022 20:56:14 GMT
ETag: "746c1f161d540f528b426c86876e386f7c50188d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 25 kB URL HTTP/2 www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
Hash cdb80559d7c2ca3f447dabcf4c23e5d6
f657ae4404f48c4c6afade113783c98defbcdf99
2f655d27f9854b6724aee1dedaf6e09b4ee2923eb4eea948bb641b0c5018d4c8
GET /joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 25412
content-type: text/css
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 7.7 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (28972)
Hash b332934475ad590347e3386f241697ed
fce0455f58c1e3292eaf206918feeebc283f8009
b3a551f32b7b8f113b7c46efaa38d1ea3f7ee07ae92c27e32f29544b01fad830
GET /joomla/media/jui/js/bootstrap.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7747
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.88.220.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.220.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RHtLtOzxH3RziALTgCJjWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VDF8LEqh9GVm5Jpf5PYPcv7hS3A=
www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 34 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (65462)
Hash 1e4c4d71727b85c5b25e291f18f71d46
4f5765c8610f20bbb598333f6f89582c7c4392c9
2db97efab7e8c7d66985d945ba302ab4990fb7aee2b98a26a50ed2e74bc58a92
GET /joomla/media/jui/js/jquery.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 34137
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d
104.168.147.90200 OK 4.4 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d
IP 104.168.147.90:0
File type ASCII text, with very long lines (12836), with CRLF line terminators
Hash 0a8b81a0d2ca0951db4e4e178bdac5c7
d76b1ba0ff09bebf37c53aa81945a1eb4fafcb83
02285bb1d14b00507cc14df29b61f2a686424e9c8838c12ed023955030b3e503
GET /joomla/media/jui/js/jquery.autocomplete.min.js?8717eda51077d32c993f46df2f9b7d5d HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4448
content-type: application/javascript
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/templates/protostar/images/system/rating_star.png
104.168.147.90200 OK 201 B URL HTTP/2 www.heidoc.net/joomla/templates/protostar/images/system/rating_star.png
IP 104.168.147.90:0
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d5b327713e633a65977e78043af759e
9332bbc4e2b2778081f636cde137e27fd6bfd95d
5cf849bf338d400f7a08a7a65a8a06e13c46fead0d3865705269f8b813e5ff40
GET /joomla/templates/protostar/images/system/rating_star.png HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
content-length: 201
content-type: image/png
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/templates/protostar/images/system/rating_star_blank.png
104.168.147.90200 OK 186 B URL HTTP/2 www.heidoc.net/joomla/templates/protostar/images/system/rating_star_blank.png
IP 104.168.147.90:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash add5dec655f51377a42bca8bacbe325b
7b60b58902e1955b14fe09a932fa8eb848cb1d51
b47b00e13c8e9fcb8ff501c9f2ddbe67493111796e4b5693f0a9a37e60e7ee55
GET /joomla/templates/protostar/images/system/rating_star_blank.png HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
content-length: 186
content-type: image/png
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/system/images/arrow.png
104.168.147.90200 OK 107 B URL HTTP/2 www.heidoc.net/joomla/media/system/images/arrow.png
IP 104.168.147.90:0
File type PNG image data, 9 x 9, 8-bit/color RGB, non-interlaced\012- data
Hash fabb7d983ab5d85e40a4cac217434f91
0f1affe3748426e03504d98b01f30eb402f70fa4
1f52c94170d531a2e706e6eba721d81bffc13847e1873592f729ff49acf58d4b
GET /joomla/media/system/images/arrow.png HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
content-length: 107
content-type: image/png
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/images/heidoc/header.jpg
104.168.147.90200 OK 31 kB URL HTTP/2 www.heidoc.net/joomla/images/heidoc/header.jpg
IP 104.168.147.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=3d illustration of detailed virtual planet Earth. Technological digital globe world, xresolution=2278, yresolution=2286, resolutionunit=2], baseline, precision 8, 700x120, components 3\012- data
Hash 6f101cf8bed5b5cb3022e230fddedd55
905967747cf416f896e1ad063dfd530bc60c7d0d
fbfd6c560e9baf3ed614703f75649a083cb66a788eb3fae75faacdb521f29aed
GET /joomla/images/heidoc/header.jpg HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Thu, 25 May 2017 15:34:01 GMT
accept-ranges: bytes
content-length: 31238
content-type: image/jpeg
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.heidoc.net/joomla/images/microsoft/win-downloader.png
104.168.147.90200 OK 69 kB URL HTTP/2 www.heidoc.net/joomla/images/microsoft/win-downloader.png
IP 104.168.147.90:0
File type PNG image data, 1256 x 788, 8-bit colormap, non-interlaced\012- data
Hash 24e3dc852d4e225cb00bf41183041652
d065186c09fcc0ec55b3fbb86531ad37789709e1
7b62fbb3f30a93e598172bbfa880520d6abed49fc4f2a51cb0583cc6e810ac75
GET /joomla/images/microsoft/win-downloader.png HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Thu, 20 Dec 2018 17:06:12 GMT
accept-ranges: bytes
content-length: 68597
content-type: image/png
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:53:39 GMT
expires: Tue, 19 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 159765
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]
194.146.38.23200 OK 17 kB URL HTTP/2 live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]
IP 194.146.38.23:0
Hash f7421db4bd87aeed285ec1bacdd1af74
816fe6c71dc290e60350695db6e31024e430969e
2b7924acb914228e981744b932a7e25247dc6ebf9a55100c04dcb1c0e4f29d34
GET /live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED] HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: text/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.heidoc.net/joomla/media/jui/fonts/IcoMoon.woff
104.168.147.90200 OK 25 kB URL HTTP/2 www.heidoc.net/joomla/media/jui/fonts/IcoMoon.woff
IP 104.168.147.90:0
File type Web Open Font Format, CFF, length 25424, version 1.0\012- data
Hash 910a8fd387e6c5ac62dbe014dc131960
78d797741e92a0fb3094ad076dfd0ae8f1c36713
6d362fa22342a2d22cbe8d4472d2d11a8d0864310ee2e8e48ede3148465a609d
GET /joomla/media/jui/fonts/IcoMoon.woff HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/templates/protostar/css/template.css?8717eda51077d32c993f46df2f9b7d5d
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
content-length: 25424
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Wed, 21 Sep 2022 15:16:24 GMT
server: Apache
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 393
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 21 Sep 2022 15:16:24 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3ef019ce781ddbb79938868e1bf969be
27db5803c535a597bb29c96fc111255b14f4219d
60ade2388afdea80bb7c88016be34c92f7005c21dda6fe6ad07d4dba060744d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14d31c538ef2caf4422a82eae13752fb
64a60fba95891f5dcc3d098c78ca3705d679c073
9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2248
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Last-Modified: Wed, 21 Sep 2022 14:38:56 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_GB/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_GB/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash f720d391e4a05c6d7044f801e0afe276
8ac1553dd5d6b0b323c399c0f85455266af5ffdd
f9f8d2e7e1feb334a19bddb1fa783afcf98126c6da2dc68eb54da466a88a82f8
