Overview

URL www.dexerto.com/fifa/how-to-get-fifa-23-rewards-on-web-app-free-packs-fut-coins-more-1937619/
IP172.67.69.98
ASNCLOUDFLARENET
Location United States
Report completed2022-09-28 14:01:22 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (48)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS region1.analytics.google.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-28 05:18:44 UTC 216.239.34.36 Domain (google.com) ranked at: 1
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 11:00:28 UTC 143.204.55.36
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-28 08:14:31 UTC 104.18.47.230
mnemonic passive DNS secure.adnxs.com (2) 396 2012-05-22 16:37:37 UTC 2022-09-28 04:41:48 UTC 37.252.173.38
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-28 07:07:41 UTC 104.18.32.68
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-09-28 08:53:14 UTC 143.204.55.118
mnemonic passive DNS in.hotjar.com (1) 1746 2018-10-22 17:15:59 UTC 2022-09-28 04:43:52 UTC 52.30.245.126
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS u.openx.net (1) 706 2012-05-24 19:32:32 UTC 2022-09-28 04:48:31 UTC 35.244.159.8
mnemonic passive DNS ads.stickyadstv.com (1) 701 2013-02-11 13:53:55 UTC 2022-09-28 05:06:10 UTC 23.36.77.41
mnemonic passive DNS ap.lijit.com (1) 666 2012-05-25 18:17:20 UTC 2022-09-28 04:53:18 UTC 216.52.2.30
mnemonic passive DNS sourcepoint.dexerto.com (12) 139368 2020-09-24 15:13:43 UTC 2022-09-28 01:47:36 UTC 54.230.111.17
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-09-28 09:27:42 UTC 143.204.55.46
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-28 04:39:06 UTC 64.233.165.157
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.76.226
mnemonic passive DNS o1372207.ingest.sentry.io (5) 0 2022-08-23 10:13:25 UTC 2022-09-28 01:47:36 UTC 34.120.195.249 Domain (sentry.io) ranked at: 2743
mnemonic passive DNS live.primis.tech (17) 3001 2021-04-08 06:31:04 UTC 2022-09-28 09:23:46 UTC 63.250.56.119
mnemonic passive DNS video.primis.tech (4) 6377 2018-12-14 18:09:41 UTC 2022-09-28 06:09:41 UTC 143.204.55.66
mnemonic passive DNS ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS ssbsync.smartadserver.com (1) 1290 2019-03-26 17:05:36 UTC 2022-09-28 06:44:29 UTC 185.86.139.93
mnemonic passive DNS vc.hotjar.io (1) 2334 2019-04-16 10:33:25 UTC 2022-09-28 08:04:52 UTC 54.230.111.64
mnemonic passive DNS ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-09-28 08:57:43 UTC 93.184.220.29
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 143.204.55.25
mnemonic passive DNS macro.adnami.io (2) 16001 2018-10-30 17:01:42 UTC 2022-09-28 07:45:47 UTC 104.18.4.186
mnemonic passive DNS c.amazon-adsystem.com (2) 300 2013-12-19 15:10:01 UTC 2022-09-28 04:45:05 UTC 143.204.46.73
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-28 04:35:57 UTC 143.204.55.37
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-28 10:46:18 UTC 142.250.74.3
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS www.dexerto.com (1) 51277 2018-09-24 13:35:13 UTC 2022-09-28 01:47:35 UTC 104.26.8.151
mnemonic passive DNS securepubads.g.doubleclick.net (2) 190 2013-05-31 04:19:39 UTC 2022-09-28 05:37:46 UTC 216.58.207.194
mnemonic passive DNS status.geotrust.com (3) 3662 2017-12-01 08:55:31 UTC 2022-09-28 04:46:07 UTC 93.184.220.29
mnemonic passive DNS cs.admanmedia.com (1) 2357 2017-05-05 11:54:47 UTC 2022-09-28 13:09:33 UTC 80.77.87.162
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-28 04:39:17 UTC 104.18.21.226
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS www.gstatic.com (3) 0 2016-07-26 09:37:06 UTC 2022-09-28 07:43:30 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS cs.media.net (1) 1838 2019-07-09 09:13:57 UTC 2022-09-28 09:39:59 UTC 23.38.200.22
mnemonic passive DNS ssum-sec.casalemedia.com (2) 509 2014-06-23 13:16:59 UTC 2022-09-28 04:45:10 UTC 104.18.19.126
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS x.bidswitch.net (1) 286 2017-08-28 15:21:00 UTC 2022-09-28 04:44:36 UTC 3.122.40.23
mnemonic passive DNS ads.pubmatic.com (2) 469 2012-10-30 07:42:53 UTC 2022-09-28 04:52:22 UTC 23.38.200.201
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-09-28 06:48:18 UTC 13.248.245.213
mnemonic passive DNS mb9eo.publishers.tremorhub.com (1) 0 2022-05-18 09:13:44 UTC 2022-09-28 06:09:43 UTC 52.21.158.46 Domain (tremorhub.com) ranked at: 482
mnemonic passive DNS fonts.gstatic.com (10) 0 2014-08-29 13:43:22 UTC 2022-09-28 04:36:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-28 07:11:36 UTC 142.250.74.164
mnemonic passive DNS ocsp.godaddy.com (3) 698 2012-05-20 19:28:57 UTC 2022-09-28 04:37:39 UTC 192.124.249.36
mnemonic passive DNS sync.search.spotxchange.com (1) 523 2014-05-29 23:15:03 UTC 2022-09-28 11:09:55 UTC 185.94.180.125
mnemonic passive DNS ups.analytics.yahoo.com (2) 287 2019-05-09 15:57:40 UTC 2022-09-28 04:39:12 UTC 18.156.0.31
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-28 04:37:53 UTC 151.101.85.229


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.69.98

Date UQ / IDS / BL URL IP
2022-09-28 14:01:22 +0000
0 - 0 - 0 www.dexerto.com/fifa/how-to-get-fifa-23-rewar (...) 172.67.69.98
2022-09-17 14:44:56 +0000
0 - 0 - 2 app.boostsurfing.com/wells/zizzmm=/jgxmdk=/dk5ywy= 172.67.69.98
2022-09-17 14:42:48 +0000
0 - 0 - 3 app.boostsurfing.com/wells/zhlyje=/ 172.67.69.98
2022-09-17 14:37:16 +0000
0 - 0 - 4 app.boostsurfing.com/wells/wm3mmq=/ty0ogy=/mz (...) 172.67.69.98
2022-09-17 14:36:44 +0000
0 - 0 - 2 app.boostsurfing.com/wells/zizzmm=/wi2y2q=/wv (...) 172.67.69.98

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-07 16:12:35 +0000
0 - 0 - 1 obscuritydegenerate.cyou/fa78dHJGWHJnaF1TYAJ0 (...) 172.67.223.7
2022-12-07 16:05:33 +0000
0 - 0 - 2 cba-australia.support/a1b2c3/55c291d5ecda4254 (...) 172.67.172.131
2022-12-07 16:05:19 +0000
0 - 0 - 2 abcghi123jq456ef--loading.x3xpht8fwd.xyz/spec (...) 104.21.83.116
2022-12-07 16:05:16 +0000
0 - 0 - 6 abcgij123kq456df--loading.70vlbsmae8vk.xyz/sp (...) 104.21.33.240
2022-12-07 16:05:09 +0000
2 - 0 - 0 t.sidekickopen90.com/Ctc/2O+23284/d2MZC404/Jk (...) 172.64.153.190

Last 1 reports on domain: dexerto.com

Date UQ / IDS / BL URL IP
2022-09-28 14:01:22 +0000
0 - 0 - 0 www.dexerto.com/fifa/how-to-get-fifa-23-rewar (...) 172.67.69.98

No other reports with similar screenshot



JavaScript

Executed Scripts (54)


Executed Evals (7)

#1 JavaScript::Eval (size: 15544, repeated: 1) - SHA256: 87ee55b6a14be406e7e5057321bfa597cef65647f5277f0e2f558c08388ebc67