GET /en_GB/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5bae93d3f4a32133adb246db2b0ec195
etag: "cfaf5be0e68469ce49ef38fda7d863fc"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 21 Sep 2022 15:23:16 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 9yDTkeSgXG1wRPgB4K/idg==
x-fb-debug: R6Cg4Z7ZmvMiuuOdtBe8WU2Il+1X75ymFq7Q8bPDJwUPK03HCWr+aLV7MR/8JOJmodwN7R7EWrJ3YV0gUN4aIQ==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 15:16:24 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14d31c538ef2caf4422a82eae13752fb
64a60fba95891f5dcc3d098c78ca3705d679c073
9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4741
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Last-Modified: Wed, 21 Sep 2022 13:57:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.2200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (2903)
Hash 2f550994df82cf1bec56ff023ae294e5
e47e3b7d8071bd8e5b3b583f0e52def74dab02d3
4259b29579a00c74eb0eacd12a3f7d6a9cab932620628f73230ad616204e0680
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Wed, 21 Sep 2022 15:16:24 GMT
expires: Wed, 21 Sep 2022 15:16:24 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10098719205867780677
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 58017
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.heidoc.net HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1794793
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Sep 2022 15:16:24 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
www.heidoc.net/joomla/templates/protostar/favicon.ico
104.168.147.90200 OK 1.5 kB URL HTTP/2 www.heidoc.net/joomla/templates/protostar/favicon.ico
IP 104.168.147.90:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 722e588e6f0d1f72c00f595514924dd8
ea90659b7a6b829ff1d04e342ff91598653ca70e
41984554d48cf9b42fcf3c11f25cf1e37a5e5785755b82aad327d9eef92ec0aa
GET /joomla/templates/protostar/favicon.ico HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-content-type-options: nosniff
last-modified: Sun, 14 Aug 2022 15:21:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1480
content-type: image/x-icon
date: Wed, 21 Sep 2022 15:16:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c3488c12aad0554e2bf27b9973ec0870
dd261f39ecb54fd67196520d215c3fd7aff023cc
94aa53fc93c54c467f9a214585bb3c6ad81529c24bce8f4c48608925e52c039d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js
194.146.38.23200 OK 92 kB URL HTTP/2 live.primis.tech/content/ClientDetections/DetectGDPR2.v1.1.js
IP 194.146.38.23:0
File type ASCII text, with very long lines (18598)
Hash 28f53a9471929ce48c57e3a7beae3f1f
c897e662467ce5c7b67e4c1668c7a190c7b957f3
8ddf42d27d1f8e4521d3eb73c7d242da6da7049702e969c8e67ce4db8ce59dc4
GET /content/ClientDetections/DetectGDPR2.v1.1.js HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript
last-modified: Thu, 11 Feb 2021 09:45:48 GMT
etag: W/"6024fccc-228f"
expires: Thu, 21 Sep 2023 15:16:24 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=64744
expires: Thu, 22 Sep 2022 09:15:29 GMT
date: Wed, 21 Sep 2022 15:16:25 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=pm01ODA1NlZ2nWRsqzFmqFRcoWViqXQ9LTEzqzyxX3Zup3RUrXByPTMzqzyxX3BfYXyypyZypw0mLwEhMCZ2nWRsqzyyq2FvnWkcqHyTqGF0ZT0jJaZcZF9wo250ZW50X3VloD1bqHRjplUmQSUlRvUlRaZcZGViLaBlnW1cpl50ZWNbJTJGqXBfo2FxplUlRzNhMTEyMxZ2nWRyolUlRaVmZXJmJTJGY29hqzVlqGVxJTJGMmAjMmpyMxZ2nWRyo181Zwx2OWQ0Y2YjZTA0NwY4MmE3NTE5JTJGqzyxNwMlYTM0NWU2N2U0ZTtmMTY4NmMkNl5gpDQyM0Z0o2fyM0Ryq29aSUNBZ0ygRaNnrUx2SUNKSVV6STFOnUymQ2yBZ0yDQWyxSGk3SWciZ0yepFuWQ0yLZyEhZXqiZ0yDQWqJoWk6Y3yJNxyDSyFwoWk0YVuNnUkBo2qJQ0FaSW5OMVycSTZJQ0y2ZFuCp2IlRzgwrTydYzcFrEjmWaBnR1Z2TDNWrycYSacMMx52Yz5noGNhUzknQmu6TURBrx55OTJuV1JfYwE4MVcdnmJPV1EjWTJZq1cUQTBOnyx0TXcFM05URTVMM1cjWxRZrx1gRXcORFZfTzcxoE5HVTRNrxUlT0Rwrx1UY3VvWEEjSWy3S0yDQWqJQ0c1WW1ZnU9cQXuOnyy6TacBM05dQXqMQW9aSUNBZ0ygVwRwQ0x2SURFMx5dTTRNVGpkTxRBS2ZRLyIjOGNJpmBiZ1RJVFMjQTRDN0MgVaBXomRHS3yIrXU1X2yFT0ZSR3uaY2pzqzyxX2NioaRyoaRsnWQ9MwUlNmI0OSZ2nWRsY29hqGVhqF9xZXNwPUFjpGkyK2NiLWZiqW5xZXIeU3RyqzUeV296ozyunlglZW51nXRyplg3nXRbJTJDK3NcZ25mK2ucplfkOTp2K0FjpGkyK0xeoW90nGVlYz9upzQeY3JyYXRco24zqzyxX2NioaRyoaRsqGy0oGU9QXBjoGUeY28gZz91ozRypvgTqGV2ZSgXo3chnWFeK3JyoaVcqGVmK3qcqGtyMxMep2yaoaMenGymKmE5NmYeQXBjoGUeSSggo3RbZXJvo2FlZCgwpzVuqGyiovZ2nWRsY29hqGVhqF9xqXJuqGyiow02MCZxZWJ1Z0yhZz9loWF0nW9hPSZ4PTMmMCZ5PTE4MCZjqWJVpzj9nHR0pHMyM0EyMxYyMxZ3q3phnGVcZG9wLz5yqCUlRzcio21fYSUlRaRyY2uho2kiZ3xgp2NcZW5wZSUlRz1cY3Jip29zqCUlRwY3LW1cY3Jip29zqC13nW5xo3qmLWFhZC1iZzZcY2UgnXNiLWRiq25fo2FxLXRio2jyMwNao29aoGVsqzyaozV0qGUzpzx9NxM2OTp2NwU1Mmp0NwE3NDpmN0M3MmZCMmE3QwU0MmA3RDqCNwQmMwMjMmImMwJEMmAmOTJEMmImMTVGMmEmODqEN0I3MmMkMmEmODM2MmImMDM3Mmt3RDqCNDMmMwMkMmp3RDqCNTM2NDMmNwQmMmRDNxQ2ODZDNwE1NmUlNmY1OTp5MmU3NTVBNTt1MTNEN0Q3QwYlNwY2OTplNwU2NwZGNmt3RDqCNmE2NDY1NmM2Qwp0NxY3MDqEN0I2RwZDNwx2RTp1Nmt3RDqCNTtmMmMmMmA3RDqCNTxmMTM4MmA3RDqCNwYmMTqEN0I0QmM2MmEmODMjN0RGRUZFJzymQXBjPTAzp2Reqw0zZ2ViTGF0nT01OS45NDUlJzqyo0kiozp9MTAhNmU1OSZ1p2VlSXBBZGRlPTxkLwxjLwQlLwE1NCZ1p2VlVUE9TW96nWkfYSUlRwUhMCfyMwuYMTEyM0IeTGyhqXterDt2XmY0JTNCK3J2JTNBOTYhMCUlOSgHZWNeolUlRwIjMTAjMTAkK0ZcpzVzo3tyMxY5Nv4jJaBfYXyypxFjnUyxPSZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwYaVmqGVlPTE2NwM3NmMmODUkNwEzZ2Rjpw0kJzqxpHJDo25mZW50PSZcp1qyUGFmp0qxpHI9MA==
194.146.38.23200 OK 3.2 kB URL HTTP/2 live.primis.tech/live/liveView.php?hash=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
IP 194.146.38.23:0
File type JSON data\012- , ASCII text, with very long lines (8711), with no line terminators
Hash e7ef52cff2edec170cb539b920b40958
b4336f552b822a4450a55af0e7e25d72b820d2d4
85cc99b962e8b2b2e386a151bb1574a37d8c59727d306276f2dd89747a300281
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/json; charset=utf-8
content-length: 3228
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.heidoc.net
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1d8d534a614ce4982334f15a21b8529
85f2f73fcbf7d6aa037a3c4ed98be481752f88bb
938d4dd7e4c2419f567dd2ba64c6527bf8f7a4253e24aaba675f9ac029eaa112
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4392
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:03:13 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition=
194.146.38.23200 OK 2.7 kB URL HTTP/2 live.primis.tech/live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition=
IP 194.146.38.23:0
Hash 6908402006c1a94e76e66cb73da44491
5d641d6c6a646e212c433fa84edb3b173e9ab53b
cb82b4d2dfaa2414c4a1ccf2a2cabadd7d5a33ed21fc474323d72e728aade6d1
GET /live/liveView.php?s=100279&cbuster=[CACHE_BUSTER]&pubUrl=[PAGE_URL_ENCODED]&vp_content=plembed1506xghviutn&subId=[SUBID_ENCODED]&cbuster=1663773384&pubUrlAuto=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&csuuid=632b2ac856195&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition= HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: text/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=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
194.146.38.23200 OK 3.2 kB URL HTTP/2 live.primis.tech/live/liveView.php?hash=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
IP 194.146.38.23:0
File type JSON data\012- , ASCII text, with very long lines (8707), with no line terminators
Hash 6e6cebd1217394b868290d6c41a3ea5d
e7a1c1a4fdc0dd668f6db17a345d8e7e89061900
b1cc00035ed0ce0ba2a5d5071604e62eea9ca04e62c4d74a0da2362b261e2192
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/json; charset=utf-8
content-length: 3215
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.heidoc.net