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var t = this || self,
        P = function(U) {
            return U
        },
        I = function(U, l) {
            if (!(l = (U = null, t.trustedTypes), l) || !l.createPolicy) return U;
            try {
                U = l.createPolicy("bg", {
                    createHTML: P,
                    createScript: P,
                    createScriptURL: P
                })
            } catch (W) {
                t.console && t.console.error(W.message)
            }
            return U
        };
    (0, eval)(function(U, l) {
        return (l = I()) && 1 === U.eval(l.createScript("1")) ? function(W) {
            return l.createScript(W)
        } : function(W) {
            return "" + W
        }
    }(t)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var f=function(U,l){U.h.splice(0,0,l)},E=function(U){return U.C?Uv(U.s,U):w(true,U,8)},u=function(U,l){if(U.C)return Uv(U.s,U);return(l=w(true,U,8),l)&128&&(l^=128,U=w(true,U,2),l=(l<<2)+(U|0)),l},WG=function(U,l,t,I){for(;l.h.length;){t=(l.T=null,l.h.pop());try{I=lY(t,l)}catch(D){S(D,l)}if(U&&l.T){(U=l.T,U)(function(){C(true,l,true)});break}}return I},tk=function(U,l){return(l=E(U),l)&128&&(l=l&127|E(U)<<7),l},C=function(U,l,t,I,D,W){if(l.h.length){l.N&&0(),l.N=true,l.cv=U;try{I=l.B(),l.Z=I,l.U=0,l.g=I,W=WG(U,l),D=l.B()-l.g,l.G+=D,D<(t?0:10)||0>=l.J--||(D=Math.floor(D),l.V.push(254>=D?D:254))}finally{l.N=false}return W}},M=function(U,l,t,I){for(I=(l|0)-1,t=[];0<=I;I--)t[(l|0)-1-(I|0)]=U>>8*I&255;return t},x=function(U,l,t){t=this;try{PG(this,U,l)}catch(I){S(I,this),U(function(D){D(t.S)})}},mr=function(U,l,t,I,D,W){if(!l.S){l.W++;try{for(W=(I=void 0,l.H),D=0;--U;)try{if((t=void 0,l).C)I=Uv(l.C,l);else{if((D=J(99,l),D)>=W)break;I=(g(l,492,D),t=u(l),J)(t,l)}y(false,false,l,(I&&I[IB]&2048?I(l,U):h([R,21,t],0,l),U))}catch(P){J(20,l)?h(P,22,l):g(l,20,P)}if(!U){if(l.hA){mr(553527590301,(l.W--,l));return}h([R,33],0,l)}}catch(P){try{h(P,22,l)}catch(V){S(V,l)}}l.W--}},V0=function(U,l,t,I){(I=(t=u(U),u)(U),K)(I,U,M(J(t,U),l))},Uv=function(U,l){return(U=U.create().shift(),l.C).create().length||l.s.create().length||(l.C=void 0,l.s=void 0),U},De=function(U,l){(l.push(U[0]<<24|U[1]<<16|U[2]<<8|U[3]),l.push(U[4]<<24|U[5]<<16|U[6]<<8|U[7]),l).push(U[8]<<24|U[9]<<16|U[10]<<8|U[11])},PG=function(U,l,t,I,D){for(U.ns=((U.AA=fi,(U.Hv=U[p],U).so=qw,U).yg=w2({get:function(){return this.concat()}},U.i),z)[U.i](U.yg,{value:{value:{}}}),I=0,D=[];128>I;I++)D[I]=String.fromCharCode(I);C(true,U,(f(U,(f(U,[((B(function(W){SV(4,W)},(B(function(W,P,V){g((P=(V=u((P=u(W),W)),J(P,W)),P=bY(P),W),V,P)},(g(U,299,[0,(B(function(W){V0(W,4)},(B(function(W,P,V,m,q){g(W,(V=(V=u((m=(P=u((q=u(W),W)),u(W)),W)),J(V,W)),m=J(m,W),P=J(P,W),q),cG(W,P,m,V))},(B(function(W,P){(W=(P=u(W),J)(P,W.I),W[0]).removeEventListener(W[1],W[2],A)},U,(B(function(W,P,V,m){g(W,(V=J((m=(V=u((P=u(W),W)),u(W)),P=J(P,W),V),W),m),P[V])},U,(B(function(W,P,V,m){g(W,(P=J((m=(P=u(W),u(W)),P),W),V=J(m,W),m),V+P)},(B(function(W,P,V,m){(m=u((V=(P=u(W),u(W)),W)),W).I==W&&(m=J(m,W),V=J(V,W),J(P,W)[V]=m,467==P&&(W.D=void 0,2==V&&(W.R=w(false,W,32),W.D=void 0)))},(g(U,(B(function(W){uY(4,W)},(B(function(W,P,V,m,q){for(m=(V=(q=tk((P=u(W),W)),[]),0);m<q;m++)V.push(E(W));g(W,P,V)},U,((B(function(W,P,V){V=(P=(V=u(W),u(W)),0!=J(V,W)),P=J(P,W),V&&g(W,99,P)},(B(function(W,P,V,m,q,e){y(false,true,W,P)||(m=Ci(W.I),q=m.o,e=q.length,V=m.v,P=m.mN,m=m.IS,q=0==e?new m[V]:1==e?new m[V](q[0]):2==e?new m[V](q[0],q[1]):3==e?new m[V](q[0],q[1],q[2]):4==e?new m[V](q[0],q[1],q[2],q[3]):2(),g(W,P,q))},U,(B((B(function(W,P,V,m){!y(false,true,W,P)&&(P=Ci(W),m=P.IS,V=P.v,W.I==W||V==W.Si&&m==W)&&(g(W,P.mN,V.apply(m,P.o)),W.Z=W.B())},(g(U,253,(B((g(U,20,(g(U,391,(B(function(W,P,V,m){g(W,(m=J((P=(m=(V=u(W),u(W)),u(W)),m),W),V=J(V,W)==m,P),+V)},((B(function(W,P,V){g(W,(V=u(W),P=u(W),P),""+J(V,W))},(B((B(function(W,P,V,m){if(P=W.Fq.pop()){for(m=E(W);0<m;m--)V=u(W),P[V]=W.F[V];W.F=(P[223]=W.F[223],P[91]=W.F[91],P)}else g(W,99,W.H)},(g((B(function(W){V0(W,1)},(g(U,(U.gT=(B(function(){},U,(B(function(W,P,V,m){g(W,(m=(V=(P=u(W),E(W)),u)(W),m),J(P,W)>>>V)},((g(U,(B(function(W,P,V,m,q,e,c,b,d,Z,Q,a){function X(N,G){for(;V<N;)b|=E(W)<<V,V+=8;return V-=N,G=b&(1<<N)-1,b>>=N,G}for(Z=(a=(d=(b=V=(Q=u(W),0),(X(3)|0)+1),X)(5),0),e=[],P=0;P<a;P++)c=X(1),e.push(c),Z+=c?0:1;for(m=(Z=((Z|0)-1).toString(2).length,[]),P=0;P<a;P++)e[P]||(m[P]=X(Z));for(Z=0;Z<a;Z++)e[Z]&&(m[Z]=u(W));for(q=[];d--;)q.push(J(u(W),W));B(function(N,G,O,k,F){for(O=(k=0,G=[],[]);k<a;k++){if(!(F=m[k],e[k])){for(;F>=O.length;)O.push(u(N));F=O[F]}G.push(F)}N.s=eV(N,(N.C=eV(N,q.slice()),G))},W,Q)},U,((g(U,(g(U,(B((g(U,(g(U,(U.Eo=(((U.H=0,U).Fq=[],U.h=((U.G=0,U).I=U,[]),U.O=(U.N=false,U.j=8001,U.D=(U.Y=1,void 0),U.J=25,U.F=[],(U.T=null,U).cv=false,U.l=[],I=(U.s=void 0,(U.lC=0,window).performance||{}),0),U.Si=(U.U=(U.Z=(U.W=0,U.K=false,0),U.L=void 0,U.g=0,U.C=(U.S=void 0,void 0),U.R=void 0,void 0),U.P=[],function(W){this.I=W}),U).V=[],I.timeOrigin||(I.timing||{}).navigationStart||0),99),0),492),0),function(W,P,V,m,q,e,c){for(q=(c=(m=(V=u(W),e=tk(W),""),J(317,W)),c).length,P=0;e--;)P=((P|0)+(tk(W)|0))%q,m+=D[c[P]];g(W,V,m)}),U,11),212),{}),396),U),U.oS=0,B)(function(W,P,V,m){g(W,(V=(m=(V=(P=u(W),u)(W),u(W)),P=J(P,W),J(V,W)),m),P in V|0)},U,446),110)),91),2048),g(U,32,H(4)),B)(function(W,P,V,m,q){(m=J((q=(q=(m=(P=u((V=u(W),W)),u(W)),u)(W),P=J(P,W),J(q,W)),m),W),V=J(V,W.I),0!==V)&&(m=cG(W,m,q,1,V,P),V.addEventListener(P,m,A),g(W,173,[V,P,m]))},U,395),U),70),45)),0),263),[160,0,0]),U),5),U),173,0),U),9),B(function(W,P,V){y(false,true,W,P)||(P=u(W),V=u(W),g(W,V,function(m){return eval(m)}(Ev(J(P,W.I)))))},U,440),function(W,P,V,m,q,e){if(!y(true,true,W,P)){if("object"==(V=J((P=J((P=(V=u((m=(q=u(W),u(W)),W)),u(W)),P),W),m=J(m,W),V),W),W=J(q,W),bY(W))){for(e in q=[],W)q.push(e);W=q}for(q=(V=0<V?V:1,e=0,W.length);e<q;e+=V)m(W.slice(e,(e|0)+(V|0)),P)}}),U,422),U),479),B)(function(W,P){P=J(u(W),W),sv(P,W.I)},U,498),U),351),0)),119)),function(W){SV(3,W)}),U,279),[])),U),83),function(W,P,V,m){g(W,(V=u((m=(P=u(W),u)(W),W)),V),J(P,W)||J(m,W))}),U,41),270)),U),267),U).ZZ=0,0)),U),194),10),n),U),333),U),359),397)),477)),U),98),g(U,223,[]),U),504),0),0]),U),305),U),329),f)(U,[Ze]),L),t]),[iY,l])),true))},g=function(U,l,t){if(99==l||492==l)U.F[l]?U.F[l].concat(t):U.F[l]=eV(U,t);else{if(U.K&&467!=l)return;263==l||32==l||253==l||223==l||299==l?U.F[l]||(U.F[l]=Mw(t,U,102,l)):U.F[l]=Mw(t,U,97,l)}467==l&&(U.R=w(false,U,32),U.D=void 0)},bY=function(U,l,t){if("object"==(t=typeof U,t))if(U){if(U instanceof Array)return"array";if(U instanceof Object)return t;if((l=Object.prototype.toString.call(U),"[object Window]")==l)return"object";if("[object Array]"==l||"number"==typeof U.length&&"undefined"!=typeof U.splice&&"undefined"!=typeof U.propertyIsEnumerable&&!U.propertyIsEnumerable("splice"))return"array";if("[object Function]"==l||"undefined"!=typeof U.call&&"undefined"!=typeof U.propertyIsEnumerable&&!U.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==t&&"undefined"==typeof U.call)return"object";return t},lY=function(U,l,t,I,D){if(I=U[0],I==r)l.J=25,l.A(U);else if(I==p){D=U[1];try{t=l.S||l.A(U)}catch(W){S(W,l),t=l.S}D(t)}else if(I==d2)l.A(U);else if(I==L)l.A(U);else if(I==iY){try{for(t=0;t<l.P.length;t++)try{D=l.P[t],D[0][D[1]](D[2])}catch(W){}}catch(W){}(0,(l.P=[],U)[1])(function(W,P){l.u(W,true,P)},function(W){((W=!l.h.length,f)(l,[IB]),W)&&C(true,l,false)})}else{if(I==Y)return t=U[2],g(l,101,U[6]),g(l,212,t),l.A(U);I==IB?(l.F=null,l.l=[],l.V=[]):I==Ze&&"loading"===n.document.readyState&&(l.T=function(W,P){function V(){P||(P=true,W())}n.document.addEventListener((P=false,"DOMContentLoaded"),V,A),n.addEventListener("load",V,A)})}},H=function(U,l){for(l=[];U--;)l.push(255*Math.random()|0);return l},aB=function(U,l,t){return U.u(function(I){t=I},false,l),t},v,sv=function(U,l){g(l,99,(l.Fq.push(l.F.slice()),l.F[99]=void 0,U))},T,K=function(U,l,t,I,D,W){if(l.I==l)for(W=J(U,l),32==U?(U=function(P,V,m,q){if((q=W.length,m=(q|0)-4>>3,W.iC)!=m){m=(m<<(V=[(W.iC=m,0),0,D[1],D[2]],3))-4;try{W.Cs=xa(Nw(W,m),V,Nw(W,(m|0)+4))}catch(e){throw e;}}W.push(W.Cs[q&7]^P)},D=J(299,l)):U=function(P){W.push(P)},I&&U(I&255),l=t.length,I=0;I<l;I++)U(t[I])},hk=function(U,l,t,I){function D(){}return{invoke:(I=Jk(U,function(W){D&&(l&&g2(l),t=W,D(),D=void 0)},(t=void 0,!!l))[0],function(W,P,V,m){function q(){t(function(e){g2(function(){W(e)})},V)}if(!P)return P=I(V),W&&W(P),P;t?q():(m=D,D=function(){g2((m(),q))})})}},SV=function(U,l,t,I,D){K(((t=(I=(t=(D=U&4,U&=3,u(l)),u)(l),J(t,l)),D)&&(t=jV(""+t)),U&&K(I,l,M(t.length,2)),I),l,t)},h=function(U,l,t,I,D,W){if(!t.K){if(3<(U=J(91,((l=((W=J(223,((I=void 0,U)&&U[0]===R&&(l=U[1],I=U[2],U=void 0),t)),0==W.length)&&(D=J(492,t)>>3,W.push(l,D>>8&255,D&255),void 0!=I&&W.push(I&255)),""),U)&&(U.message&&(l+=U.message),U.stack&&(l+=":"+U.stack)),t)),U)){(I=(l=(l=l.slice(0,(U|0)-3),U-=(l.length|0)+3,jV(l)),t.I),t).I=t;try{K(32,t,M(l.length,2).concat(l),9)}finally{t.I=I}}g(t,91,U)}},jV=function(U,l,t,I,D){for(D=(U=U.replace(/\\r\\n/g,"\\n"),I=0,[]),t=0;I<U.length;I++)l=U.charCodeAt(I),128>l?D[t++]=l:(2048>l?D[t++]=l>>6|192:(55296==(l&64512)&&I+1<U.length&&56320==(U.charCodeAt(I+1)&64512)?(l=65536+((l&1023)<<10)+(U.charCodeAt(++I)&1023),D[t++]=l>>18|240,D[t++]=l>>12&63|128):D[t++]=l>>12|224,D[t++]=l>>6&63|128),D[t++]=l&63|128);return D},w=function(U,l,t,I,D,W,P,V,m,q,e,c,b,d){if((e=J(99,l),e)>=l.H)throw[R,31];for(D=(I=l.Hv.length,b=0,t),m=e;0<D;)c=m%8,P=m>>3,W=8-(c|0),W=W<D?W:D,d=l.l[P],U&&(q=l,q.D!=m>>6&&(q.D=m>>6,V=J(467,q),q.L=xa(q.R,[0,0,V[1],V[2]],q.D)),d^=l.L[P&I]),m+=W,b|=(d>>8-(c|0)-(W|0)&(1<<W)-1)<<(D|0)-(W|0),D-=W;return g((U=b,l),99,(e|0)+(t|0)),U},uY=function(U,l,t,I){for(I=(t=u(l),0);0<U;U--)I=I<<8|E(l);g(l,t,I)},A={passive:true,capture:true},n=this||self,oB=function(U,l,t,I){try{I=U[((l|0)+2)%3],U[l]=(U[l]|0)-(U[((l|0)+1)%3]|0)-(I|0)^(1==l?I<<t:I>>>t)}catch(D){throw D;}},y=function(U,l,t,I,D,W,P,V,m){if(t.Y+=(W=(D=(P=(l||t.U++,0<t.O&&t.N)&&t.cv&&1>=t.W&&!t.C&&!t.T&&(!l||1<t.j-I)&&0==document.hidden,V=4==t.U)||P?t.B():t.Z,D-t.Z),m=W>>14,t.R&&(t.R^=m*(W<<2)),m),t.I=m||t.I,V||P)t.U=0,t.Z=D;if(!P||D-t.g<t.O-(U?255:l?5:2))return false;return!((g(t,(t.j=I,U=J(l?492:99,t),99),t.H),t.h.push([d2,U,l?I+1:I]),t).T=g2,0)},Nw=function(U,l){return U[l]<<24|U[(l|0)+1]<<16|U[(l|0)+2]<<8|U[(l|0)+3]},Mw=function(U,l,t,I,D,W,P,V){return(U=[-32,-66,-39,(P=t&(W=RB,7),-36),-61,36,U,-76,70,41],V=z[l.i](l.yg),V)[l.i]=function(m){P+=(D=m,6+7*t),P&=7},V.concat=function(m){return m=(m=(m=I%16+1,1*I*I*m+(W()|0)*m+U[P+27&7]*I*m+P-m*D-48*I*I*D- -3168*I*D+48*D*D-3552*D),U[m]),D=void 0,U[(P+37&7)+(t&2)]=m,U[P+(t&2)]=-66,m},V},J=function(U,l){if((l=l.F[U],void 0)===l)throw[R,30,U];if(l.value)return l.create();return(l.create(1*U*U+-66*U+74),l).prototype},y0=function(U,l){return[(l(function(t){t(U)}),function(){return U})]},w2=function(U,l){return z[l](z.prototype,{pop:U,length:U,propertyIsEnumerable:U,floor:U,replace:U,splice:U,call:U,document:U,stack:U,parent:U,console:U,prototype:U})},xa=function(U,l,t,I,D){for(l=l[2]|(I=l[D=0,3]|0,0);14>D;D++)t=t>>>8|t<<24,t+=U|0,U=U<<3|U>>>29,t^=l+3261,I=I>>>8|I<<24,U^=t,I+=l|0,l=l<<3|l>>>29,I^=D+3261,l^=I;return[U>>>24&255,U>>>16&255,U>>>8&255,U>>>0&255,t>>>24&255,t>>>16&255,t>>>8&255,t>>>0&255]},cG=function(U,l,t,I,D,W){function P(){if(U.I==U){if(U.F){var V=[Y,l,t,void 0,D,W,arguments];if(2==I)var m=C((f(U,V),false),U,false);else if(1==I){var q=!U.h.length;(f(U,V),q)&&C(false,U,false)}else m=lY(V,U);return m}D&&W&&D.removeEventListener(W,P,A)}}return P},B=function(U,l,t){U[g(l,t,U),Ze]=2796},g2=n.requestIdleCallback?function(U){requestIdleCallback(function(){U()},{timeout:4})}:n.setImmediate?function(U){setImmediate(U)}:function(U){setTimeout(U,0)},Q0=function(U,l){if((U=n.trustedTypes,l=null,!U)||!U.createPolicy)return l;try{l=U.createPolicy("bg",{createHTML:Ki,createScript:Ki,createScriptURL:Ki})}catch(t){n.console&&n.console.error(t.message)}return l},Jk=function(U,l,t,I){return(I=v[U.substring(0,3)+"_"])?I(U.substring(3),l,t):y0(U,l)},eV=function(U,l,t){return((t=z[U.i](U.ns),t)[U.i]=function(){return l},t).concat=function(I){l=I},t},$a=function(U,l,t){if(3==U.length){for(t=0;3>t;t++)l[t]+=U[t];for(t=[13,(U=0,8),13,12,16,5,3,10,15];9>U;U++)l[3](l,U%3,t[U])}},Ci=function(U,l,t,I,D,W){for(I=(l=u((D=(t=(W=U[Xi]||{},u)(U),W.mN=u(U),W.o=[],U).I==U?(E(U)|0)-1:1,U)),0);I<D;I++)W.o.push(u(U));for(W.IS=J(l,U);D--;)W.o[D]=J(W.o[D],U);return W.v=J(t,U),W},S=function(U,l){l.S=((l.S?l.S+"~":"E:")+U.message+":"+U.stack).slice(0,2048)},Gm=function(U,l,t,I){return J(212,(g(U,99,(((I=J(99,U),U.l&&I<U.H)?(g(U,99,U.H),sv(t,U)):g(U,99,t),mr)(l,U),I)),U))},Ki=function(U){return U},Xi=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),d2=[],Ze=[],iY=[],p=(x.prototype.Wv=void 0,x.prototype.hA=(x.prototype.xQ=void 0,false),[]),Y=(x.prototype.X="toString",[]),IB=[],R={},r=[],L=[],z=(((De,function(){})(H),function(){})(oB),$a,R.constructor),RB=(T=x.prototype,T.ps=function(U,l,t,I,D,W){for(t=(D=I=0,[]);D<U.length;D++)for(I+=l,W=W<<l|U[D];7<I;)I-=8,t.push(W>>I&255);return t},void 0);T.rT=(T.DZ=((T.u=function(U,l,t,I,D){if((t="array"===bY(t)?t:[t],this).S)U(this.S);else try{I=[],D=!this.h.length,f(this,[r,I,t]),f(this,[p,U,I]),l&&!D||C(l,this,true)}catch(W){S(W,this),U(this.S)}},T).B=(window.performance||{}).now?function(){return this.Eo+window.performance.now()}:function(){return+new Date},T.Tb=function(U,l,t,I,D){for(I=D=0;I<U.length;I++)D+=U.charCodeAt(I),D+=D<<10,D^=D>>6;return(D=(U=(D+=D<<3,D^=D>>11,D+(D<<15)>>>0),new Number(U&(1<<l)-1)),D)[0]=(U>>>l)%t,D},T.RS=(x.prototype.i="create",function(){return Math.floor(this.B())}),function(){return Math.floor(this.G+(this.B()-this.g))}),function(U,l,t){return((l^=l<<13,l^=l>>17,l=(l^l<<5)&t)||(l=1),U)^l}),x.prototype.A=function(U,l){return U=(RB=function(){return l==U?74:111},l={},{}),function(t,I,D,W,P,V,m,q,e,c,b,d,Z,Q,a){Z=l,l=U;try{if(W=t[0],W==L){P=t[1];try{for(b=(D=[],c=atob(P),q=0);q<c.length;q++)d=c.charCodeAt(q),255<d&&(D[b++]=d&255,d>>=8),D[b++]=d;g(this,467,[0,0,(this.l=D,this.H=this.l.length<<3,0)])}catch(X){h(X,17,this);return}mr(8001,this)}else if(W==r)t[1].push(J(253,this).length,J(263,this).length,J(91,this),J(32,this).length),g(this,212,t[2]),this.F[175]&&Gm(this,8001,J(175,this));else{if(W==p){this.I=(I=(Q=M(((q=t[2],J(263,this)).length|0)+2,2),this).I,this);try{e=J(223,this),0<e.length&&K(263,this,M(e.length,2).concat(e),10),K(263,this,M(this.Y,1),109),K(263,this,M(this[p].length,1)),c=0,c-=(J(263,this).length|0)+5,c+=J(391,this)&2047,V=J(32,this),4<V.length&&(c-=(V.length|0)+3),0<c&&K(263,this,M(c,2).concat(H(c)),15),4<V.length&&K(263,this,M(V.length,2).concat(V),156)}finally{this.I=I}if((b=H(2).concat(J(263,this)),b[1]=b[0]^6,b[3]=b[1]^Q[0],b)[4]=b[1]^Q[1],a=this.bC(b))a="!"+a;else for(c=0,a="";c<b.length;c++)m=b[c][this.X](16),1==m.length&&(m="0"+m),a+=m;return J(32,(g(this,91,((J(253,(D=a,this)).length=q.shift(),J(263,this)).length=q.shift(),q.shift())),this)).length=q.shift(),D}if(W==d2)Gm(this,t[2],t[1]);else if(W==Y)return Gm(this,8001,t[1])}}finally{l=Z}}}();var qw,fi=/./,pi=L.pop.bind(x.prototype[x.prototype[iY]=[0,0,1,1,0,1,1],((x.prototype.bC=function(U,l,t,I){if(l=window.btoa){for(I=(t="",0);I<U.length;I+=8192)t+=String.fromCharCode.apply(null,U.slice(I,I+8192));U=l(t).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else U=void 0;return U},x.prototype).NT=0,x).prototype.Bv=0,r]),Ev=(qw=w2({get:pi},(fi[x.prototype.X]=pi,x.prototype.i)),x.prototype.kQ=void 0,function(U,l){return(l=Q0())&&1===U.eval(l.createScript("1"))?function(t){return l.createScript(t)}:function(t){return""+t}}(n));(40<(v=n.botguard||(n.botguard={}),v.m)||(v.m=41,v.bg=hk,v.a=Jk),v).VBW_=function(U,l,t){return[(t=new x(l,U),function(I){return aB(t,I)})]};}).call(this);'));
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 590040aae3e25b40a2c334846d348c384c60ede4211a4373be806ca2ee55d9f9