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=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
194.146.38.23200 OK 5.4 kB URL HTTP/2 live.primis.tech/live/liveView.php?hash=pm01ODA1NlZ2nWRsqzFmqFRcoWViqXQ9LTEzqzyxX3Zup3RUrXByPTMzqzyxX3BfYXyypyZypw0mLwEhMCZ2nWRsqzyyq2FvnWkcqHyTqGF0ZT0kJaZcZF9wo250ZW50X3VloD1bqHRjplUmQSUlRvUlRaZcZGViLaBlnW1cpl50ZWNbJTJGqXBfo2FxplUlRzNhMTEyMxZ2nWRyolUlRaVmZXJmJTJGY29hqzVlqGVxJTJGMmAjMmpyMxZ2nWRyo181Zwx2OWQ0Y2YjZTA0NwY4MmE3NTE5JTJGqzyxNwMlYTM0NWU2N2U0ZTtmMTY4NmMkNl5gpDQyM0Z0o2fyM0Ryq29aSUNBZ0ygRaNnrUx2SUNKSVV6STFOnUymQ2yBZ0yDQWyxSGk3SWciZ0yepFuWQ0yLZyEhZXqiZ0yDQWqJoWk6Y3yJNxyDSyFwoWk0YVuNnUkBo2qJQ0FaSW5OMVycSTZJQ0y2ZFuCp2IlRzgwrTydYzcFrEjmWaBnR1Z2TDNWrycYSacMMx52Yz5noGNhUzknQmu6TURBrx55OTJuV1JfYwE4MVcdnmJPV1EjWTJZq1cUQTBOnyx0TXcFM05URTVMM1cjWxRZrx1gRXcORFZfTzcxoE5HVTRNrxUlT0Rwrx1UY3VvWEEjSWy3S0yDQWqJQ0c1WW1ZnU9cQXuOnyy6TacBM05dQXqMQW9aSUNBZ0ygVwRwQ0x2SURFMx5dTTRNVGpkTxRBS2ZRLyIjOGNJpmBiZ1RJVFMjQTRDN0MgVaBXomRHS3yIrXU1X2yFT0ZSR3uaY2pzqzyxX2NioaRyoaRsnWQ9MwUlNmI0OSZ2nWRsY29hqGVhqF9xZXNwPUFjpGkyK2NiLWZiqW5xZXIeU3RyqzUeV296ozyunlglZW51nXRyplg3nXRbJTJDK3NcZ25mK2ucplfkOTp2K0FjpGkyK0xeoW90nGVlYz9upzQeY3JyYXRco24zqzyxX2NioaRyoaRsqGy0oGU9QXBjoGUeY28gZz91ozRypvgTqGV2ZSgXo3chnWFeK3JyoaVcqGVmK3qcqGtyMxMep2yaoaMenGymKmE5NmYeQXBjoGUeSSggo3RbZXJvo2FlZCgwpzVuqGyiovZ2nWRsY29hqGVhqF9xqXJuqGyiow02MCZxZWJ1Z0yhZz9loWF0nW9hPSZ4PTImOCZ5PTE2OCZjqWJVpzj9nHR0pHMyM0EyMxYyMxZ3q3phnGVcZG9wLz5yqCUlRzcio21fYSUlRaRyY2uho2kiZ3xgp2NcZW5wZSUlRz1cY3Jip29zqCUlRwY3LW1cY3Jip29zqC13nW5xo3qmLWFhZC1iZzZcY2UgnXNiLWRiq25fo2FxLXRio2jyMwNao29aoGVsqzyaozV0qGUzpzx9NxM2OTp2NwU1Mmp0NwE3NDpmN0M3MmZCMmE3QwU0MmA3RDqCNwQmMwMjMmImMwJEMmAmOTJEMmImMTVGMmEmODqEN0I3MmMkMmEmODM2MmImMDM3Mmt3RDqCNDMmMwMkMmp3RDqCNTM2NDMmNwQmMmRDNxQ2ODZDNwE1NmUlNmY1OTp5MmU3NTVBNTt1MTNEN0Q3QwYlNwY2OTplNwU2NwZGNmt3RDqCNmE2NDY1NmM2Qwp0NxY3MDqEN0I2RwZDNwx2RTp1Nmt3RDqCNTtmMmMmMmA3RDqCNTxmMTM4MmA3RDqCNwYmMTqEN0I0QmM2MmEmODMjN0RGRUZFJzymQXBjPTAzp2Reqw0zZ2ViTGF0nT01OS45NDUlJzqyo0kiozp9MTAhNmU1OSZ1p2VlSXBBZGRlPTxkLwxjLwQlLwE1NCZ1p2VlVUE9TW96nWkfYSUlRwUhMCfyMwuYMTEyM0IeTGyhqXterDt2XmY0JTNCK3J2JTNBOTYhMCUlOSgHZWNeolUlRwIjMTAjMTAkK0ZcpzVzo3tyMxY5Nv4jJaBfYXyypxFjnUyxPSZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwYaVmqGVlPTE2NwM3NmMmODUlMDQzZ2Rjpw0kJzqxpHJDo25mZW50PSZcp1qyUGFmp0qxpHI9MA==
IP 194.146.38.23:0
File type JSON data\012- , ASCII text, with very long lines (37691), with no line terminators
Hash 92cc69af0f55b05019a1e873c55b7abe
d55bab7eb4a529dd02edf91f5c8d32ab9a23ad49
c1767c6c4d4547ff86ea103af1ec7ac3ca7d7db9ed7b4c7336a80150ad41540f
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/json; charset=utf-8
content-length: 5419
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.heidoc.net
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2
u.openx.net/w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D
34.98.64.218200 OK 56 B URL HTTP/2 u.openx.net/w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D
IP 34.98.64.218:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 15669dda86db3cbff7835fa202dc0b16
ce788cab9c1aa7e458a3971a59702c410b37e64d
5cc3f958039a8885c4e9526e22d454da47d579b9a02861e7a60b41fa0ba910df
GET /w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D98%26advUuid%3D HTTP/1.1
Host: u.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=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
194.146.38.23200 OK 6.1 kB URL HTTP/2 live.primis.tech/live/liveView.php?hash=pm01ODA1NlZ2nWRsqzFmqFRcoWViqXQ9LTEzqzyxX3Zup3RUrXByPTMzqzyxX3BfYXyypyZypw0mLwEhMCZ2nWRsqzyyq2FvnWkcqHyTqGF0ZT0kJaZcZF9wo250ZW50X3VloD1bqHRjplUmQSUlRvUlRaZcZGViLaBlnW1cpl50ZWNbJTJGqXBfo2FxplUlRzNhMTEyMxZ2nWRyolUlRaVmZXJmJTJGY29hqzVlqGVxJTJGMmAjMmpyMxZ2nWRyo181Zwx2OWQ0Y2YjZTA0NwY4MmE3NTE5JTJGqzyxNwMlYTM0NWU2N2U0ZTtmMTY4NmMkNl5gpDQyM0Z0o2fyM0Ryq29aSUNBZ0ygRaNnrUx2SUNKSVV6STFOnUymQ2yBZ0yDQWyxSGk3SWciZ0yepFuWQ0yLZyEhZXqiZ0yDQWqJoWk6Y3yJNxyDSyFwoWk0YVuNnUkBo2qJQ0FaSW5OMVycSTZJQ0y2ZFuCp2IlRzgwrTydYzcFrEjmWaBnR1Z2TDNWrycYSacMMx52Yz5noGNhUzknQmu6TURBrx55OTJuV1JfYwE4MVcdnmJPV1EjWTJZq1cUQTBOnyx0TXcFM05URTVMM1cjWxRZrx1gRXcORFZfTzcxoE5HVTRNrxUlT0Rwrx1UY3VvWEEjSWy3S0yDQWqJQ0c1WW1ZnU9cQXuOnyy6TacBM05dQXqMQW9aSUNBZ0ygVwRwQ0x2SURFMx5dTTRNVGpkTxRBS2ZRLyIjOGNJpmBiZ1RJVFMjQTRDN0MgVaBXomRHS3yIrXU1X2yFT0ZSR3uaY2pzqzyxX2NioaRyoaRsnWQ9MwUlNmI0OSZ2nWRsY29hqGVhqF9xZXNwPUFjpGkyK2NiLWZiqW5xZXIeU3RyqzUeV296ozyunlglZW51nXRyplg3nXRbJTJDK3NcZ25mK2ucplfkOTp2K0FjpGkyK0xeoW90nGVlYz9upzQeY3JyYXRco24zqzyxX2NioaRyoaRsqGy0oGU9QXBjoGUeY28gZz91ozRypvgTqGV2ZSgXo3chnWFeK3JyoaVcqGVmK3qcqGtyMxMep2yaoaMenGymKmE5NmYeQXBjoGUeSSggo3RbZXJvo2FlZCgwpzVuqGyiovZ2nWRsY29hqGVhqF9xqXJuqGyiow02MCZxZWJ1Z0yhZz9loWF0nW9hPSZ4PTQjMCZ5PTIlNSZjqWJVpzj9nHR0pHMyM0EyMxYyMxZ3q3phnGVcZG9wLz5yqCUlRzcio21fYSUlRaRyY2uho2kiZ3xgp2NcZW5wZSUlRz1cY3Jip29zqCUlRwY3LW1cY3Jip29zqC13nW5xo3qmLWFhZC1iZzZcY2UgnXNiLWRiq25fo2FxLXRio2jyMwNao29aoGVsqzyaozV0qGUzpzx9NxM2OTp2NwU1Mmp0NwE3NDpmN0M3MmZCMmE3QwU0MmA3RDqCNwQmMwMjMmImMwJEMmAmOTJEMmImMTVGMmEmODqEN0I3MmMkMmEmODM2MmImMDM3Mmt3RDqCNDMmMwMkMmp3RDqCNTM2NDMmNwQmMmRDNxQ2ODZDNwE1NmUlNmY1OTp5MmU3NTVBNTt1MTNEN0Q3QwYlNwY2OTplNwU2NwZGNmt3RDqCNmE2NDY1NmM2Qwp0NxY3MDqEN0I2RwZDNwx2RTp1Nmt3RDqCNTtmMmMmMmA3RDqCNTxmMTM4MmA3RDqCNwYmMTqEN0I0QmM2MmEmODMjN0RGRUZFJzymQXBjPTAzp2Reqw0zZ2ViTGF0nT01OS45NDUlJzqyo0kiozp9MTAhNmU1OSZ1p2VlSXBBZGRlPTxkLwxjLwQlLwE1NCZ1p2VlVUE9TW96nWkfYSUlRwUhMCfyMwuYMTEyM0IeTGyhqXterDt2XmY0JTNCK3J2JTNBOTYhMCUlOSgHZWNeolUlRwIjMTAjMTAkK0ZcpzVzo3tyMxY5Nv4jJaBfYXyypxFjnUyxPSZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwYaVmqGVlPTE2NwM3NmMmODUlMDUzZ2Rjpw0kJzqxpHJDo25mZW50PSZcp1qyUGFmp0qxpHI9MA==
IP 194.146.38.23:0
File type JSON data\012- , ASCII text, with very long lines (45116), with no line terminators
Hash 9b6d0abed88c71b39fa69a7116c8a9d8
01f769a983f4048b7dd3e028de60ccded6c12431
82b73d30a7f3eb3a51d71fb0a87aa03d68af26521339b7554ad74a0aa9180deb
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: application/json; charset=utf-8
content-length: 6089
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.heidoc.net
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2
video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305
185.167.97.84200 OK 13 kB URL HTTP/2 video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305
IP 185.167.97.84:0
File type JPEG image data, baseline, precision 8, 640x360, components 3\012- data
Hash b71d2a739f4e80eff8630042b3e6dce0
0d70964aff954caafe41441117c7b39eb9008bf7
b86d3693599ce6ac628845cf53997793f0c43c6e4829d8c13799fe28451fe2ff
GET /uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317.jpg?cbuster=1663710305 HTTP/1.1
Host: video.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: image/jpeg
content-length: 12993
last-modified: Tue, 20 Sep 2022 21:47:34 GMT
etag: "b71d2a739f4e80eff8630042b3e6dce0"
vary: Accept-Encoding
via: 1.1 a5a8e743f28968822c126102a78bb7c6.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA60-P4
x-amz-cf-id: GNoAgytJ4sZpjTdxzg1H-1ICdj6ZIRTNJfO7L_P5vEJzU8KLZTn4hg==
expires: Thu, 22 Sep 2022 15:16:25 GMT
cache-control: max-age=86400
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=sekindo&gdpr=1&gdpr_consent=
52.29.193.101200 OK 43 B URL HTTP/1.1 x.bidswitch.net/sync?ssp=sekindo&gdpr=1&gdpr_consent=
IP 52.29.193.101:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?ssp=sekindo&gdpr=1&gdpr_consent= HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Length: 43
Connection: keep-alive
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1d8d534a614ce4982334f15a21b8529
85f2f73fcbf7d6aa037a3c4ed98be481752f88bb