                                        0,
function(W) {
    uY(2, W)
}
                                    

#3 JavaScript::Eval (size: 30552, repeated: 1) - SHA256: c78dc26acbff051fc61fe2bf3ea651f2aa8da78dbc261eb0c1fff538a22e97ad

                                        SekindoNativeSkinApi = function(config) {
    if (config.loadDefaultFont) {
        //Add Robotto font
        var head = document.getElementsByTagName("head")[0];
        var link = document.createElement("link");
        link.rel = "stylesheet";
        link.type = "text/css";
        link.href = "https://fonts.googleapis.com/css?family=Roboto&display=swap";
        head.appendChild(link);
    }
    var ref = this;
    //Set default params
    var params = {}; // config object
    params.mainTitle = "FEATURED VIDEOS"; // String, default is "FEATURED VIDEOS" (if not declared), the unit left top side title
    params.readMoreText = "Watch Video"; // String, default is "Read More" (if not declared), empty string will hide read-more element
    params.primisLogoOn = true; // Boolean, default is true (if not declared), show or hide the right top side primis logo
    params.skinWidth = 690; //Integer , default 690 (if not declared), set the skin width if 'isResponsive' set to 'false'. other wize skin width is responsive

    params.isResponsive = false; // Boolean, default is "false", if set to "true" then the skinWidth is set to '100%'
    params.fontLinks = null; // String, custom font links that will be additionally included at the page
    params.css = null; // String, css structure that overrides the current css. an example for background and title colors change '.Large-unit{ background-color: #ff0055; } .main-title{ color: white; }';
    params.showDescription = false; //Boolean, default is false (if not declared), show video description
    params.titleLinesToCropAfter = 4; //Integer , default 4 (if not declared), set main title number of lines to be cropped after
    params.descriptionLinesToCropAfter = 1; //Integer , default 1 (if not declared), set description number of lines to be cropped after
    params.thumbsColsNum = 1; //Integer , default 1 (if not declared), set number of columns for thumbnails
    params.evenColsDataType = "text"; //String, default is "text", (options are: "text", "thumbs") set even thumbnail column to contain video image or video description
    params.thumbsColsPosition = "right"; // string, default is right (options are: "right", "left"), show thumbnails to the right/left of the player

    //Merge current params with external params.
    params = merge2Objs(params, config.primisSkinParams);

    function merge2Objs(obj, src) {
        for (var key in src) {
            if (src.hasOwnProperty(key)) {
                obj[key] = src[key];
            }
        }
        return obj;
    }

    //Get html elements
    var largeUnit = document.getElementById("largeUnit");
    var featuredVideos = document.getElementById("featuredVideos");
    var titlesTable = document.getElementById("titlesTable");
    var primisLogo = document.getElementById("primisLogo");
    var primisLogoImg = document.getElementById("primisLogoImg");
    var promotedBy = document.getElementById("promotedBy");
    var skinContentTr = document.getElementById("skinContentTr");

    var playerTd = document.createElement("td");
    playerTd.className = 'contentTd';
    playerTd.style.display = 'inline-block';
    var vidPlaceHolder = document.createElement("div");
    playerTd.appendChild(vidPlaceHolder);
    var relatedItemsTd = document.createElement("td");
    relatedItemsTd.className = "contentTd";
    relatedItemsTd.style.verticalAlign = "top";

    var relatedItemsWrapper = document.createElement("div");
    relatedItemsWrapper.className = 'relatedItemsWrapper'
    relatedItemsWrapper.style.display = 'inline-block';
    relatedItemsTd.appendChild(relatedItemsWrapper);

    if (params.thumbsColsPosition == "right") {
        skinContentTr.appendChild(playerTd);
        skinContentTr.appendChild(relatedItemsTd);
    } else {
        skinContentTr.appendChild(relatedItemsTd);
        skinContentTr.appendChild(playerTd);
    }
    vidPlaceHolder.style.width = '100%';

    //Declare vars
    var strBreakAddedTxt = "&";
    var readMoreAddedTxtOrigin = '';
    var defaultImgSrc = decodeURI(config.absolutePath + '/content/video/splayer/assets/bigPlayBtn.jpg');
    var clkUrl = "";
    var fileId = '';
    var thumbsArray = []; // full matrix of contentList*colsNum
    var currThumbsMatrix = []; // actual displayed matrix of thumbs
    var isDisplayMainTitle;
    var isDisplayReadMore;
    var thumbsColWidth = 130;
    var thumbsHeight = 73;
    var paddingBetweenThumbs = 7;
    var spaceBetweenPlayerAndRelatedItems = 7;
    var prevContent;
    var minPlayerWidth = 300;
    var actualThumbsColsNum = params.thumbsColsNum;
    var maxThumbsCols = params.thumbsColsNum;
    var thumbImgLoadThreshold = 0; //threshold in px before image loaded on scroll

    var playBtnSvg = '<svg xmlns="http://www.w3.org/2000/svg" width="100%" height="100%" enable-background="new 0 0 494.148 494.148" viewBox="0 0 494.148 494.148"><path fill="#fff" d="M405.284 201.188L130.804 13.28C118.128 4.596 105.356 0 94.74 0 74.216 0 61.52 16.472 61.52 44.044v406.124c0 27.54 12.68 43.98 33.156 43.98 10.632 0 23.2-4.6 35.904-13.308l274.608-187.904c17.66-12.104 27.44-28.392 27.44-45.884.004-17.48-9.664-33.764-27.344-45.864z"/></svg>';
    var primisLogoSvg = '<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"  viewBox="0 0 877.5 228.7" style="enable-background:new 0 0 877.5 228.7;" xml:space="preserve"> <style type="text/css"> .st0{fill:#022242;} .st1{fill:#FF3E5F;} </style> <path class="st0" d="M154.2,195H115l29.8-146.3H184l-2.4,11.5c5.4-7.8,16-12.8,29-12.8c24,0,47.4,18.8,47.4,49.4 c0,34.9-30.8,62.4-61.9,62.4c-16.5,0-29.5-5-32-12.8L154.2,195z M192.2,124.1c13.6,0,24.5-10.8,24.5-22.7c0-11-8.5-18.8-20.6-18.8 c-14.3,0-24.7,11-24.7,22.5C171.4,116,179.9,124.1,192.2,124.1L192.2,124.1z"/> <path class="st0" d="M280.2,48.7h40.1l-2.8,13.4c8.7-12.1,18.2-16,29.9-16c4.4,0,8.9,0.4,13.2,1.2l-7.2,35.7 c-4.7-0.8-9.5-1.1-14.3-1.1c-17.3,0-27.9,12.6-32.3,33.1l-8.9,42.7h-40.1L280.2,48.7z"/> <path class="st0" d="M374.9,48.7h40.1l-22.3,109.1h-40.1L374.9,48.7z M377.7,24c0-12.6,10.8-24,24.5-24c12.1,0,20.6,8.5,20.6,19.9 c0,12.1-10.4,23.8-24.5,23.8C386.1,43.7,377.7,35.5,377.7,24L377.7,24z"/> <path class="st0" d="M430.8,48.7h40.1l-2.8,13.4c8-12.1,17.1-16,27.9-16c14.3,0,24.9,6.3,29.2,16.9c9.3-11,23.1-17.2,37.4-16.9 c21.4,0,33.6,14.1,33.6,36.2c0,3.6-0.4,7.3-1.1,10.8l-13.4,64.8h-40.1l12.3-61.1c0.2-1.4,0.4-2.9,0.4-4.3c0-7.6-3.7-12.1-10.6-12.1 c-8.7,0-14.3,7.4-16.5,18l-12.3,59.6H475l12.3-61.1c0.2-1.4,0.4-2.9,0.4-4.3c0-7.6-3.7-12.1-10.6-12.1c-8.7,0-14.3,6.9-16.5,17.5 l-12.1,60h-40.1L430.8,48.7z"/> <path class="st0" d="M619.7,48.7h40.1l-22.3,109.2h-40.1L619.7,48.7z M622.5,24c0-12.6,10.8-24,24.5-24c12.1,0,20.6,8.5,20.6,19.9 c0,12.1-10.4,23.8-24.5,23.8C631,43.7,622.5,35.5,622.5,24z"/> <path class="st0" d="M676.1,116.7c7.4,8.7,18.4,10.8,29.9,10.8c9.5,0,12.8-2.4,12.8-5.2c0-4.8-18.4-3.9-32.9-11 c-11.5-5.6-17.5-14.5-17.5-26.9c0-21,20.6-39,48.9-39c16.6-0.1,32.7,5.8,45.3,16.7l-20.1,25.3c-7.4-6.7-17.1-10.4-27.1-10.4 c-7.6,0-10.4,2.8-10.4,5.6c0,5.2,15.2,4.8,33.3,11.9c14.3,5.6,18,16.2,18,27.1c0,24.5-18.8,39.4-54.6,39.4 c-22.7,0-40.1-7.4-50.7-19.7L676.1,116.7z"/> <path class="st1" d="M81.9,195l-6.9,33.8H0L46.5,0h74.9l-6.9,33.8H77.3L44.6,195H81.9z"/> <path class="st1" d="M795.6,33.7L802.5,0h74.9L831,228.7H756L763,195h37.3l32.6-161.2L795.6,33.7z"/> </svg>';
    var nowPlayingHtml = '<div style="width: 95%; text-align: center; text-decoration: none; transform: translateY(100%); font-size: 11px; display: block; position: absolute; line-height: 12px; letter-spacing: 0.11px; z-index: 100; pointer-events: none; color: white; font-family: Roboto; text-overflow: ellipsis; white-space: nowrap; overflow: hidden; user-select: none; -webkit-tap-highlight-color: rgba(0, 0, 0, 0);">NOW <br> PLAYING</div>';
    var coverBoxHtml = '<div style="opacity: 1; width: 130px; height: 73px; position: absolute; z-index: 1; background-color: rgba(0, 0, 0, 0.4); overflow: hidden; user-select: none; display: block; -webkit-tap-highlight-color: rgba(0, 0, 0, 0);" class=""></div>';

    if (params.css) {
        var style = document.createElement('style');
        style.type = 'text/css';
        style.appendChild(document.createTextNode(params.css));
        document.body.appendChild(style);
    }

    this.numThumbsImgLoaded = 0;

    //Add custom font links separated by #!#
    addCustomFontLinks(params.fontLinks);

    function addCustomFontLinks(fontLinks) {
        if (fontLinks) {
            var linksArray = fontLinks.split("#!#");
            for (var k = 0; k < linksArray.length; k++) {
                var head = document.getElementsByTagName("head")[0];
                var link = document.createElement("link");
                link.rel = "stylesheet";
                link.type = "text/css";
                link.href = linksArray[k];
                head.appendChild(link);
            }
        }
    }

    isDisplayMainTitle = getDisplayStateByContent(params.mainTitle);
    //Set read more text
    readMoreAddedTxtOrigin = ' <a class="thumbnail-read-more" style="color:' + config.playerTemplateData.designColor + '" > ' + params.readMoreText + '</a>';
    isDisplayReadMore = getDisplayStateByContent(params.readMoreText);

    function getDisplayStateByContent(paramsField) {
        return (paramsField.trim().length == 0) ? false : true;
    }

    //Set logo and update it's colors
    var rgb = getComputedStyle(largeUnit).backgroundColor.match(/\d+/g);
    var R = parseInt(rgb[0]);
    var G = parseInt(rgb[1]);
    var B = parseInt(rgb[2]);
    var avg = (R + G + B) / 3;

    //White logo
    if (R > 180 && G < 120 && R / ((G + B) / 2) > 1.2) {
        primisLogoSvg = primisLogoSvg.replace('st0{fill:#022242;}', 'st0{fill:#ffffff;}')
        primisLogoSvg = primisLogoSvg.replace('st1{fill:#FF3E5F;}', 'st1{fill:#ffffff;}')
    }
    //Bright logo
    else if (avg < 150) {
        primisLogoSvg = primisLogoSvg.replace('st0{fill:#022242;}', 'st0{fill:#ffffff;}')
    }
    //White "Powered by"
    if (avg > 115 && avg < 195) {
        promotedBy.style.color = '#FFF'
    }
    primisLogoImg.innerHTML = primisLogoSvg;

    config.nativeSkinType = 'inContentThumbs' + (params.evenColsDataType == "text" ? 'Text' : ''); //todo: is usable?

    config.nativeSkinIframe.style.width = params.isResponsive ? '100%' : params.skinWidth + 'px';
    config.nativeSkinIframe.style.maxWidth = params.isResponsive ? '100%' : params.skinWidth + 'px';
    config.nativeSkinIframe.style.minWidth = params.isResponsive ? '100%' : params.skinWidth + 'px';
    config.containerDiv.style.width = params.isResponsive ? '100%' : params.skinWidth + 'px';

    //playerIframeDiv must be absolute to control positions of the player and its thumbs
    playerIframeDiv.style.position = 'absolute';

    //The "largeUnitWidth" parameter is used for calculating text lines and position.
    var largeUnitWidth = config.nativeSkinIframe.clientWidth;

    //Set titles display
    if (isDisplayMainTitle) {
        featuredVideos.innerText = (params.mainTitle && params.mainTitle.length) ? params.mainTitle : 'FEATURED VIDEOS';
    } else {
        featuredVideos.innerText = '';
    }

    //Set primis logo display
    if (!params.primisLogoOn && !isDisplayMainTitle) {
        titlesTable.style.display = 'none';
    } else if (!params.primisLogoOn) {
        titlesTable.rows[0].cells[1].style.display = 'none';
    }

    function initiations() {
        calcPlayerSize();
        generateThums();

        //solution for ie lazy loading, when the initiation delayed
        if (config.nativeSkinIframe.offsetHeight == largeUnit.clientHeight) loadImg(largeUnit.clientHeight);

        config.nativeSkinIframe.style.height = largeUnit.clientHeight + 'px';
        config.containerDiv.style.height = largeUnit.clientHeight + 'px';
        AddNowPlayingLabel(config.currContentIndex);
        relatedItemsWrapper.addEventListener('scroll', loadImgOnScroll)
    }
    if (config.clientInfo.browser == 'ie') {
        //Timeout is needed for IE that haz a delay in rendering the HTML
        setTimeout(function() {
            initiations();
        }, 10);
    } else {
        initiations();
    }

    //Size change detector
    setInterval(function() {
        if (largeUnitWidth != config.containerDiv.clientWidth && !config.FSservice.isFullscreen) {
            largeUnitWidth = config.containerDiv.clientWidth;
            calcPlayerSize();
        }
    }, 10);

    function generateThums() {
        var numOfThumbs = config.contentPlayList.length;

        //Generate thumbs HTML objects
        for (var i = 0; i < numOfThumbs; i++) {
            var thumbObj = new createTumb(i);
            if (!(i == numOfThumbs - 1)) thumbObj.playlistThumb.style.paddingBottom = paddingBetweenThumbs + "px";
            thumbsArray.push(thumbObj);
            relatedItemsWrapper.appendChild(thumbObj.playlistThumb);
        }
    }

    function createTumb(index) {
        var ref = this;
        this.isImgLoaded = false;

        this.playlistThumb = document.createElement('div');
        this.playlistThumb.className = "playlistThumb"
        this.playlistThumb.style.position = 'relative';
        this.playlistThumb.style.width = params.evenColsDataType === "text" ? (thumbsColWidth * 2 + paddingBetweenThumbs) + "px" : thumbsColWidth + "px";
        this.playlistThumb.style.float = "left";
        this.contentContainer = document.createElement('div');
        this.contentContainer.className = "contentContainer";
        this.contentContainer.style.position = 'relative';
        this.contentContainer.style.float = 'left';
        this.imgDiv = document.createElement('div');

        this.nowPlayingContainer = document.createElement('div');
        this.nowPlayingContainer.className = "nowPlayingContainer"
        this.nowPlayingContainer.innerHTML = nowPlayingHtml;
        this.nowPlayingContainer.position = "relative";
        this.coverBoxDiv = document.createElement('div');
        this.coverBoxDiv.innerHTML = coverBoxHtml;
        this.nowPlayingContainer.appendChild(this.coverBoxDiv);
        this.nowPlayingContainer.style.display = "none";
        this.contentContainer.appendChild(this.nowPlayingContainer);

        this.playBtnContainer = document.createElement('div');
        this.playBtnContainer.className = "playBtnContainer"
        this.playBtnContainer.innerHTML = playBtnSvg;
        this.playBtnContainer.style.position = 'absolute';
        this.playBtnContainer.style.width = '25px';
        this.playBtnContainer.style.height = '25px';
        this.playBtnContainer.style.top = '50%';
        this.playBtnContainer.style.left = '50%';
        this.playBtnContainer.style.transform = 'translate(-50%, -50%)';
        this.playBtnContainer.style.pointerEvents = 'none';
        this.contentContainer.appendChild(this.imgDiv);
        this.contentContainer.appendChild(this.playBtnContainer);
        this.playlistThumb.style.paddingRight = paddingBetweenThumbs + "px";
        this.playlistThumb.appendChild(this.contentContainer);

        if (params.evenColsDataType === "text") {
            var thumbMoreAddedTxt = '';
            this.txtContainer = document.createElement('div');
            this.txtContainer.className = "txtContainer";
            this.txtContainer.style.float = 'left';
            this.txtContainer.style.paddingLeft = paddingBetweenThumbs + "px";
            this.thumbTitle = document.createElement('div');
            this.thumbTitle.className = "thumbnail-title";
            this.thumbTitle.innerHTML = config.contentPlayList[index].title;
            this.txtContainer.style.cursor = "pointer";
            this.txtContainer.style.width = thumbsColWidth + "px";
            this.txtContainer.style.height = thumbsHeight + "px";
            this.txtContainer.appendChild(this.thumbTitle);
            this.playlistThumb.appendChild(this.txtContainer);

            if (params.showDescription) {
                this.thumbDesc = document.createElement('div');
                this.thumbDesc.className = "thumbnail-desc";
                this.thumbDesc.innerHTML = config.contentPlayList[index].desc;
                this.txtContainer.appendChild(this.thumbDesc)
            }

            if (isDisplayReadMore) {
                thumbMoreAddedTxt = readMoreAddedTxtOrigin;
            }

            this.cropTexts = function() {
                var unitWidth = thumbsColWidth;

                if (config.contentPlayList[index].desc && config.contentPlayList[index].desc.length && params.showDescription) {
                    cropTextByLines(this.thumbTitle, params.descriptionLinesToCropAfter, config.contentPlayList[index].title, strBreakAddedTxt, '', unitWidth);
                    cropTextByLines(this.thumbDesc, (params.titleLinesToCropAfter - 1), config.contentPlayList[index].desc, strBreakAddedTxt, thumbMoreAddedTxt, unitWidth);
                } else {
                    cropTextByLines(this.thumbTitle, params.titleLinesToCropAfter, config.contentPlayList[index].title, strBreakAddedTxt, thumbMoreAddedTxt, unitWidth);
                }
            }

            config.utils.delayRequest(function() {
                ref.cropTexts();
            }, 1, config.rootWindow);


            this.txtContainer.onclick = function() {
                ref.onVideoClick(this.index);
            }
        }

        this.imgDiv.innerHTML = '';
        this.img = new Image(thumbsColWidth, thumbsHeight);
        this.img.style.cursor = "pointer";

        this.img.onImgError = function() {
            //Avoid infinity error loop
            if (this.img.isImgError) {
                this.img.parentNode.removeChild(img);
                return;
            }
            this.img.isImgError = true;
            this.img.src = defaultImgSrc;
        }
        this.img.addEventListener('error', this.img.onImgError);
        this.imgDiv.appendChild(this.img);

        this.clkUrl = config.contentPlayList[index].clkUrl ? config.contentPlayList[index].clkUrl : "";
        this.fileId = config.contentPlayList[index].fileId ? config.contentPlayList[index].clkUrl : "";

        if (isDisplayReadMore) {
            thumbMoreAddedTxt = readMoreAddedTxtOrigin;
        }

        this.onVideoClick = function() {
            if (config.adIsPlaying) {
                return;
            }
            config.nextContentIndex = index;
            config.intentInitiator = 'userSwitchContentFS';
            config.bus.triggerNote('intentOn');
            config.bus.triggerNote('onUserEvent', {
                type: 'onPlay'
            });
            config.bus.triggerNote('userSwitchContent', 'contentPlaylistClicksPixel');
        }

        this.imgDiv.onclick = function() {
            ref.onVideoClick();
        }
    }

    function calcPlayerSize() {
        var skinWidth = params.isResponsive ? largeUnitWidth : params.skinWidth;
        var relatedItemsWidth = relatedItemsWrapper.offsetWidth;
        var actualPlayerWidth = updateActualThumbsCols(skinWidth);

        config.width = actualPlayerWidth;
        config.height = actualPlayerWidth;
        var val = {
            responsive: false,
            width: actualPlayerWidth,
            height: actualPlayerWidth
        };
        // Affecting at floating unit sizes
        if (!config.flowStatus) {
            config.bus.triggerNote('requestLayoutResize', val);
        }

        config.nativeSkinIframe.style.visibility = 'visible';
        var rect = vidPlaceHolder.getBoundingClientRect();

        relatedItemsWrapper.style.maxWidth = relatedItemsWrapper.style.maxWidth === "" ? (relatedItemsWidth) + "px" : relatedItemsWrapper.style.maxWidth;
        // Affecting at floating unit location
        if (!config.flowStatus) {
            // To fix bug in chrome on ipad:
            if (config.clientInfo.deviceType === "tablet" && config.clientInfo.os === "ios" && config.clientInfo.browser === "chrome") {
                playerIframeDiv.style.top = relatedItemsTd.getBoundingClientRect().top + 'px';
            } else {
                playerIframeDiv.style.top = rect.top + 'px';
            }
            playerIframeDiv.style.left = (params.thumbsColsPosition === "right" ? rect.left : (parseInt(relatedItemsWrapper.style.maxWidth, 10) + spaceBetweenPlayerAndRelatedItems)) + 'px';
        }
        relatedItemsWrapper.style.cssFloat = params.thumbsColsPosition; // "right"/"left"
    }

    function updateActualThumbsCols(skinWidth) {
        var thumbWidth = (thumbsColWidth + paddingBetweenThumbs) * (params.evenColsDataType === "text" ? 2 : 1),
            availableThumbsSpace = skinWidth - minPlayerWidth - spaceBetweenPlayerAndRelatedItems,
            currColmsPossible = Math.min(Math.floor(availableThumbsSpace / thumbWidth), maxThumbsCols);

        var currPlayerWidth = skinWidth - (thumbWidth * currColmsPossible) - spaceBetweenPlayerAndRelatedItems;
        relatedItemsWrapper.style.maxWidth = skinWidth - currPlayerWidth - spaceBetweenPlayerAndRelatedItems;
        return currPlayerWidth;
    }

    function AddNowPlayingLabel(currVideoIndex) {
        if (currVideoIndex === undefined || actualThumbsColsNum === 0) {
            return;
        }
        var row = Math.floor((currVideoIndex) / actualThumbsColsNum);
        var col = currVideoIndex - row * actualThumbsColsNum;

        //remove now playing label from previous video
        if (prevContent) {
            prevContent["nowPlayingContainer"].style.display = "none";
        }
        //add now playing label to current video
        thumbsArray[currVideoIndex].nowPlayingContainer.style.display = config.playerTemplateData.isShowPlaylistNowPlaying == 1 ? "block" : "none";
        prevContent = thumbsArray[currVideoIndex];
    }

    //Crops the titles and descriptions to fit with requested number of lines
    function cropTextByLines(obj1, linesNum, innerHtml, addedDots, addedTxt, width) {
        var strArray = innerHtml.split(" ");

        //Calculate a single line height and averege letter width
        obj1.style.width = 'fit-content';
        obj1.innerHTML = "WIwaii";
        var lineHeight = obj1.clientHeight;
        var letterWidth = obj1.offsetWidth / 6;
        var lettersNum = Math.round((width - 20) / letterWidth);

        obj1.innerHTML = "";
        obj1.style.width = width;

        //Calculate the text height and add only the requiered words
        for (var i = 0; i < strArray.length; i++) {
            var tmpArr = strArray.slice(0, (i + 1));
            obj1.innerHTML = tmpArr.join(" ") + addedDots + addedTxt;

            //Check if we acceded lines height
            if ((lineHeight * linesNum) < obj1.clientHeight) {
                var tmpArr = strArray.slice(0, i);
                var j = i;
                while ((lineHeight * linesNum) < obj1.clientHeight) {
                    tmpArr = strArray.slice(0, (j--));
                    var str
                    if (tmpArr.length) {
                        str = tmpArr.join(" ") + addedDots + addedTxt;
                        obj1.innerHTML = str;
                    } else {
                        var addedStr = addedDots + addedTxt;
                        var addedTxtLength = addedStr.length;
                        str = strArray[0].slice(0, (lettersNum - addedTxtLength)) + addedStr;
                        obj1.innerHTML = str;

                        break;
                    }
                }
                break;
            }

            //All sentence is viewable
            if (i == strArray.length - 1) {
                obj1.innerHTML = tmpArr.join(" ") + addedTxt;
            }
        }
    }

    function loadImg(playerHeight) {
        var numOfThumbsInViewport = (Math.ceil(playerHeight / thumbsHeight)) * actualThumbsColsNum;

        for (var i = 0; i < numOfThumbsInViewport; i++) {
            if (thumbsArray[i] && !thumbsArray[i].isImgLoaded) {
                thumbsArray[i].isImgLoaded = true;
                thumbsArray[i].img.src = config.contentPlayList[i].bgImgThumb;
                thumbsArray[i].img.alt = config.contentPlayList[i].title;
                ref.numThumbsImgLoaded++
            }
        }
    }

    function loadImgOnScroll() {
        for (var i = 0; i < thumbsArray.length; i++) {
            if (!thumbsArray[i].isImgLoaded) {
                var isThumbInView = isThumbInViewPort(thumbsArray[i].playlistThumb);
                if (isThumbInView) {
                    thumbsArray[i].isImgLoaded = true;
                    thumbsArray[i].img.src = config.contentPlayList[i].bgImgThumb;
                    thumbsArray[i].img.alt = config.contentPlayList[i].title;
                    ref.numThumbsImgLoaded++
                }
            }
        }
        if (ref.numThumbsImgLoaded >= thumbsArray.length) {
            relatedItemsWrapper.removeEventListener('scroll', loadImgOnScroll);
        }
    }

    function isThumbInViewPort(thumb) {
        var thumbRect = thumb.getBoundingClientRect(),
            isThumbInView = thumbRect.top - thumbImgLoadThreshold < relatedItemsWrapper.offsetHeight ? true : false;
        return isThumbInView;
    }

    config.bus.addCallBack("adStarted", function(val) {
        config.nativeSkinIframe.style.opacity = '0.3';
    });
    config.bus.addCallBack("adCompleted", function(val) {
        config.nativeSkinIframe.style.opacity = '1';
        config.nativeSkinIframe.style.backfaceVisibility = 'hidden'; // needed for chrome opacity transitions
    });

    config.bus.addCallBack("onNextContentInited", function(val) {
        clkUrl = '';
        fileId = '';
        AddNowPlayingLabel(config.currContentIndex);
        if (getDisplayStateByContent(config.playerTemplateData.goToArticleText) &&
            val.content.clkUrl && val.content.clkUrl.length) {
            clkUrl = val.content.clkUrl;
            fileId = val.content.fileId;
        }

        config.nativeSkinIframe.style.height = largeUnit.clientHeight + 'px';
        config.containerDiv.style.height = largeUnit.clientHeight + 'px';
    });

    // for correct positioning in flow
    config.bus.addCallBack("onFlowStatusChange", function(val) {
        playerIframeDiv.style.top = 'auto';
        playerIframeDiv.style.left = 'auto';
        if (!val) {
            ref.resetFlowTimeout = setTimeout(function() {
                // reset absolute position of the player in skin when return from flow
                playerIframeDiv.style.zIndex = 1;
                var rect = vidPlaceHolder.getBoundingClientRect();
                playerIframeDiv.style.top = rect.top + 'px';
                playerIframeDiv.style.left = rect.left + 'px';
                playerIframeDiv.style.position = 'absolute';

            }, 1);
        } else {
            clearTimeout(ref.resetFlowTimeout);
        }
    });

    config.bus.addCallBack("onPlayerResize", function(val) {
        if (config.flowStatus || config.FSservice.isFullscreen) return;
        vidPlaceHolder.style.width = val.playerWidth + 'px';
        vidPlaceHolder.style.height = val.playerHeight + 'px';

        // need to first limit relatedItems height and only then update nativeSkinIframe height with the updated height of largeUnit
        relatedItemsWrapper.style.maxHeight = val.playerHeight + "px";

        if (ref.numThumbsImgLoaded < thumbsArray.length) loadImg(val.playerHeight);

        config.nativeSkinIframe.style.height = largeUnit.clientHeight + 'px';
        config.containerDiv.style.height = largeUnit.clientHeight + 'px';
    });

    primisLogo.onclick = function() {
        window.top.open('https://www.primis.tech?utm_source=' + config.domain + '&utm_medium=' + config.nativeSkinType + '&utm_campaign=promoted', "_blank");
    }
}
                                    