938d4dd7e4c2419f567dd2ba64c6527bf8f7a4253e24aaba675f9ac029eaa112
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4392
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:03:13 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1a6ba8b99be5dbe186929b9f38510167
90e6447b57bcdd0bb7d7ada783370ff4a73ff870
c9f2ec28f0d4c8c42218f838f9165001cfa50262c1520bd58c78ae9e1176948c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3039
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:25:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID
185.94.180.125302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=5bc07f4b-39c0-11ed-9a1f-1d37f49c0506; expires=Wed, 19-Oct-2022 15:16:25 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506
X-fe: 14
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
video.primis.tech/uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303
185.167.97.84200 OK 56 kB URL HTTP/2 video.primis.tech/uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303
IP 185.167.97.84:0
File type PNG image data, 1500 x 1500, 8-bit/color RGBA, non-interlaced\012- data
Hash d36f84d7cdf6bb676e78918690e996e8
7771b6520def589d9259b091180ff2fba231b091
397ef531771d91d36d16c4207b838086076a7972f44fda65bb15c859acd4c0e3
GET /uploads/video/users/logo/28521/logo_6180.png?cbuster=1567673303 HTTP/1.1
Host: video.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: image/png
content-length: 56239
last-modified: Tue, 17 Aug 2021 17:19:58 GMT
etag: "d36f84d7cdf6bb676e78918690e996e8"
vary: Accept-Encoding
via: 1.1 edd6d90087c4f2b49e182778a2273adc.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: XBR4HtAzuIPCPu6G75KNy4hBzcpOzC0Njbi14boWTAL0LdHVntJq_Q==
expires: Thu, 22 Sep 2022 15:16:25 GMT
cache-control: max-age=86400
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506
185.94.180.125200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=5bc07f84-39c0-11ed-9a1f-1d37f49c0506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=5bc4ae1e-39c0-11ed-83ba-162d46060406; expires=Wed, 19-Oct-2022 15:16:25 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 16
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27
194.146.38.23200 OK 7.9 kB URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27
IP 194.146.38.23:0
Hash 9bbe0f42ef78c66a93280da7da1fe1df
68002f9468da87850a5a425cca9c64850461e707
422a68697f3643da68756c4252b00493d20a2d8e2ee6831f3b886861934938d0
GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=93&advUuid=07564df3-4f6f-4482-a607-33026d125f27 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 08:39:19 GMT
expires: Thu, 21 Sep 2023 08:39:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 22:13:13 GMT
content-type: text/javascript
age: 23826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash b8d63cf87e43643021f6d4cee4457bb1
b3b5417d11e76eeee97652e7f5aba0f334076d06
873b5ef31eb0c3fcbc2da82cd61cf7dc52324c17d14f4e55a4817d312bfa2f21
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 21:47:14 GMT
Expires: Wed, 21 Sep 2022 21:47:14 GMT
ETag: "b3b5417d11e76eeee97652e7f5aba0f334076d06"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305
185.167.97.84200 OK 2.0 kB URL HTTP/2 video.primis.tech/uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305
IP 185.167.97.84:0
File type JPEG image data, baseline, precision 8, 162x92, components 3\012- data
Hash 8566dc56e2fead9602ef213b01f8cb18
bc274c7766ccef63095819be45c7ff38867c8a4a
a6e6bfc5e96b5a07ae0c0e96570ebd875729b0f4f54e3313ac37f34deea9c3ad
GET /uploads/cn11/video/users/converted/30037/video_5f969d4cf0e04668317519/vid632a345e67e4e831687317_thumb.jpg?cbuster=1663710305 HTTP/1.1
Host: video.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: image/jpeg
content-length: 1984
last-modified: Tue, 20 Sep 2022 21:47:35 GMT
etag: "8566dc56e2fead9602ef213b01f8cb18"
vary: Accept-Encoding
via: 1.1 2b298af2bb6f21ab0dee9e764d8bcb28.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: h7rea_-h904uzC4Yw5h0QzcYzDWX4n2BkelzGuHljWauvNB5UPIc9g==
expires: Thu, 22 Sep 2022 15:16:25 GMT
cache-control: max-age=86400
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
video.primis.tech/uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003
185.167.97.84200 OK 2.8 kB URL HTTP/2 video.primis.tech/uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003
IP 185.167.97.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 736x729, segment length 16, comment: "Lavc59.22.100", baseline, precision 8, 162x92, components 3\012- data
Hash 9a856456db72ff94d2eb47c8a8166c13
e4cf084bd7e3607c6f8ecd9d46c5deb42450de22
d95b4a68a8b9f2f649a4647fe5b0ebb8578104911d9144bc1fe2cfa62344974c
GET /uploads/cn5/video/users/converted/24485/video1523972806/vid63232e4f841bd218837966_thumb.jpg?cbuster=1663250003 HTTP/1.1
Host: video.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: image/jpeg
content-length: 2774
last-modified: Thu, 15 Sep 2022 15:14:18 GMT
etag: "9a856456db72ff94d2eb47c8a8166c13"
vary: Accept-Encoding
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: xncgVYGsk4da1TJqALpZe9-Vr11AtdSqWDl7xkH5xWtjx0qWYIlW7A==
expires: Thu, 22 Sep 2022 15:16:25 GMT
cache-control: max-age=86400
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net
194.146.38.23200 OK 275 kB URL HTTP/2 live.primis.tech/live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net
IP 194.146.38.23:0
Size 275 kB (275029 bytes)
Hash cfef1c8ff940eb7027f67c08bd0fa64f
739475ba1df653a71273b3daed1ce30396d0a3f1
1666295d221341722b8794188ec8a6fe380f5c2394bad0dbe8f881b68a935ee4
GET /live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32315F31387D7B7331313836323037387D7B433231377D7B53643364334C6D686C61575276597935755A58513D7D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583333307D7B593138307D7B66317D7B4C363138307DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=&isWePassGdpr=0&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=0&csuuid=632b2ac856195&debugInfo=11862078_&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=11862078&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed1506xghviutn&secondaryContent=&x=330&y=180&pubUrl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&contentNum=1&flow_closeBtn=1&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=10&flow_bottomOffset=10&impGap=2&flow_width=400&flow_height=225&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.9452&geoLong=10.7559&vpTemplate=6180&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.heidoc.net HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:23 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 01b00df44f694ebb0b6ffe39de5b2606
a720735f26b6a516f6ac17d2b517c558d7978122
e56f91b6085d349ed90bec1c0d07150ecde0db400dc28bb757cf0c058a4d1b72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5494
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 13:44:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
ssum-sec.casalemedia.com/usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D
104.18.18.126302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:16:25 GMT
content-length: 0
location: /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1
cf-ray: 74e3c30c2bb0b4fa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YysqyfvZ.-ELb5DZx5XXZQAA; Path=/; Domain=casalemedia.com; Expires=Thu, 21 Sep 2023 15:16:25 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4538; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:16:25 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4538; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:16:25 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r2kOobKVtR0gripXhNUSn7gd7WkSb0AlQ9QE2xAxuieDSuJ9mlajyrB9TpdMb0hwdcSOzehtDtkExZq7D1hGT%2B%2FJaV6Tslkja9L42MfwSsMDZhOPkUFjne0E39NlxPl51xgF0x5ZK7G5xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cs.media.net/cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E
23.38.200.22302 Moved Temporarily 154 B URL HTTP/1.1 cs.media.net/cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /cksync?cs=34&type=pri&ovsid=632b2ac856195&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E HTTP/1.1
Host: cs.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: Apache
Content-Length: 154
Content-Type: text/html
Location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA
Set-Cookie: data-pri=632b2ac856195~~34;Expires=Thu, 21 Sep 2023 15:16:25 GMT;path=/;domain=.media.net;
P3P: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
X-MNET-HL2: E
Expires: Wed, 21 Sep 2022 15:16:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:16:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3423ede4e385b098f165a74c5866fbd9
93c10d1e17d52b5a776c9db81e0edeefee332534
16fe3d4ac2f3f66754d28da5da6fa16d1cf9ff0b7ecfa139daffea89a7e1e623
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4464
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:02:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a76cf05e93c25a824c39294e8f8b9517
f38d9f687947c6816685cd03448847aa16104f5f
0f0c176669e2a60f8f7f3bcbc42cb2dcef99d89e13001311e9d9412c416c1b19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:00:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ads.stickyadstv.com/user-matching?id=3586&gdpr=1&gdpr_consent=
23.36.77.41302 Moved Temporarily 0 B URL HTTP/1.1 ads.stickyadstv.com/user-matching?id=3586&gdpr=1&gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /user-matching?id=3586&gdpr=1&gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Content-Length: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1663773385587087-558
Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d
Expires: Wed, 21 Sep 2022 15:16:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:16:25 GMT
Connection: keep-alive
Set-Cookie: UID=31d8e29f4cb09bf3adf893739b51b8d; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:25 GMT; Path=/
sessionId=9dbf4feb7af8434fd0faa7c3497a6; Domain=ads.stickyadstv.com; Path=/
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8449eee5d39e7c47bbce4b14fd8e84de
e9d56fc7e163661f3922dd23fc4e42b747147814
657fc1ef75bf1b156aeba67425911db52aac8ba24cb7db636507c7ac8efa30db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2867
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:28:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 314
pixel.rubiconproject.com/exchange/sync.php?p=primis
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=primis
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=primis HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
ssum-sec.casalemedia.com/usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1
104.18.18.126302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:16:25 GMT
content-length: 0
location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0
cf-ray: 74e3c30c8c16b4fa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MBMOz6R7wz64dgfYE0COaySrNxiimQ9z7z2Mq42nUU0MYe8LEmcMxnHQWJT94jlKj%2Fa%2Btoa0X0cfQfdynxdV9QJLTyWEzagzqEUI9la8rnSCeb0bdDzHrVWTVQ%2FFNTISVrPStBcnrNWbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at=
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at=
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=2124320294459970&ev=fb_page_view&dl=https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%23google_vignette&rl=&if=false&ts=1663773385530&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 21 Sep 2022 15:16:25 GMT
expires: Wed, 21 Sep 2022 15:16:25 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID
37.252.173.22307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID
IP 37.252.173.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D105%26advUuid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Flive.primis.tech%252Flive%252FliveCS.php%253Fsource%253Dexternal%2526csuuid%253D632b2ac856195%2526pixel%253D%2526advId%253D105%2526advUuid%253D%2524UID
AN-X-Request-Uuid: e3639ac0-7b24-459f-9c73-ae9c3946e057
Set-Cookie: uuid2=1035702905354830918; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 15:16:25 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58627/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58627/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58627/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:16:25 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58627/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBMkqK2MCEICqS8mpwUR23ltrnPnOAkMFEgEBAQF8LGM1YwAAAAAA_eMAAA&S=AQAAAn0gXzWdxW3vU7lwZ-VAAf8; Expires=Thu, 21 Sep 2023 21:16:25 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=21&gdpr=1&gdpr_consent=
185.86.137.108200 OK 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=21&gdpr=1&gdpr_consent=
IP 185.86.137.108:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=21&gdpr=1&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
date: Wed, 21 Sep 2022 15:16:25 GMT
cs.admanmedia.com/3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D
80.77.87.162302 Found 0 B URL HTTP/1.1 cs.admanmedia.com/3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D
IP 80.77.87.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D HTTP/1.1
Host: cs.admanmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 21 Sep 2022 15:16:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: admtr=e05fa551-ec7c-41c4-af12-52433ed51dc4; path=/; domain=.admanmedia.com; expires=Wed, 05 Oct 2022 15:16:25 GMT;SameSite=None;Secure
ac_r=CS116; path=/; domain=.admanmedia.com; expires=Wed, 05 Oct 2022 15:16:25 GMT;SameSite=None;Secure
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 8c92455701b09e42442e3525a304301b
f03bbd382caad559c48fe23bc082ae14c87bc60c
3ca1e8a5af6486aa3c63c8661474c4378fba1ce0210621a7c82cddaaa9f39972
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 15:16:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 21:59:08 GMT
Expires: Wed, 21 Sep 2022 21:59:08 GMT
ETag: "f03bbd382caad559c48fe23bc082ae14c87bc60c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 838827064245a6e17630f07b02021ec7
4b71efe74a2ac92ff9d9896e4d6f93d8edc7c2b9
a7e7914f27a22e077aa9968e7b80316073c8bbff0ee77e8c2feed2ac1fa352e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 14:37:00 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zn0eMQU6FZQpKVJoxZwTMGUKuBCLL5p5X7ZzAPyVl5qPaxs0IVUQ4A==
Age: 2365
ap.lijit.com/pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID
72.251.249.13204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID
IP 72.251.249.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3D%26advId%3D130%26advUuid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Wed, 21 Sep 2022 15:16:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap2ams1
eb2.3lift.com/getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
104.244.42.8200 OK 327 B URL HTTP/2 syndication.twitter.com/settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Hash 21b37ea7072f5ae3a8fefdf555c10764
a509a3feca059bd0dc935c1ac59d600db3a68cb1
4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b