#4 JavaScript::Eval (size: 19444, repeated: 1) - SHA256: bc3a514bc3b7a8baba5ca8426d40c61baedb9ab30e0cdd13d637a4da2f85a99c

                                        (function() {
    var f = function(U, l) {
            U.h.splice(0, 0, l)
        },
        E = function(U) {
            return U.C ? Uv(U.s, U) : w(true, U, 8)
        },
        u = function(U, l) {
            if (U.C) return Uv(U.s, U);
            return (l = w(true, U, 8), l) & 128 && (l ^= 128, U = w(true, U, 2), l = (l << 2) + (U | 0)), l
        },
        WG = function(U, l, t, I) {
            for (; l.h.length;) {
                t = (l.T = null, l.h.pop());
                try {
                    I = lY(t, l)
                } catch (D) {
                    S(D, l)
                }
                if (U && l.T) {
                    (U = l.T, U)(function() {
                        C(true, l, true)
                    });
                    break
                }
            }
            return I
        },
        tk = function(U, l) {
            return (l = E(U), l) & 128 && (l = l & 127 | E(U) << 7), l
        },
        C = function(U, l, t, I, D, W) {
            if (l.h.length) {
                l.N && 0(), l.N = true, l.cv = U;
                try {
                    I = l.B(), l.Z = I, l.U = 0, l.g = I, W = WG(U, l), D = l.B() - l.g, l.G += D, D < (t ? 0 : 10) || 0 >= l.J-- || (D = Math.floor(D), l.V.push(254 >= D ? D : 254))
                } finally {
                    l.N = false
                }
                return W
            }
        },
        M = function(U, l, t, I) {
            for (I = (l | 0) - 1, t = []; 0 <= I; I--) t[(l | 0) - 1 - (I | 0)] = U >> 8 * I & 255;
            return t
        },
        x = function(U, l, t) {
            t = this;
            try {
                PG(this, U, l)
            } catch (I) {
                S(I, this), U(function(D) {
                    D(t.S)
                })
            }
        },
        mr = function(U, l, t, I, D, W) {
            if (!l.S) {
                l.W++;
                try {
                    for (W = (I = void 0, l.H), D = 0; --U;) try {
                        if ((t = void 0, l).C) I = Uv(l.C, l);
                        else {
                            if ((D = J(99, l), D) >= W) break;
                            I = (g(l, 492, D), t = u(l), J)(t, l)
                        }
                        y(false, false, l, (I && I[IB] & 2048 ? I(l, U) : h([R, 21, t], 0, l), U))
                    } catch (P) {
                        J(20, l) ? h(P, 22, l) : g(l, 20, P)
                    }
                    if (!U) {
                        if (l.hA) {
                            mr(553527590301, (l.W--, l));
                            return
                        }
                        h([R, 33], 0, l)
                    }
                } catch (P) {
                    try {
                        h(P, 22, l)
                    } catch (V) {
                        S(V, l)
                    }
                }
                l.W--
            }
        },
        V0 = function(U, l, t, I) {
            (I = (t = u(U), u)(U), K)(I, U, M(J(t, U), l))
        },
        Uv = function(U, l) {
            return (U = U.create().shift(), l.C).create().length || l.s.create().length || (l.C = void 0, l.s = void 0), U
        },
        De = function(U, l) {
            (l.push(U[0] << 24 | U[1] << 16 | U[2] << 8 | U[3]), l.push(U[4] << 24 | U[5] << 16 | U[6] << 8 | U[7]), l).push(U[8] << 24 | U[9] << 16 | U[10] << 8 | U[11])
        },
        PG = function(U, l, t, I, D) {
            for (U.ns = ((U.AA = fi, (U.Hv = U[p], U).so = qw, U).yg = w2({get: function() {
                        return this.concat()
                    }
                }, U.i), z)[U.i](U.yg, {
                    value: {
                        value: {}
                    }
                }), I = 0, D = []; 128 > I; I++) D[I] = String.fromCharCode(I);
            C(true, U, (f(U, (f(U, [((B(function(W) {
                SV(4, W)
            }, (B(function(W, P, V) {
                g((P = (V = u((P = u(W), W)), J(P, W)), P = bY(P), W), V, P)
            }, (g(U, 299, [0, (B(function(W) {
                V0(W, 4)
            }, (B(function(W, P, V, m, q) {
                g(W, (V = (V = u((m = (P = u((q = u(W), W)), u(W)), W)), J(V, W)), m = J(m, W), P = J(P, W), q), cG(W, P, m, V))
            }, (B(function(W, P) {
                (W = (P = u(W), J)(P, W.I), W[0]).removeEventListener(W[1], W[2], A)
            }, U, (B(function(W, P, V, m) {
                g(W, (V = J((m = (V = u((P = u(W), W)), u(W)), P = J(P, W), V), W), m), P[V])
            }, U, (B(function(W, P, V, m) {
                g(W, (P = J((m = (P = u(W), u(W)), P), W), V = J(m, W), m), V + P)
            }, (B(function(W, P, V, m) {
                (m = u((V = (P = u(W), u(W)), W)), W).I == W && (m = J(m, W), V = J(V, W), J(P, W)[V] = m, 467 == P && (W.D = void 0, 2 == V && (W.R = w(false, W, 32), W.D = void 0)))
            }, (g(U, (B(function(W) {
                uY(4, W)
            }, (B(function(W, P, V, m, q) {
                for (m = (V = (q = tk((P = u(W), W)), []), 0); m < q; m++) V.push(E(W));
                g(W, P, V)
            }, U, ((B(function(W, P, V) {
                V = (P = (V = u(W), u(W)), 0 != J(V, W)), P = J(P, W), V && g(W, 99, P)
            }, (B(function(W, P, V, m, q, e) {
                y(false, true, W, P) || (m = Ci(W.I), q = m.o, e = q.length, V = m.v, P = m.mN, m = m.IS, q = 0 == e ? new m[V] : 1 == e ? new m[V](q[0]) : 2 == e ? new m[V](q[0], q[1]) : 3 == e ? new m[V](q[0], q[1], q[2]) : 4 == e ? new m[V](q[0], q[1], q[2], q[3]) : 2(), g(W, P, q))
            }, U, (B((B(function(W, P, V, m) {
                !y(false, true, W, P) && (P = Ci(W), m = P.IS, V = P.v, W.I == W || V == W.Si && m == W) && (g(W, P.mN, V.apply(m, P.o)), W.Z = W.B())
            }, (g(U, 253, (B((g(U, 20, (g(U, 391, (B(function(W, P, V, m) {
                g(W, (m = J((P = (m = (V = u(W), u(W)), u(W)), m), W), V = J(V, W) == m, P), +V)
            }, ((B(function(W, P, V) {
                g(W, (V = u(W), P = u(W), P), "" + J(V, W))
            }, (B((B(function(W, P, V, m) {
                if (P = W.Fq.pop()) {
                    for (m = E(W); 0 < m; m--) V = u(W), P[V] = W.F[V];
                    W.F = (P[223] = W.F[223], P[91] = W.F[91], P)
                } else g(W, 99, W.H)
            }, (g((B(function(W) {
                V0(W, 1)
            }, (g(U, (U.gT = (B(function() {}, U, (B(function(W, P, V, m) {
                g(W, (m = (V = (P = u(W), E(W)), u)(W), m), J(P, W) >>> V)
            }, ((g(U, (B(function(W, P, V, m, q, e, c, b, d, Z, Q, a) {
                function X(N, G) {
                    for (; V < N;) b |= E(W) << V, V += 8;
                    return V -= N, G = b & (1 << N) - 1, b >>= N, G
                }
                for (Z = (a = (d = (b = V = (Q = u(W), 0), (X(3) | 0) + 1), X)(5), 0), e = [], P = 0; P < a; P++) c = X(1), e.push(c), Z += c ? 0 : 1;
                for (m = (Z = ((Z | 0) - 1).toString(2).length, []), P = 0; P < a; P++) e[P] || (m[P] = X(Z));
                for (Z = 0; Z < a; Z++) e[Z] && (m[Z] = u(W));
                for (q = []; d--;) q.push(J(u(W), W));
                B(function(N, G, O, k, F) {
                    for (O = (k = 0, G = [], []); k < a; k++) {
                        if (!(F = m[k], e[k])) {
                            for (; F >= O.length;) O.push(u(N));
                            F = O[F]
                        }
                        G.push(F)
                    }
                    N.s = eV(N, (N.C = eV(N, q.slice()), G))
                }, W, Q)
            }, U, ((g(U, (g(U, (B((g(U, (g(U, (U.Eo = (((U.H = 0, U).Fq = [], U.h = ((U.G = 0, U).I = U, []), U.O = (U.N = false, U.j = 8001, U.D = (U.Y = 1, void 0), U.J = 25, U.F = [], (U.T = null, U).cv = false, U.l = [], I = (U.s = void 0, (U.lC = 0, window).performance || {}), 0), U.Si = (U.U = (U.Z = (U.W = 0, U.K = false, 0), U.L = void 0, U.g = 0, U.C = (U.S = void 0, void 0), U.R = void 0, void 0), U.P = [], function(W) {
                this.I = W
            }), U).V = [], I.timeOrigin || (I.timing || {}).navigationStart || 0), 99), 0), 492), 0), function(W, P, V, m, q, e, c) {
                for (q = (c = (m = (V = u(W), e = tk(W), ""), J(317, W)), c).length, P = 0; e--;) P = ((P | 0) + (tk(W) | 0)) % q, m += D[c[P]];
                g(W, V, m)
            }), U, 11), 212), {}), 396), U), U.oS = 0, B)(function(W, P, V, m) {
                g(W, (V = (m = (V = (P = u(W), u)(W), u(W)), P = J(P, W), J(V, W)), m), P in V | 0)
            }, U, 446), 110)), 91), 2048), g(U, 32, H(4)), B)(function(W, P, V, m, q) {
                (m = J((q = (q = (m = (P = u((V = u(W), W)), u(W)), u)(W), P = J(P, W), J(q, W)), m), W), V = J(V, W.I), 0 !== V) && (m = cG(W, m, q, 1, V, P), V.addEventListener(P, m, A), g(W, 173, [V, P, m]))
            }, U, 395), U), 70), 45)), 0), 263), [160, 0, 0]), U), 5), U), 173, 0), U), 9), B(function(W, P, V) {
                y(false, true, W, P) || (P = u(W), V = u(W), g(W, V, function(m) {
                    return eval(m)
                }(Ev(J(P, W.I)))))
            }, U, 440), function(W, P, V, m, q, e) {
                if (!y(true, true, W, P)) {
                    if ("object" == (V = J((P = J((P = (V = u((m = (q = u(W), u(W)), W)), u(W)), P), W), m = J(m, W), V), W), W = J(q, W), bY(W))) {
                        for (e in q = [], W) q.push(e);
                        W = q
                    }
                    for (q = (V = 0 < V ? V : 1, e = 0, W.length); e < q; e += V) m(W.slice(e, (e | 0) + (V | 0)), P)
                }
            }), U, 422), U), 479), B)(function(W, P) {
                P = J(u(W), W), sv(P, W.I)
            }, U, 498), U), 351), 0)), 119)), function(W) {
                SV(3, W)
            }), U, 279), [])), U), 83), function(W, P, V, m) {
                g(W, (V = u((m = (P = u(W), u)(W), W)), V), J(P, W) || J(m, W))
            }), U, 41), 270)), U), 267), U).ZZ = 0, 0)), U), 194), 10), n), U), 333), U), 359), 397)), 477)), U), 98), g(U, 223, []), U), 504), 0), 0]), U), 305), U), 329), f)(U, [Ze]), L), t]), [iY, l])), true))
        },
        g = function(U, l, t) {
            if (99 == l || 492 == l) U.F[l] ? U.F[l].concat(t) : U.F[l] = eV(U, t);
            else {
                if (U.K && 467 != l) return;
                263 == l || 32 == l || 253 == l || 223 == l || 299 == l ? U.F[l] || (U.F[l] = Mw(t, U, 102, l)) : U.F[l] = Mw(t, U, 97, l)
            }
            467 == l && (U.R = w(false, U, 32), U.D = void 0)
        },
        bY = function(U, l, t) {
            if ("object" == (t = typeof U, t))
                if (U) {
                    if (U instanceof Array) return "array";
                    if (U instanceof Object) return t;
                    if ((l = Object.prototype.toString.call(U), "[object Window]") == l) return "object";
                    if ("[object Array]" == l || "number" == typeof U.length && "undefined" != typeof U.splice && "undefined" != typeof U.propertyIsEnumerable && !U.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == l || "undefined" != typeof U.call && "undefined" != typeof U.propertyIsEnumerable && !U.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == t && "undefined" == typeof U.call) return "object";
            return t
        },
        lY = function(U, l, t, I, D) {
            if (I = U[0], I == r) l.J = 25, l.A(U);
            else if (I == p) {
                D = U[1];
                try {
                    t = l.S || l.A(U)
                } catch (W) {
                    S(W, l), t = l.S
                }
                D(t)
            } else if (I == d2) l.A(U);
            else if (I == L) l.A(U);
            else if (I == iY) {
                try {
                    for (t = 0; t < l.P.length; t++) try {
                        D = l.P[t], D[0][D[1]](D[2])
                    } catch (W) {}
                } catch (W) {}(0, (l.P = [], U)[1])(function(W, P) {
                    l.u(W, true, P)
                }, function(W) {
                    ((W = !l.h.length, f)(l, [IB]), W) && C(true, l, false)
                })
            } else {
                if (I == Y) return t = U[2], g(l, 101, U[6]), g(l, 212, t), l.A(U);
                I == IB ? (l.F = null, l.l = [], l.V = []) : I == Ze && "loading" === n.document.readyState && (l.T = function(W, P) {
                    function V() {
                        P || (P = true, W())
                    }
                    n.document.addEventListener((P = false, "DOMContentLoaded"), V, A), n.addEventListener("load", V, A)
                })
            }
        },
        H = function(U, l) {
            for (l = []; U--;) l.push(255 * Math.random() | 0);
            return l
        },
        aB = function(U, l, t) {
            return U.u(function(I) {
                t = I
            }, false, l), t
        },
        v, sv = function(U, l) {
            g(l, 99, (l.Fq.push(l.F.slice()), l.F[99] = void 0, U))
        },
        T, K = function(U, l, t, I, D, W) {
            if (l.I == l)
                for (W = J(U, l), 32 == U ? (U = function(P, V, m, q) {
                        if ((q = W.length, m = (q | 0) - 4 >> 3, W.iC) != m) {
                            m = (m << (V = [(W.iC = m, 0), 0, D[1], D[2]], 3)) - 4;
                            try {
                                W.Cs = xa(Nw(W, m), V, Nw(W, (m | 0) + 4))
                            } catch (e) {
                                throw e;
                            }
                        }
                        W.push(W.Cs[q & 7] ^ P)
                    }, D = J(299, l)) : U = function(P) {