GET /settings?session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:25 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 21 Sep 2022 15:16:25 GMT
content-length: 327
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58627/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58627/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58627/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 21 Sep 2022 15:16:25 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBMkqK2MCED_wPcMYnWoCgtDXpxNK86UFEgEBAQF8LGM1YwAAAAAA_eMAAA&S=AQAAApcwUIxQmb8zjAWhg2bTEXk; Expires=Thu, 21 Sep 2023 21:16:25 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d
194.146.38.23200 OK 20 B URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d
IP 194.146.38.23:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3D31d8e29f4cb09bf3adf893739b51b8d&advId=134&advUuid=31d8e29f4cb09bf3adf893739b51b8d HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11866
Expires: Wed, 21 Sep 2022 18:34:11 GMT
Date: Wed, 21 Sep 2022 15:16:25 GMT
Connection: keep-alive
live.primis.tech/content/video/hls/hls.0.12.4_3.min.js
194.146.38.23200 OK 120 kB URL HTTP/2 live.primis.tech/content/video/hls/hls.0.12.4_3.min.js
IP 194.146.38.23:0
Size 120 kB (120430 bytes)
Hash f78f921d46330743c6dadce45487b8b6
f5d67b8fa1a8b2730e47db217057d9c599c81011
e166d2001d5a4e69f9522c6cabdb1a55ff81d9a482a7b5ad86b8ba1d2cb5af9c
GET /content/video/hls/hls.0.12.4_3.min.js HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript
last-modified: Wed, 23 Mar 2022 12:48:35 GMT
etag: W/"623b1723-409bc"
expires: Thu, 21 Sep 2023 15:16:24 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11866
Expires: Wed, 21 Sep 2022 18:34:11 GMT
Date: Wed, 21 Sep 2022 15:16:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11866
Expires: Wed, 21 Sep 2022 18:34:11 GMT
Date: Wed, 21 Sep 2022 15:16:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9556616ca10eb4383b1e15f360fbf6d4
cb328d0f66f4c2779bc64342ef89735636ae5ded
4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9227
x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiFzKG2zIAMFoDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: K-lCBW5v2irK9UtfyGeaE7jkaIjQkpEUREIMd2hMXUrlsc6k-p6F1A==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 05:27:48 GMT
age: 35317
etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hDCOWNm2vFa9h7BffUJwcwZ6i27jM2qBuSTasH9q_wsQ9oNWhVpQCg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:47:24 GMT
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
age: 62941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 509e39b847d4ba05f981d6769b72731b
9b75e098c161fa310f3fb6f815315df9600aa4fd
783d59c20a5aa3a68db6ccbdde61e65317ab320cef41e0b0965986efee892783
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:16:25 GMT
Last-Modified: Wed, 21 Sep 2022 13:34:48 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pwrwtmo7cTl6URxGnP0KcdpT9t5HiVsV9aK2Jgu_VFqfx6s2Yw38Ag==
Age: 6097
live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4
194.146.38.23200 OK 9.2 kB URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4
IP 194.146.38.23:0
Hash d963b9b9a74c713a33e99c3a427759d5
57256dc9a36040011e2bfd3681a9263341576fcd
8e6554dd7d1e3b5580330c159268b389c2cb4aa4c7070f07170e91d7e30fd9c8
GET /live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3De05fa551-ec7c-41c4-af12-52433ed51dc4&advId=138&advUuid=e05fa551-ec7c-41c4-af12-52433ed51dc4 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: d9bd4ac9-5032-45d5-9689-c5c3347912d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuFz4oAMFZug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-6fb7d6a52eecab471f67d9a9;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sfGk3C3HLGDYDSXw1d4R7wPRsGdHNKD31chUVzQ8KYBRnsIL0aOW1g==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:17 GMT
age: 63308
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:08:27 GMT
age: 11278
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7sCevVX1nGXxZxnrXSURjUcap1a7vCZwrMMIXfzcBPR1srMxJHLGUg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:09:43 GMT
age: 61602
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mb9eo.publishers.tremorhub.com/pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
52.44.73.49302 Found 0 B URL HTTP/2 mb9eo.publishers.tremorhub.com/pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
IP 52.44.73.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D HTTP/1.1
Host: mb9eo.publishers.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:16:25 GMT
content-length: 0
location: pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
set-cookie: tvid=685c9a2d9a5244dbb443721f2ac692f9; Domain=.tremorhub.com; Expires=Thu, 21-Sep-2023 21:04:45 GMT; Path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 4f1f60563bf717e97c0a9d0ea41656bd
e81bc1de4809ad69c612311ef322d10920f565c9
76b3c3593522fdfb24ca4b06087d457bad98ae873958f032deea5151ad8762ca
GET /js/button.c6c95b9789db97ea1e9742d215fff751.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1794791
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Wed, 21 Sep 2022 15:16:26 GMT
Etag: "3b5d132d3d3780b86a6d19d169faef45+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:49 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2361
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220921
151.101.85.229200 OK 916 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220921
IP 151.101.85.229:0
File type JSON data\012- , ASCII text, with very long lines (1647), with no line terminators
Hash c85eec2aa439761e6874191e10e1b89e
e34700495404ad729a495b56f2746c00a23ee459
ac30767dad7b759a2792e7a0286bfd7f6cc25255d5d73ac8d5832261bb3b8e7d
GET /gh/prebid/currency-file@1/latest.json?date=20220921 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1470
x-jsd-version-type: version
etag: W/"66f-cUWJkK7EI2gPfNoWAjukgw720XU"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 15:16:26 GMT
age: 927
x-served-by: cache-fra19145-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 916
X-Firefox-Spdy: h2
live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0
194.146.38.23200 OK 491 B URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0
IP 194.146.38.23:0
Hash 763ed62a0ccb96612f9d0cb37c30fa0a
c56ebd063315932a624dd1572b82e50b20d4401a
436cc9d641f1ae30bf70fdb92854028dd92fb4b6e94f631b7bdd21d1b419a577
GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=105&advUuid=0 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 405a6f77ccbd6fb67479319e95cabe16
db9ed8d9426b98735e994d563ed5bbb35f0d6aaf
892bb01cf12bf057de3b16fcf1604459c18ae2db306c6eeefe617dd759ba845c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:26 GMT
Last-Modified: Wed, 21 Sep 2022 14:31:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 27a94a0ff6f4c75a1ba21dd1caa47527
658d1917a81d1d0a68151903973992e2b59b3697
d1da53aff49d81c8d0139382b6c338d27eb349c0bde61e41ccb9e0e7ab7234f2
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 15:16:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "0D300EB098696BC238787019CF374F8685E820CB"
Expires: Thu, 22 Sep 2022 02:00:00 GMT
Last-Modified: Wed, 21 Sep 2022 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1858
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e3c30f0877b51d-OSL
ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang×tamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168
23.36.77.41200 OK 67 B URL HTTP/1.1 ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang×tamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text
Hash b753854b354a90a85ac6ff282b64b05d
1da3eb0c1b574c639024a54a679db90e403fc1b7
291437ea71e62b1c35d4ec5d3c5ad02cfa930343b41b1472fba70243089c8bbe
GET /www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=14000367&componentId=prebid&componentSubId=mustang×tamp=1663773385911&pKey=-706823469&_fw_gdpr_consent=&_fw_gdpr=true&schain=1.0%2C1!primis.tech%2C28521%2C1%2C%2C%2C&loc=https%3A%2F%2Fwww.heidoc.net%2F&playerSize=238x168 HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=UTF-8
Access-Control-Allow-Origin: https://www.heidoc.net
Access-Control-Allow-Credentials: true
x-sticky-vk: 1663773385949065-541
Content-Length: 67
Expires: Wed, 21 Sep 2022 15:16:26 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:16:26 GMT
Connection: keep-alive
Set-Cookie: UID=43c7427291e184b1753443381244a; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:26 GMT; Path=/
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7e72d0126a31fd2be9fd85369e3f8c70
14affab3e2fb05cc7e77b45e6519a258de91d73b
78cdd8cf188c2b94cb04ae9ee1565779d11bc85edf4bc156dc9ca91aaf810d89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1997
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:16:26 GMT
Last-Modified: Wed, 21 Sep 2022 14:43:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1221
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.heidoc.net
cache-control: no-cache, no-store, must-revalidate
date: Wed, 21 Sep 2022 15:16:24 GMT
X-Firefox-Spdy: h2
prebid-server.rubiconproject.com/openrtb2/auction
3.65.16.214200 OK 168 B URL HTTP/2 prebid-server.rubiconproject.com/openrtb2/auction
IP 3.65.16.214:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f93b4b23dde424368812670ebe8e393e
cd80ba586309a136706ebcf84e6a4a271a6aa3ad
9616f1bb891ed2b871ffce1d7f40e107d35d3b61b24255f116fdc85c27fd5863
POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1397
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:26 GMT
content-type: application/json
content-length: 168
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.heidoc.net
x-prebid: pbs-java/1.98.0
content-encoding: gzip
X-Firefox-Spdy: h2
platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html
93.184.220.66200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401)
Hash 0262a4c9df3cd76805f2cff429fce32d
b724cfa7429c56f49bfb52479f6de794a6522f16
2858f6b0d45005a789c68c3e790aa88646d4cd525dbdb0c19f802de39092c3da
GET /widgets/follow_button.c4bdc17e77719578b594d5555bee90db.en-gb.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1794129
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Sep 2022 15:16:26 GMT
Etag: "ed4a924809ffabb3cf1726e3c3186960+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15133
platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash 4857c35b0e573da8597c313bc75e21b8
32700b3b24c1b14c8414b0c43b062c68a6223e44
c9fda336f239ab983cd973bd30c67e03435d64602a57bf9766ab02fb440e1bdf
GET /widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en-gb.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1794591
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Sep 2022 15:16:26 GMT
Etag: "d8dd327ea254eb1c64338d52d55fa0c8+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:54 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13758
adx.adform.net/adx/openrtb
37.157.4.24200 OK 0 B URL HTTP/2 adx.adform.net/adx/openrtb
IP 37.157.4.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /adx/openrtb HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.heidoc.net/
Origin: https://www.heidoc.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:26 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: https://www.heidoc.net
access-control-max-age: 86400
allow: POST,OPTIONS
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386103%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:25 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 21 Sep 2022 15:16:26 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.heidoc.net%2Fjoomla%2Ftechnology-science%2Fmicrosoft%2F67-microsoft-windows-and-office-iso-download-tool%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en-gb%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663773386104%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=30a045e6ca5b1a27902e9ba29b456766d77940ae HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:25 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 21 Sep 2022 15:16:26 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: f8ab9d1e3619e1a8c7903d7f6b0680f96b789aeeaebe85eafadeec1875d4aefd
X-Firefox-Spdy: h2
mb9eo.publishers.tremorhub.com/pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
52.44.73.49302 Found 0 B URL HTTP/2 mb9eo.publishers.tremorhub.com/pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
IP 52.44.73.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D632b2ac856195%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D HTTP/1.1
Host: mb9eo.publishers.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:16:26 GMT
content-length: 0
location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid=
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork
192.229.233.50200 OK 187 B URL HTTP/2 cdn.syndication.twimg.com/widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork
IP 192.229.233.50:0
File type ASCII text, with no line terminators
Hash d70e2379fe372f6359e67f23c1e42955
3c2b594a72fd3279ebca9d5758c395ad43126e3d
d9540280e7ce86a49435a1d11ecd07fe12ba3ba8c4c06c2299bd48ead667da5d
GET /widgets/followbutton/info.json?callback=__twttr.setFollowersCountAndFollowing&lang=en-gb&screen_names=heidocnetwork HTTP/1.1
Host: cdn.syndication.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platform.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-contol-allow-origin: platform.twitter.com
access-control-allow-methods: GET
age: 273
cache-control: must-revalidate, max-age=600
content-disposition: attachment; filename=jsonp.jsonp
content-type: application/javascript;charset=utf-8
date: Wed, 21 Sep 2022 15:16:26 GMT
expires: Wed, 21 Sep 2022 15:26:26 GMT
last-modified: Wed, 21 Sep 2022 15:11:53 GMT
server: ECS (lhb/62B4)
server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=31
strict-transport-security: max-age=631138519
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 0a984feac8c6d2ef749c86c5ca777f59d9507bc0f1cc76c565e273362bdcddb6
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-response-time: 111
x-transaction: 9ea61075d83af5e2
x-tw-cdn: VZ, VZ
x-xss-protection: 0
content-length: 187
X-Firefox-Spdy: h2
www.heidoc.net/php/HeiDoc.png
104.168.147.90200 OK 68 kB URL HTTP/2 www.heidoc.net/php/HeiDoc.png
IP 104.168.147.90:0
Hash ab409bc5b6c8bee6a1e7695dcea6d0bb
e22eb2ccaca1aabf9d77995b4692f0cb902ba8a2
f731811ceca5a668585f93a24daee9646241ac2c9b136b732f8f2666cca291fe
GET /php/HeiDoc.png HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
Cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; csuuidSekindo=632b2ac856195; __unid=2b594114-0957-ffe3-eb0d-339af3313175
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Nov 2018 14:26:44 GMT
accept-ranges: bytes
content-length: 56239
content-type: image/png
date: Wed, 21 Sep 2022 15:16:26 GMT
server: Apache
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent=
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=64742
expires: Thu, 22 Sep 2022 09:15:29 GMT