                        W.push(P)
                    }, I && U(I & 255), l = t.length, I = 0; I < l; I++) U(t[I])
        },
        hk = function(U, l, t, I) {
            function D() {}
            return {
                invoke: (I = Jk(U, function(W) {
                    D && (l && g2(l), t = W, D(), D = void 0)
                }, (t = void 0, !!l))[0], function(W, P, V, m) {
                    function q() {
                        t(function(e) {
                            g2(function() {
                                W(e)
                            })
                        }, V)
                    }
                    if (!P) return P = I(V), W && W(P), P;
                    t ? q() : (m = D, D = function() {
                        g2((m(), q))
                    })
                })
            }
        },
        SV = function(U, l, t, I, D) {
            K(((t = (I = (t = (D = U & 4, U &= 3, u(l)), u)(l), J(t, l)), D) && (t = jV("" + t)), U && K(I, l, M(t.length, 2)), I), l, t)
        },
        h = function(U, l, t, I, D, W) {
            if (!t.K) {
                if (3 < (U = J(91, ((l = ((W = J(223, ((I = void 0, U) && U[0] === R && (l = U[1], I = U[2], U = void 0), t)), 0 == W.length) && (D = J(492, t) >> 3, W.push(l, D >> 8 & 255, D & 255), void 0 != I && W.push(I & 255)), ""), U) && (U.message && (l += U.message), U.stack && (l += ":" + U.stack)), t)), U)) {
                    (I = (l = (l = l.slice(0, (U | 0) - 3), U -= (l.length | 0) + 3, jV(l)), t.I), t).I = t;
                    try {
                        K(32, t, M(l.length, 2).concat(l), 9)
                    } finally {
                        t.I = I
                    }
                }
                g(t, 91, U)
            }
        },
        jV = function(U, l, t, I, D) {
            for (D = (U = U.replace(/\r\n/g, "\n"), I = 0, []), t = 0; I < U.length; I++) l = U.charCodeAt(I), 128 > l ? D[t++] = l : (2048 > l ? D[t++] = l >> 6 | 192 : (55296 == (l & 64512) && I + 1 < U.length && 56320 == (U.charCodeAt(I + 1) & 64512) ? (l = 65536 + ((l & 1023) << 10) + (U.charCodeAt(++I) & 1023), D[t++] = l >> 18 | 240, D[t++] = l >> 12 & 63 | 128) : D[t++] = l >> 12 | 224, D[t++] = l >> 6 & 63 | 128), D[t++] = l & 63 | 128);
            return D
        },
        w = function(U, l, t, I, D, W, P, V, m, q, e, c, b, d) {
            if ((e = J(99, l), e) >= l.H) throw [R, 31];
            for (D = (I = l.Hv.length, b = 0, t), m = e; 0 < D;) c = m % 8, P = m >> 3, W = 8 - (c | 0), W = W < D ? W : D, d = l.l[P], U && (q = l, q.D != m >> 6 && (q.D = m >> 6, V = J(467, q), q.L = xa(q.R, [0, 0, V[1], V[2]], q.D)), d ^= l.L[P & I]), m += W, b |= (d >> 8 - (c | 0) - (W | 0) & (1 << W) - 1) << (D | 0) - (W | 0), D -= W;
            return g((U = b, l), 99, (e | 0) + (t | 0)), U
        },
        uY = function(U, l, t, I) {
            for (I = (t = u(l), 0); 0 < U; U--) I = I << 8 | E(l);
            g(l, t, I)
        },
        A = {
            passive: true,
            capture: true
        },
        n = this || self,
        oB = function(U, l, t, I) {
            try {
                I = U[((l | 0) + 2) % 3], U[l] = (U[l] | 0) - (U[((l | 0) + 1) % 3] | 0) - (I | 0) ^ (1 == l ? I << t : I >>> t)
            } catch (D) {
                throw D;
            }
        },
        y = function(U, l, t, I, D, W, P, V, m) {
            if (t.Y += (W = (D = (P = (l || t.U++, 0 < t.O && t.N) && t.cv && 1 >= t.W && !t.C && !t.T && (!l || 1 < t.j - I) && 0 == document.hidden, V = 4 == t.U) || P ? t.B() : t.Z, D - t.Z), m = W >> 14, t.R && (t.R ^= m * (W << 2)), m), t.I = m || t.I, V || P) t.U = 0, t.Z = D;
            if (!P || D - t.g < t.O - (U ? 255 : l ? 5 : 2)) return false;
            return !((g(t, (t.j = I, U = J(l ? 492 : 99, t), 99), t.H), t.h.push([d2, U, l ? I + 1 : I]), t).T = g2, 0)
        },
        Nw = function(U, l) {
            return U[l] << 24 | U[(l | 0) + 1] << 16 | U[(l | 0) + 2] << 8 | U[(l | 0) + 3]
        },
        Mw = function(U, l, t, I, D, W, P, V) {
            return (U = [-32, -66, -39, (P = t & (W = RB, 7), -36), -61, 36, U, -76, 70, 41], V = z[l.i](l.yg), V)[l.i] = function(m) {
                P += (D = m, 6 + 7 * t), P &= 7
            }, V.concat = function(m) {
                return m = (m = (m = I % 16 + 1, 1 * I * I * m + (W() | 0) * m + U[P + 27 & 7] * I * m + P - m * D - 48 * I * I * D - -3168 * I * D + 48 * D * D - 3552 * D), U[m]), D = void 0, U[(P + 37 & 7) + (t & 2)] = m, U[P + (t & 2)] = -66, m
            }, V
        },
        J = function(U, l) {
            if ((l = l.F[U], void 0) === l) throw [R, 30, U];
            if (l.value) return l.create();
            return (l.create(1 * U * U + -66 * U + 74), l).prototype
        },
        y0 = function(U, l) {
            return [(l(function(t) {
                t(U)
            }), function() {
                return U
            })]
        },
        w2 = function(U, l) {
            return z[l](z.prototype, {
                pop: U,
                length: U,
                propertyIsEnumerable: U,
                floor: U,
                replace: U,
                splice: U,
                call: U,
                document: U,
                stack: U,
                parent: U,
                console: U,
                prototype: U
            })
        },
        xa = function(U, l, t, I, D) {
            for (l = l[2] | (I = l[D = 0, 3] | 0, 0); 14 > D; D++) t = t >>> 8 | t << 24, t += U | 0, U = U << 3 | U >>> 29, t ^= l + 3261, I = I >>> 8 | I << 24, U ^= t, I += l | 0, l = l << 3 | l >>> 29, I ^= D + 3261, l ^= I;
            return [U >>> 24 & 255, U >>> 16 & 255, U >>> 8 & 255, U >>> 0 & 255, t >>> 24 & 255, t >>> 16 & 255, t >>> 8 & 255, t >>> 0 & 255]
        },
        cG = function(U, l, t, I, D, W) {
            function P() {
                if (U.I == U) {
                    if (U.F) {
                        var V = [Y, l, t, void 0, D, W, arguments];
                        if (2 == I) var m = C((f(U, V), false), U, false);
                        else if (1 == I) {
                            var q = !U.h.length;
                            (f(U, V), q) && C(false, U, false)
                        } else m = lY(V, U);
                        return m
                    }
                    D && W && D.removeEventListener(W, P, A)
                }
            }
            return P
        },
        B = function(U, l, t) {
            U[g(l, t, U), Ze] = 2796
        },
        g2 = n.requestIdleCallback ? function(U) {
            requestIdleCallback(function() {
                U()
            }, {
                timeout: 4
            })
        } : n.setImmediate ? function(U) {
            setImmediate(U)
        } : function(U) {
            setTimeout(U, 0)
        },
        Q0 = function(U, l) {
            if ((U = n.trustedTypes, l = null, !U) || !U.createPolicy) return l;
            try {
                l = U.createPolicy("bg", {
                    createHTML: Ki,
                    createScript: Ki,
                    createScriptURL: Ki
                })
            } catch (t) {
                n.console && n.console.error(t.message)
            }
            return l
        },
        Jk = function(U, l, t, I) {
            return (I = v[U.substring(0, 3) + "_"]) ? I(U.substring(3), l, t) : y0(U, l)
        },
        eV = function(U, l, t) {
            return ((t = z[U.i](U.ns), t)[U.i] = function() {
                return l
            }, t).concat = function(I) {
                l = I
            }, t
        },
        $a = function(U, l, t) {
            if (3 == U.length) {
                for (t = 0; 3 > t; t++) l[t] += U[t];
                for (t = [13, (U = 0, 8), 13, 12, 16, 5, 3, 10, 15]; 9 > U; U++) l[3](l, U % 3, t[U])
            }
        },
        Ci = function(U, l, t, I, D, W) {
            for (I = (l = u((D = (t = (W = U[Xi] || {}, u)(U), W.mN = u(U), W.o = [], U).I == U ? (E(U) | 0) - 1 : 1, U)), 0); I < D; I++) W.o.push(u(U));
            for (W.IS = J(l, U); D--;) W.o[D] = J(W.o[D], U);
            return W.v = J(t, U), W
        },
        S = function(U, l) {
            l.S = ((l.S ? l.S + "~" : "E:") + U.message + ":" + U.stack).slice(0, 2048)
        },
        Gm = function(U, l, t, I) {
            return J(212, (g(U, 99, (((I = J(99, U), U.l && I < U.H) ? (g(U, 99, U.H), sv(t, U)) : g(U, 99, t), mr)(l, U), I)), U))
        },
        Ki = function(U) {
            return U
        },
        Xi = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        d2 = [],
        Ze = [],
        iY = [],
        p = (x.prototype.Wv = void 0, x.prototype.hA = (x.prototype.xQ = void 0, false), []),
        Y = (x.prototype.X = "toString", []),
        IB = [],
        R = {},
        r = [],
        L = [],
        z = (((De, function() {})(H), function() {})(oB), $a, R.constructor),
        RB = (T = x.prototype, T.ps = function(U, l, t, I, D, W) {
            for (t = (D = I = 0, []); D < U.length; D++)
                for (I += l, W = W << l | U[D]; 7 < I;) I -= 8, t.push(W >> I & 255);
            return t
        }, void 0);
    T.rT = (T.DZ = ((T.u = function(U, l, t, I, D) {
        if ((t = "array" === bY(t) ? t : [t], this).S) U(this.S);
        else try {
            I = [], D = !this.h.length, f(this, [r, I, t]), f(this, [p, U, I]), l && !D || C(l, this, true)
        } catch (W) {
            S(W, this), U(this.S)
        }
    }, T).B = (window.performance || {}).now ? function() {
        return this.Eo + window.performance.now()
    } : function() {
        return +new Date
    }, T.Tb = function(U, l, t, I, D) {
        for (I = D = 0; I < U.length; I++) D += U.charCodeAt(I), D += D << 10, D ^= D >> 6;
        return (D = (U = (D += D << 3, D ^= D >> 11, D + (D << 15) >>> 0), new Number(U & (1 << l) - 1)), D)[0] = (U >>> l) % t, D
    }, T.RS = (x.prototype.i = "create", function() {
        return Math.floor(this.B())
    }), function() {
        return Math.floor(this.G + (this.B() - this.g))
    }), function(U, l, t) {
        return ((l ^= l << 13, l ^= l >> 17, l = (l ^ l << 5) & t) || (l = 1), U) ^ l
    }), x.prototype.A = function(U, l) {
        return U = (RB = function() {
                return l == U ? 74 : 111
            }, l = {}, {}),
            function(t, I, D, W, P, V, m, q, e, c, b, d, Z, Q, a) {
                Z = l, l = U;
                try {
                    if (W = t[0], W == L) {
                        P = t[1];
                        try {
                            for (b = (D = [], c = atob(P), q = 0); q < c.length; q++) d = c.charCodeAt(q), 255 < d && (D[b++] = d & 255, d >>= 8), D[b++] = d;
                            g(this, 467, [0, 0, (this.l = D, this.H = this.l.length << 3, 0)])
                        } catch (X) {
                            h(X, 17, this);
                            return
                        }
                        mr(8001, this)
                    } else if (W == r) t[1].push(J(253, this).length, J(263, this).length, J(91, this), J(32, this).length), g(this, 212, t[2]), this.F[175] && Gm(this, 8001, J(175, this));
                    else {
                        if (W == p) {
                            this.I = (I = (Q = M(((q = t[2], J(263, this)).length | 0) + 2, 2), this).I, this);
                            try {
                                e = J(223, this), 0 < e.length && K(263, this, M(e.length, 2).concat(e), 10), K(263, this, M(this.Y, 1), 109), K(263, this, M(this[p].length, 1)), c = 0, c -= (J(263, this).length | 0) + 5, c += J(391, this) & 2047, V = J(32, this), 4 < V.length && (c -= (V.length | 0) + 3), 0 < c && K(263, this, M(c, 2).concat(H(c)), 15), 4 < V.length && K(263, this, M(V.length, 2).concat(V), 156)
                            } finally {
                                this.I = I
                            }
                            if ((b = H(2).concat(J(263, this)), b[1] = b[0] ^ 6, b[3] = b[1] ^ Q[0], b)[4] = b[1] ^ Q[1], a = this.bC(b)) a = "!" + a;
                            else
                                for (c = 0, a = ""; c < b.length; c++) m = b[c][this.X](16), 1 == m.length && (m = "0" + m), a += m;
                            return J(32, (g(this, 91, ((J(253, (D = a, this)).length = q.shift(), J(263, this)).length = q.shift(), q.shift())), this)).length = q.shift(), D
                        }
                        if (W == d2) Gm(this, t[2], t[1]);
                        else if (W == Y) return Gm(this, 8001, t[1])
                    }
                } finally {
                    l = Z
                }
            }
    }();
    var qw, fi = /./,
        pi = L.pop.bind(x.prototype[x.prototype[iY] = [0, 0, 1, 1, 0, 1, 1], ((x.prototype.bC = function(U, l, t, I) {
            if (l = window.btoa) {
                for (I = (t = "", 0); I < U.length; I += 8192) t += String.fromCharCode.apply(null, U.slice(I, I + 8192));
                U = l(t).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else U = void 0;
            return U
        }, x.prototype).NT = 0, x).prototype.Bv = 0, r]),
        Ev = (qw = w2({get: pi
        }, (fi[x.prototype.X] = pi, x.prototype.i)), x.prototype.kQ = void 0, function(U, l) {
            return (l = Q0()) && 1 === U.eval(l.createScript("1")) ? function(t) {
                return l.createScript(t)
            } : function(t) {
                return "" + t
            }
        }(n));
    (40 < (v = n.botguard || (n.botguard = {}), v.m) || (v.m = 41, v.bg = hk, v.a = Jk), v).VBW_ = function(U, l, t) {
        return [(t = new x(l, U), function(I) {
            return aB(t, I)
        })]
    };
}).call(this);
                                    

#5 JavaScript::Eval (size: 22, repeated: 1) - SHA256: cddf3e74bfb30b711ab78ab593d81b8eeaceb67583ef5cb097cb54dcb14f24ce

                                        0,
function(W) {
    uY(1, W)
}
                                    

#6 JavaScript::Eval (size: 64, repeated: 1) - SHA256: f9b61a95c5995b1614d5988fe5a9aeebaa6ed941137234bd00d42e77f5661756

                                        0,
function(W, P, V) {
    g(W, (V = (P = (V = u(W), u(W)), W.F[V] && J(V, W)), P), V)
}
                                    

#7 JavaScript::Eval (size: 6482, repeated: 1) - SHA256: 06b99248a163333e36980a6cfb756f1a7de60fa49517162b87b1a44d5d48f844

                                        var amzn_aps_csm = amzn_aps_csm || {};
amzn_aps_csm.errors = [], amzn_aps_csm.reportErrors = function(a) {
        var b, c;
        for (/^https?:\/\//.test(a) === !1 && (a = document.location.protocol + "//" + a), "/" !== a.substr(a.length - 1) && (a += "/"), b = 0; b < amzn_aps_csm.errors.length; b++) c = '{"adViewability":[{"error": {"m": "' + amzn_aps_csm.errors[b] + '"}}], "c": "aps_communicator", "api": "RTB", "error": 1}', "https:" === document.location.protocol && /^http:\/\//.test(a) === !0 && (a = a.replace("http://", "https://")), (new Image).src = a + c + "?cb=" + Math.round(1e7 * Math.random());
        amzn_aps_csm.errors = []
    },
    function(a) {
        function b(a) {
            return a ? a.replace(/^\s+|\s+$/g, "") : a
        }

        function c(a) {
            if (a && a.s) {
                var b, c = a.s.length > 0 ? a.s[0] : "",
                    d = a.s.length > 1 ? a.s[1] : "";
                c && (b = c.match(j)), b && 3 === b.length || !d || (b = d.match(i)), b && 3 === b.length && (a.f = b[1], a.l = b[2])
            }
        }

        function d(a, d) {
            if (d = d || {}, !a) return {};
            a.m && a.m.message && (a = a.m);
            var i, j, k, l, m, n = {
                    m: e(a, d),
                    c: a.c ? "" + a.c : a.c,
                    s: [],
                    l: a.l || a.line || a.lineno || a.lineNumber,
                    name: a.name,
                    type: a.type
                },
                o = 0,
                p = 0;
            if (i = a.stack || (a.err ? a.err.stack : ""), i && i.split)
                for (j = i.split("\n"); o < j.length && n.s.length < g;) k = j[o++], k && n.s.unshift(b(k));
            else
                for (l = f(a.args || arguments, "callee"), o = 0, p = 0; l && g > o;) m = h, l.skipTrace || (k = l.toString(), k && k.substr && (m = 0 === p ? 4 * h : m, m = 1 === p ? 2 * h : m, n.s.unshift(k.substr(0, m)), p++)), l = f(l, "caller"), o++;
            return !n.f && n.s.length > 0 && c(n), n
        }

        function e(a, b) {
            var c = b.m || b.message || "";
            return c += a.m && a.m.message ? a.m.message : a.m && a.m.target && a.m.target.tagName ? "Error handler invoked by " + a.m.target.tagName + " tag" : a.m ? a.m : a.message ? a.message : "Unknown error"
        }

        function f(a, b) {
            try {
                return a[b]
            } catch (c) {
                return ""
            }
        }
        var g = 20,
            h = 256,
            i = /\(?([^\s]*):(\d+):\d+\)?/,
            j = /.*@(.*):(\d*)/;
        a.constructErrorMessage = d
    }(amzn_aps_csm), window.JSON || (window.JSON = {
        parse: function(sJSON) {
            return eval("(" + sJSON + ")")
        },
        stringify: function() {
            var a = Object.prototype.toString,
                b = Array.isArray || function(b) {
                    return "[object Array]" === a.call(b)
                },
                c = {
                    '"': '\\"',
                    "\\": "\\\\",
                    "\b": "\\b",
                    "\f": "\\f",
                    "\n": "\\n",
                    "\r": "\\r",
                    "	": "\\t"
                },
                d = function(a) {
                    return c[a] || "\\u" + (a.charCodeAt(0) + 65536).toString(16).substr(1)
                },
                e = /[\\"\u0000-\u001F\u2028\u2029]/g;
            return function f(c) {
                var g, h, i, j;
                if (null == c) return "null";
                if ("number" == typeof c) return isFinite(c) ? c.toString() : "null";
                if ("boolean" == typeof c) return c.toString();
                if ("object" == typeof c) {
                    if ("function" == typeof c.toJSON) return f(c.toJSON());
                    if (b(c)) {
                        for (g = "[", h = 0; h < c.length; h++) g += (h ? ", " : "") + f(c[h]);
                        return g + "]"
                    }
                    if ("[object Object]" === a.call(c)) {
                        i = [];
                        for (j in c) c.hasOwnProperty(j) && i.push(f(j) + ": " + f(c[j]));
                        return "{" + i.join(", ") + "}"
                    }
                }
                return '"' + c.toString().replace(e, d) + '"'
            }
        }()
    }), amzn_aps_csm = amzn_aps_csm || {}, amzn_aps_csm.log = function(a) {
        try {
            -1 !== window.location.href.indexOf("csm_debug_mode") && window.console && window.console.log(a)
        } catch (b) {
            b.message && amzn_aps_csm.errors.push(b.message)
        }
    }, amzn_aps_csm.loadModules = function(a) {
        var b, c, d;
        try {
            for (b = 0; b < a.length; b++) {
                if (c = a[b].name, d = a[b].params || [], window.performance && window.performance.mark && "function" == typeof window.performance.mark && window.performance.mark("loadStart" + c), "[object Array]" !== Object.prototype.toString.call(d) && amzn_aps_csm.log("Params passed in the amzn_aps_csm.loadModules methods must be an array"), amzn_aps_csm[c]) {
                    if (void 0 === amzn_aps_csm[c].shortName) throw new amzn_aps_csm.invalidModuleException("Module shortName not defined for module " + c + ". ");
                    amzn_aps_csm[c].init.apply(amzn_aps_csm[c], d), amzn_aps_csm.log("Initiated " + c + " module")
                } else amzn_aps_csm.log("Undefined module " + c);
                window.performance && window.performance.mark && "function" == typeof window.performance.mark && (window.performance.mark("loadEnd" + c), window.performance.measure("lt" + amzn_aps_csm[c].shortName, "loadStart" + c, "loadEnd" + c))
            }
        } catch (e) {
            e.message && amzn_aps_csm.errors.push(e.message)
        }
    }, amzn_aps_csm.define = function(a) {
        var b, c, d, e, f, g, h, i;
        try {
            for (b = function(a) {
                    return "string" == typeof a ? amzn_aps_csm[a] : a
                }, c = Array.prototype.slice.call(arguments), d = c[0], e = c.length > 2 ? c[1] : [], f = c[c.length - 1], g = [], h = 0, i = e.length; i > h; h++) g.push(b(e[h]));
            amzn_aps_csm[d] = f.apply(f, g)
        } catch (j) {
            j.message && amzn_aps_csm.errors.push(j.message)
        }
    }, amzn_aps_csm.invalidModuleException = function(a) {
        this.value = a, this.message = "does not conform to the expected format of a module", this.toString = function() {
            return this.value + this.message
        }
    }, amzn_aps_csm = amzn_aps_csm || {}, amzn_aps_csm.define("eventUtils", [], function() {
        var a = {
            shortName: "eu"
        };
        return a.init = function() {
            amzn_aps_csm.log("Initializing eventUtils"), a.eventHandlers = []
        }, a.addEvent = function(b, c, d, e) {
            b.addEventListener ? b.addEventListener(c, d, e) : b.attachEvent && b.attachEvent("on" + c, d);
            var f = {
                elem: b,
                eventName: c,
                cb: d
            };
            a.eventHandlers.push(f)
        }, a.registerPostMessageHandler = function(a) {
            var b = window.addEventListener ? "addEventListener" : "attachEvent",
                c = window[b],
                d = "attachEvent" == b ? "onmessage" : "message";
            c(d, function(b) {
                a(b)
            }, !1)
        }, a
    }), amzn_aps_csm = amzn_aps_csm || {}, amzn_aps_csm.define("pixelQueue", [], function() {
        var a = {
            shortName: "pq"
        };
        return a.init = function() {}, a.firePixel = function(a, b, c) {
            if ("" !== b) {
                /^https?:\/\//.test(b) === !1 && (b = document.location.protocol + "//" + b), "/" != b.substr(b.length - 1) && (b += "/"), "https:" === document.location.protocol && /^http:\/\//.test(b) === !0 && (b = b.replace("http://", "https://"));
                try {
                    var d = JSON.parse(a);
                    d.ver = amzn_aps_csm.version, a = JSON.stringify(d)
                } catch (e) {}
                void 0 !== c && "" !== c && (b += c), (new Image).src = b + a + "?cb=" + Math.round(1e7 * Math.random())
            } else amzn_aps_csm.log("instrURL is empty")
        }, a
    }), amzn_aps_csm = amzn_aps_csm || {},
    function() {
        var a, b;
        amzn_aps_csm.loadModules([{
            name: "eventUtils",
            params: []
        }]);
        for (a in amzn_aps_csm.eventUtils) amzn_aps_csm.eventUtils.hasOwnProperty(a) && (amzn_aps_csm[a] = amzn_aps_csm.eventUtils[a]);
        amzn_aps_csm.loadModules([{
            name: "pixelQueue",
            params: []
        }]), b = 5, amzn_aps_csm.registerPostMessageHandler(function(a) {
            var c, d, e, f, g, h, i, j, k, l, m;
            if (amzn_aps_csm.log("parent received message!: ", a.data), amzn_aps_csm.log(a.origin), /pixelId/.test(a.data)) {
                for (c = a.source, d = 0; c.parent !== top && b > d;) c = c.parent, d++;
                for (e = {}, "object" == typeof apstag && null !== apstag && "function" == typeof apstag._getSlotIdToNameMapping && null !== apstag._getSlotIdToNameMapping() && (e = apstag._getSlotIdToNameMapping()), f = "", g = document.getElementsByTagName("iframe"), h = 0; h < g.length; h++)
                    if (g[h].contentWindow === c) {
                        i = g[h].parentElement;
                        do j = i.id, i = i.parentElement; while (e.hasOwnProperty(j) === !1 && "body" !== i.tagName.toLowerCase());
                        f = e[j] || j
                    }
                k = JSON.parse(a.data), l = decodeURIComponent(k.instrURL), m = {
                    sn: encodeURIComponent(f),
                    pixelId: k.pixelId
                }, /amazon-adsystem\.com/.test(l) && amzn_aps_csm.pixelQueue.firePixel(JSON.stringify(m), l, "")
            }
        })
    }();
                                    

Executed Writes (0)



HTTP Transactions (131)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 13:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gDqiNU6Ee0BDBX4oUh4QgS05Abr5uLsYWDxqI27Y7NYq1leQoThZbw==
Age: 2732


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4721
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:11 GMT
Last-Modified: Wed, 28 Sep 2022 12:42:30 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5439
Expires: Wed, 28 Sep 2022 15:31:50 GMT
Date: Wed, 28 Sep 2022 14:01:11 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: czw1oaRCqqRkEaRZtJnA-TUCA61SZuokysGsv9Hl-bvhPzuJUESTsg==
age: 30765
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:11 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /fifa/how-to-get-fifa-23-rewards-on-web-app-free-packs-fut-coins-more-1937619/ HTTP/1.1 
Host: www.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.26.8.151
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 28 Sep 2022 14:01:11 GMT
age: 33
cache-control: public, max-age=0, must-revalidate
x-nextjs-cache: REVALIDATED
x-nf-request-id: 01GE26DHV74Y9EAV044SK1HAHD
x-render-mode: isr
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yhDcErsDIirHBYwlGO88d92EcLO049e8%2FeK1fBrGRciJT9TbqNceX%2BCbnu4A9HLld%2FF2K8OmtLKfqvkw97vHBY4pTY3FvqGs%2BWXy8uFLENPAhtAM0%2FrVG7CRp8CkoAk9Eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751d02784a79b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58757)
Size:   20960
Md5:    89091cc15554d5dfd26d1f80c899a186
Sha1:   17ac38c675450c46562fd1327013e8043d8fe4f8
Sha256: ae346616ed2689da3572ccdce75e5c538cef6e41ac5fdf12d8a06bec4398826c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/kanit/v12/nKKU-Go6G5tXcr4uPhWnVaFrNlJz.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:59:13 GMT
expires: Wed, 27 Sep 2023 17:59:13 GMT
cache-control: public, max-age=31536000
age: 72119
last-modified: Tue, 26 Apr 2022 14:50:33 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19006
Md5:    9c9d31e1c4b00f70d6faca531d5cff9d
Sha1:   744402eea7ee9fe76f7bd1e3849b6bd2d7828f7f
Sha256: a45603a54040c4daf55c5463a73a9da59dde9455588860565e466cf08a3fe0f4
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 13:29:33 GMT
Expires: Wed, 28 Sep 2022 14:28:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h78BGm5fsGtPHrTHn0eIeUTZujYkary_UPHpcE2C8Vxabpy8_PUilg==
Age: 1899


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHvxo.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34020
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 21:56:19 GMT
expires: Wed, 27 Sep 2023 21:56:19 GMT
cache-control: public, max-age=31536000
age: 57893
last-modified: Tue, 26 Apr 2022 15:50:24 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   47973
Md5:    51582ea47b42e6102f7050752049c7a8
Sha1:   d254730249368a45aeef26eef5280cb4965448bf
Sha256: d1a29e70752940cfaca70d0522394435aeb2c0a62f5565d9e46f2417776c9fe6
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:54:12 GMT
expires: Fri, 22 Sep 2023 16:54:12 GMT
cache-control: public, max-age=31536000
age: 508020
last-modified: Tue, 26 Apr 2022 15:50:23 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19206
Md5:    5feac1bb5ade6eb0f17873481d57bf3d
Sha1:   a2423577123d7d35abe9cc39460e032be98b8687
Sha256: 9cf82d04ce89476b8bd90b52e6db04726493740c79a3b1fd9ee858550612c2de
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:23 GMT
expires: Wed, 27 Sep 2023 17:10:23 GMT
cache-control: public, max-age=31536000
age: 75049
last-modified: Tue, 26 Apr 2022 16:41:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19037
Md5:    5a4251730ac0518554f3fd393ee04941
Sha1:   eaa6821f19358bbbea654ae5a91ca202f9820990
Sha256: 73a55abe6b964413c9e7da825505936f5a3dadb07fd67061d36d813aab367569
                                        
                                            GET /s/kanit/v12/nKKU-Go6G5tXcr5KPxWnVaFrNlJz.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 18:31:21 GMT
expires: Wed, 27 Sep 2023 18:31:21 GMT
cache-control: public, max-age=31536000
age: 70191
last-modified: Tue, 26 Apr 2022 14:50:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   18643
Md5:    4c0962048b993f52012b7b0f8670436f
Sha1:   db9a9b9411dd3e6aa6bef93a6cedcbde3718d751
Sha256: 053ec490adee0387b3f6ac2a545412f880cbbab53fef319d90c88de92e37cced
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED2C29982F6BB846BFC47D9848DBA3164A8D7C876156A8A3A84A71840FEFB14D"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20552
Expires: Wed, 28 Sep 2022 19:43:44 GMT
Date: Wed, 28 Sep 2022 14:01:12 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   2505
Md5:    12bbdb6908a8133a4301bc560c23a8d5
Sha1:   caba23c3b901d786535b99f5675a88c97e6099d8
Sha256: 5f545c8bfaedbc75d8be62556f8b1ba2134aac7a1db898b07183e11948a3549d
                                        
                                            POST /api/6677080/envelope/?sentry_key=5350069544de4fb29767396aa62edc97&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.11.1 HTTP/1.1 
Host: o1372207.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.dexerto.com
Content-Length: 448
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.195.249
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
content-length: 2
access-control-allow-origin: https://www.dexerto.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED2C29982F6BB846BFC47D9848DBA3164A8D7C876156A8A3A84A71840FEFB14D"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20552
Expires: Wed, 28 Sep 2022 19:43:44 GMT
Date: Wed, 28 Sep 2022 14:01:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5972
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:12 GMT
Last-Modified: Wed, 28 Sep 2022 12:21:40 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /api/6677080/envelope/?sentry_key=5350069544de4fb29767396aa62edc97&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.11.1 HTTP/1.1 
Host: o1372207.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.dexerto.com
Content-Length: 454
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.195.249
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
content-length: 2
access-control-allow-origin: https://www.dexerto.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            POST /api/6677080/envelope/?sentry_key=5350069544de4fb29767396aa62edc97&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.11.1 HTTP/1.1 
Host: o1372207.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.dexerto.com
Content-Length: 2983
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.195.249
HTTP/2 429 Too Many Requests
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
content-length: 198
retry-after: 26
x-sentry-rate-limits: 26:default;error;security;attachment:organization:error_usage_exceeded
access-control-allow-origin: https://www.dexerto.com
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   198
Md5:    478b411c59eb87249bea32cf7c7be5d2
Sha1:   023907c62eb55758905bb3c0e640b5b204ae0652
Sha256: bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
                                        