date: Wed, 21 Sep 2022 15:16:27 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.stickyadstv.com/auto-user-sync?gdpr=1&gdpr_consent=
23.36.77.41200 OK 43 B URL HTTP/1.1 ads.stickyadstv.com/auto-user-sync?gdpr=1&gdpr_consent=
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /auto-user-sync?gdpr=1&gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1663773387526037-579
Content-Length: 43
Expires: Wed, 21 Sep 2022 15:16:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:16:27 GMT
Connection: keep-alive
Set-Cookie: UID=18c499c9e41cd9a5135292fa013f9; Domain=ads.stickyadstv.com; Expires=Fri, 21-Oct-2022 15:16:27 GMT; Path=/
sessionId=12e84dd5bbc9b8fe273ea3e65cad5; Domain=ads.stickyadstv.com; Path=/
eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=1&gdpr_consent= HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Wed, 21 Sep 2022 15:16:27 GMT
Connection: keep-alive
Vary: Accept-Encoding
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 9.4 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (17962)
Hash a20f3b88f594f6b3b76b2824d9719603
eba04551acb08e66d1747b374c7a2d031b70cfc0
a36cf252208e21f17b21841023b8f0ef0c9226ead672a9fd67748310e8787aaf
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Thu, 15 Sep 2022 22:38:47 GMT
Content-Encoding: gzip
Content-Length: 9421
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=47695
Expires: Thu, 22 Sep 2022 04:31:22 GMT
Date: Wed, 21 Sep 2022 15:16:27 GMT
Connection: keep-alive
Vary: Accept-Encoding
fonts.googleapis.com/css?family=Open+Sans
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 216.58.211.10:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 15:16:24 GMT
date: Wed, 21 Sep 2022 15:16:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cmp.uniconsent.com/v2/8d3a096937/cmp.js
172.64.141.6200 OK 0 B URL HTTP/2 cmp.uniconsent.com/v2/8d3a096937/cmp.js
IP 172.64.141.6:0
GET /v2/8d3a096937/cmp.js HTTP/1.1
Host: cmp.uniconsent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 18 Jan 2022 00:38:54 GMT
etag: W/"ebf4c9e816d425037b92642eb9155dca"
cache-control: max-age=86400
x-cache-status: MISS
access-control-allow-origin: *
cf-cache-status: HIT
age: 23105
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xNVixz%2B8Zxe8h%2BTzu%2Brn%2B3krauYAtA7GVld%2BoiCres8cE6ht0mIcsCxBWLc4pSckVsXUaRSVN7b0QY4akC30QuGiJYDG0Ni%2BMfwSwX0hORMjwhIRHxzJEBrdARnL0ARTqVgzxGU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e3c3035fba888b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/content/ClientDetections/iab_consent_sdk.v1.0.js
IP 194.146.38.23:0
GET /content/ClientDetections/iab_consent_sdk.v1.0.js HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript
last-modified: Wed, 12 Feb 2020 15:01:36 GMT
etag: W/"5e441350-4be0"
expires: Thu, 21 Sep 2023 15:16:24 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid=
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid=
IP 194.146.38.23:0
GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid= HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:26 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0
IP 194.146.38.23:0
GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=&advId=99&advUuid=0 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=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
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/live/liveView.php?hash=ozcmPTEznXRiPTEzqzyxX2V2ZW50PTM2JaNypaZypyRcoWU9MTY2Mmp3MmM4NCZ2nWRspGkurWVlVzVlPTMhMS4jJaM9MTAjMwp5JaN0YT0jJat9MmMjJax9MTtjJaZcZF9jYXNmRG9gYWyhPXq3ql5bZWyxo2MhozV0JaN1YxyxPXq3ql5bZWyxo2MhozV0JzRyYaVaSW5zo3JgYXRco249JzymQXBjPTAzp2Reqw0zqXNypxyjQWRxpw05MS45MC40Mv4kNTQzqXNypyVBPU1irzyfoGEyMxY1LwAyMwAyMwuYMTEyM0IyMwBMnW51rCUlMHt4Ny82NCUmQvUlMHJ2JTNBOTYhMCUlOSUlMEqyY2giJTJGMwAkMDAkMDEyMwBGnXJyZz94JTJGOTYhMCZwp3V1nWQ9NwMlYwJuYmt1NwE5NSZwo250ZW50RzyfZUyxPTAzoWVxnWFQoGF5TGymqEyxPTAzoWVxnWFMnXN0SWQ9MCZaZHBlPTEzZ2RjpxNioaNyoaQ9Q1BzpDBaQVBzpDBaQUJFQUNCRU5DnENaQUFBQUFIX0FBQaBZQUFBUVuuXl12Xl0mqy9QOV8mN19sYz84rHFsN18mX2Y5pG5IQl03Ywx0YaNsLXYgWDR2X3NnM2VMqwFUWHqWY2c4SzR1MxNRZmquT2RPNG1jTzbkUxglWG1zWTNKp1cYMzFVVDJzSx5QWTI5pmZ3TVA3X1A3qW4grVV6M19sX19sXmNsX19sX19sX19sX19sX19sX19sX19sX185X19sX183X19sX19sX19sX19sN19sX184QUFBJzymV2VQYXNmR2Rjpw0jJzNwpGE9MCZwY3BuQ29hp2VhqD0zY2J1p3Rypw0kNwYmNmpmMmt3NTQ4JaVcZD1TZWgcozRiU1BfYXyypwYmMzIlYWM4ZGNuNmMzpHVvVXJfPWu0qHBmJTNBJTJGJTJGq3q3LzuynWRiYl5hZXQyMxZdo29goGEyMxZ0ZWNboz9fo2q5LXNwnWVhY2UyMxZgnWNlo3NiZaQyMxY2Nl1gnWNlo3NiZaQgq2yhZG93pl1uozQgo2ZznWNyLWymol1xo3qhoG9uZC10o29fJTImZ29iZ2kyX3ZcZ25yqHRyJzZfo2F0U3RuqHVmPWZuoHNyJzVcZHNjPXBlZWJcZA==
IP 194.146.38.23:0
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:26 GMT
content-type: text/html; charset=UTF-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
104.168.147.90200 OK 0 B URL HTTP/2 www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
IP 104.168.147.90:0
GET /joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool HTTP/1.1
Host: www.heidoc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding,User-Agent
set-cookie: d097dbf0d1eb23e98a1a374b2746c174=787560c8aff1fc89be0c4aa88a7b91c6; path=/; secure; HttpOnly
x-content-type-options: nosniff
last-modified: Wed, 21 Sep 2022 15:16:23 GMT
content-type: text/html; charset=utf-8
date: Wed, 21 Sep 2022 15:16:23 GMT
server: Apache
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP 216.58.207.237:0
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.heidoc.net&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 21 Sep 2022 15:16:25 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-ikCuVVOabmL5LLTPIMG-AQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA
IP 194.146.38.23:0
GET /live/liveCS.php?source=external&csuuid=632b2ac856195&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidoc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/content/prebid/prebidVid.6.18.0_15.min.js
IP 194.146.38.23:0
GET /content/prebid/prebidVid.6.18.0_15.min.js HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 17:00:33 GMT
etag: W/"6303b631-7fe72"
expires: Thu, 21 Sep 2023 15:16:24 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/content/ClientDetections/DetectGDPR.v1.1.js
IP 194.146.38.23:0
GET /content/ClientDetections/DetectGDPR.v1.1.js HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: application/javascript
last-modified: Thu, 11 Feb 2021 09:45:48 GMT
etag: W/"6024fccc-1ef8"
expires: Thu, 21 Sep 2023 15:16:24 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
143.204.46.73200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 143.204.46.73:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidoc.net
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 09:37:07 GMT
x-amz-version-id: I95TjGhhrR3O7F99m0mjPLrSrnJRj9o4
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 09:37:52 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4YuobT6UCbMFYSgnWqjin2TE9VH4kVdTfyG8JZbJZjzjXHjZueJwVQ==
age: 20314
X-Firefox-Spdy: h2
live.primis.tech/live/liveView.php?hash=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
194.146.38.23200 OK 0 B URL HTTP/2 live.primis.tech/live/liveView.php?hash=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
IP 194.146.38.23:0
GET /live/liveView.php?hash=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 HTTP/1.1
Host: live.primis.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidoc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:16:24 GMT
content-type: text/html; charset=UTF-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2