                                            POST /api/6677080/envelope/?sentry_key=5350069544de4fb29767396aa62edc97&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.11.1 HTTP/1.1 
Host: o1372207.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.dexerto.com
Content-Length: 3177
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.195.249
HTTP/2 429 Too Many Requests
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
content-length: 198
retry-after: 20
x-sentry-rate-limits: 20:default;error;security;attachment:organization:error_usage_exceeded
access-control-allow-origin: https://www.dexerto.com
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   198
Md5:    478b411c59eb87249bea32cf7c7be5d2
Sha1:   023907c62eb55758905bb3c0e640b5b204ae0652
Sha256: bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
                                        
                                            POST /api/6677080/envelope/?sentry_key=5350069544de4fb29767396aa62edc97&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.11.1 HTTP/1.1 
Host: o1372207.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.dexerto.com
Content-Length: 3515
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.195.249
HTTP/2 429 Too Many Requests
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
content-length: 198
retry-after: 29
x-sentry-rate-limits: 29:default;error;security;attachment:organization:error_usage_exceeded
access-control-allow-origin: https://www.dexerto.com
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   198
Md5:    478b411c59eb87249bea32cf7c7be5d2
Sha1:   023907c62eb55758905bb3c0e640b5b204ae0652
Sha256: bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /macro/hosts/adsm.macro.dexerto.com.js HTTP/1.1 
Host: macro.adnami.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.4.186
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 14:01:12 GMT
content-md5: aCe6YhMf5sqdL+bTMAvL/Q==
last-modified: Fri, 02 Sep 2022 09:09:36 GMT
x-ms-request-id: 1ad5a19e-601e-002c-09d1-c1e218000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 2563
expires: Wed, 28 Sep 2022 18:01:12 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 751d027ece62b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6975
Md5:    c7237a3b0a9321ee50403513193355e8
Sha1:   a12a486750982ec4062bbf8de03ca32fd405cc69
Sha256: faf2a4b836f0946ed21c0a9b9aa9bbd8e83cce2a2cd204ab74f6f6ab15c6b4a3
                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.47.230
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Wed, 28 Sep 2022 14:01:12 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 751d027aa9090b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13970), with no line terminators
Size:   5146
Md5:    76505eda1a0abc18b9cc864509720d7c
Sha1:   1eb3f4347fe680c839720e8ed22f902423b7e6d9
Sha256: 587998ebbfd04c85bea350103b0ef338ad572d46d5e21e3c82aff62d32e9b02e
                                        
                                            GET /recaptcha/api.js?render=6LfKMxEhAAAAAKIz4JlYm_tPfszfAUFENF29RggJ HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Wed, 28 Sep 2022 14:01:12 GMT
date: Wed, 28 Sep 2022 14:01:12 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   586
Md5:    4921c05bf9809cfc6364171565c04045
Sha1:   7871987bb482e2dac7ce9726731fb75c33c674fe
Sha256: e86ef48cf6704c3645c9a38b51d96dbc7973974059bf64f1c3ba4cdce9ead650
                                        
                                            GET /gtm.js?id=GTM-MR7KFTJ HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 14:01:12 GMT
expires: Wed, 28 Sep 2022 14:01:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67862
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8941)
Size:   67862
Md5:    d66d4b6a45123da7f349a72435a17a29
Sha1:   3b3c2c90ee4205091fd34566976fbea1d145ca2e
Sha256: 39169681151e88b22a7bb6fe95891764df13c66a0a0c3a650c61800693c6beda
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 14:01:12 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 13:04:06 GMT
Expires: Thu, 29 Sep 2022 13:04:06 GMT
ETag: "b12121949c150ded7a0d90ad106c594d37493875"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   47659
Md5:    6c33009d73e98218f9db20997be0c9bb
Sha1:   b7d9f2c6e40e69f1e5e2fb405cd6664b632f7b5f
Sha256: 1f6622b4776dba0da23debc6ef4fbe6bbc96ce590edfdff16dc2c690ff724ede
                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 22:25:55 GMT
expires: Mon, 25 Sep 2023 22:25:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 228918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   158248
Md5:    db1b5789e9915e9c82f5df92e5982980
Sha1:   2e193e502995501c85f45fd89d9f83707a7f9573
Sha256: db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tag/js/gpt.js HTTP/1.1 
Host: securepubads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript
                                        
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27722
date: Wed, 28 Sep 2022 14:01:13 GMT
expires: Wed, 28 Sep 2022 14:01:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1347 / 658 of 1000 / last-modified: 1664363254"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45165)
Size:   27722
Md5:    8da3ae2b65b7cf87403d7c61ef9cfd3f
Sha1:   6cefcf9ca6305883477f3261b1fc837d0b712edc
Sha256: 971b1b8d60d082347cc0ffa651dab6f04fb7aaf7673addae26b449a10a23f915
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   4405
Md5:    eae94e44361428ad0a75fb05a6108017
Sha1:   84cdceff5cd992fd1d9036027eef2cc2a7edd94d
Sha256: 375689ec85e2cb6639562cb0019d3078137e9e31ea360b2de49152024d57dcf3
                                        
                                            GET /pagead/ppub_config?ippd=www.dexerto.com HTTP/1.1 
Host: securepubads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Wed, 28 Sep 2022 14:01:13 GMT
expires: Wed, 28 Sep 2022 14:01:13 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 166
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 14:16:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (374), with no line terminators
Size:   166
Md5:    e33f7e4835779ab0f5aaac18011a256d
Sha1:   3ea4a6ba43af8bf54eb6ac4df5968c8f4d7e1e93
Sha256: a5e699e5a35b06a872e9f08691df1f57ac472b2a71b03ab9c51f81664007615d
                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 08:33:30 GMT
expires: Mon, 25 Sep 2023 08:33:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 278863
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52762), with no line terminators
Size:   24251
Md5:    f2d649025c814be9c33f166a5e04fe88
Sha1:   26bf59de631415927ba2c6c9e44fe9c763f95313
Sha256: f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
                                        
                                            GET /live/liveView.php?s=111265&schain=1.0,1!dexerto.com,1&x=300&y=250&cbuster=1664373673&pubUrlAuto=https%3A%2F%2Fwww.dexerto.com%2Ffifa%2Fhow-to-get-fifa-23-rewards-on-web-app-free-packs-fut-coins-more-1937619%2F&csuuid=633453a9168ca&videoType=flow&floatWidth=&floatHeight=&floatDirection=&floatVerticalOffset=&floatHorizontalOffset=&floatCloseBtn=&flowMode=&flowCloseButtonPosition= HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2314), with CRLF, LF line terminators
Size:   164151
Md5:    3d65078f29e85424b99adf2c53aac238
Sha1:   3bea7d076558628c841d75cb5534160cffb0604d
Sha256: 3df79ae4d6144ce9306a48da6b5d68d3db8a088bfa39cab3c2f6da1f6aa5174e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /AdServer/js/user_sync.html?p=159196&userIdMacro=PM_UID&gdpr=1&gdpr_consent=&predirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D91%26advUuid%3DPM_UID%26gdpr%3D1%26gdpr_consent%3D HTTP/1.1 
Host: ads.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.201
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
cache-control: max-age=108784
expires: Thu, 29 Sep 2022 20:14:17 GMT
date: Wed, 28 Sep 2022 14:01:13 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26145
Md5:    7fd83e1424a0a89248bac5f31fd09248
Sha1:   8dcf066745703d3190fec17774c3e0ffc85d0922
Sha256: 95320cefe6b741103fab45adc2c0fe9efb000e371232e5950f23d357bed4767a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   5915
Md5:    2350b130714c4499529cb0414f71eb10
Sha1:   9eaa01ebfee5632646e00d9385a41ff6961cb591
Sha256: 862bdb4b7809871145cf525657d1abac8f3641baa04524553dd92b6fb2cc51d5
                                        
                                            GET /uploads/cn21/video/users/converted/30997/video_62f26645c1a8f478994679/vid63175e867bc9d689135973_thumb.jpg?cbuster=1662476572 HTTP/1.1 
Host: video.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.66
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 2467
server: nginx
last-modified: Tue, 06 Sep 2022 14:53:27 GMT
via: 1.1 80826ca6c4fd6005aeacf5a03c8d42e8.cloudfront.net (CloudFront), 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 06:50:50 GMT
expires: Thu, 29 Sep 2022 06:47:11 GMT
cache-control: max-age=86400
etag: "9802f4b45aa8223f95c8b353068b6fdd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: AMS54-C1, OSL50-C1
x-amz-cf-id: XWQUt8Q8YE0TtExm_TY8Wp2UoJrHScILVAyaL1fa1zb6Mzt_ZBJeaw==
age: 26041
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 736x729, segment length 16, comment: "Lavc59.22.100", baseline, precision 8, 162x92, components 3\012- data
Size:   2467
Md5:    9802f4b45aa8223f95c8b353068b6fdd
Sha1:   af08f0e95299afa7a6a8ef26cb54af1eba057977
Sha256: d6d5cbef499acb970119a42f165127ef5574b57f2e7000a4fa8f740da98e85cf
                                        
                                            GET /live/liveView.php?hash=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 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8949
Md5:    3a26f6ba60034f324ebc807d0f2aaa5d
Sha1:   ba30b42812f72d27138afd30df3296207648e0c0
Sha256: a78c2c5672d07adb3a50066259296b5945d083872dd9aeecb056a5f992a302ac
                                        
                                            GET /content/ClientDetections/iab_consent_sdk.v1.0.js HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
last-modified: Wed, 12 Feb 2020 15:01:36 GMT
etag: W/"5e441350-4be0"
expires: Thu, 28 Sep 2023 14:01:13 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19421)
Size:   8408
Md5:    d7e69134ac8ee6c6b4cec7b39aaf2e63
Sha1:   f6ea7b7b870051eee99ee861c2719e3ce3683d4d
Sha256: 0534edebf7b1f4fe23ff630d66622224d0f462e26a666a81793e198704abd839
                                        
                                            GET /uploads/cn2/video/users/converted/30997/video_62f26645c1a8f478994679/vid631f690953f4d091585722.jpg?cbuster=1663002936 HTTP/1.1 
Host: video.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.66
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 17491
server: nginx
last-modified: Mon, 12 Sep 2022 17:15:17 GMT
via: 1.1 9c920cc684a38b53bc9c7a44ba794874.cloudfront.net (CloudFront), 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:33:05 GMT
expires: Thu, 29 Sep 2022 03:00:30 GMT
cache-control: max-age=86400
etag: "d8cf15377e03766fef9122b0d35da59c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P4, OSL50-C1
x-amz-cf-id: oCHJf7P0VOh3nSgFPbJ5G2VONu9yD6vTaBwwkwPfH3W-32gr_I8Cfg==
age: 39643
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   23569
Md5:    6a2a8f6f6e6e6be5f19f05ba6dd087be
Sha1:   d3cb6d5ff75fd0404121db963331026acd4ec5ab
Sha256: dba79d0d788352666fe4039ad2177c11733734a19ad15250e6aab88c53e25bf4
                                        
                                            GET /live/liveView.php?hash=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 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
content-length: 11177
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.dexerto.com
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   11177
Md5:    98535407f36dd72c3bebf0fd2bca8415
Sha1:   ac2706d393cab42bd9db4fd4aca8f2564cf33887
Sha256: edc8e8ae932477ca9e7ff44a021939bbdbac7f4f66de3ee9491dc272080be810
                                        
                                            GET /uploads/cn12/video/users/converted/30997/video_62f26645c1a8f478994679/vid632c9da77fc96695422078_thumb.jpg?cbuster=1663868384 HTTP/1.1 
Host: video.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.66
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 1924
server: nginx
last-modified: Thu, 22 Sep 2022 17:39:11 GMT
via: 1.1 cfa647edefc0769e715b9781478b0626.cloudfront.net (CloudFront), 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 06:47:29 GMT
expires: Thu, 29 Sep 2022 06:47:11 GMT
cache-control: max-age=86400
etag: "84b1c80d9ddcbcbf06189fbfad30ebeb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P4, OSL50-C1
x-amz-cf-id: fd3wuKVlwZBXA_wKaddY77uo3-4pEnJ_MfaWNTB1KLXEgLqqXJ_plg==
age: 26041
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5851
Md5:    be2c07eabde3c8c9de722c974f1650be
Sha1:   9eda745b82f3a73a012385ed6aee8132fb7ebab0
Sha256: a52cde2cf88eb34bab125decad6f956334ed596709b3316743f6b132056c350f
                                        
                                            GET /live/liveView.php?hash=pm01ODA1NlZ2nWRsqzFmqFRcoWViqXQ9LTEzqzyxX3Zup3RUrXByPTMzqzyxX3BfYXyypyZypw0mLwEhMCZ2nWRsqzyyq2FvnWkcqHyTqGF0ZT0kJaZcZF9wo250ZW50X3VloD1bqHRjplUmQSUlRvUlRaZcZGViLaBlnW1cpl50ZWNbJTJGqXBfo2FxplUlRzNhMvUlRaZcZGViJTJGqXNypaMyMxZwo252ZXJ0ZWQyMxYmMDx5NlUlRaZcZGViXmYlZwI2NwQ1YmFuOGY0Nmt5OTQ2NmxyMxZ2nWQ2MmFzNwxjOTUmZwRxMDxkNTt1NmIlLz1jNCUmRaRinlUmRGV3o2qJQ0FaSW1Gp1c5STZJQ0cJVXcJMU5cSXNDnUFaSUNBnWRIoHqJnz9aSWgjWFZDSUgzUS5yq29aSUNBZ0ygoHcwrUx2SUNKUWNgoHRuWE1cTEFiZ0yDQWqJox4kWWyJNxyDSXZxWEJmYwJGn2N5OWcvnxy2ZG1fn1cXOHZxWE5fY25NqyxlOXVxoVZ5ZEqWn0k6TXqPVGfmTDNnpFcHVaZYryy5WzcJMx5dUTFZrxZbT0qZME56ZmVPVFElTaceqzRgoGgOnx14WzcZNU1EnmFNMyxjWxRBNU1UVTROVGN5TWx1qGNEUWyMQW9aSUNBZ0ygNWynnUx2SURFMx5dUXcNVExjTURBp0NcQWqJQ0FcWyubq0ydo2qNVFxlTxRRrU16nmBNQXA5LwyVSXFwRx5uoFFYR29dn0FwnFqKOTU3VGq6qxZUM2U3WUq5Yl1BSVqMpzpzqzyxX2NioaRyoaRsnWQ9MwUjMmY4MlZ2nWRsY29hqGVhqF9xZXNwPXuRYlgInXRmK091qCgBqCgGo3JvZXMeJTIlTGyyplUlMvZ2nWRsY29hqGVhqF90nXRfZT14UWMeSGy0plgPqXQeQXQeRz9lYzVmKlUlMxkcZXMyMwIzqzyxX2NioaRyoaRsZHVlYXRco249MmQzZGVvqWqJozZipz1uqGyiow1BQyQeJTJGK3BlZWJcZE5yq1ZypvfyMxYeMvfyMxYeZGVzYXVfqCZ4PTM1MCZ5PTE5NlZjqWJVpzj9nHR0pHMyM0EyMxYyMxZ3q3phZGV4ZXJ0ol5wo20yMxZznWZuJTJGnG93LXRiLWqyqC1znWZuLTImLXJyq2FlZHMgo24gq2VvLWFjpC1zpzVyLXBuY2gmLWZ1qC1wo2yhpl1go3JyLTE5Mmp2MTxyMxYzpzx9NxM2OTp2NwU1Mmp0NwE3NDpmN0M3MmZCMmE3QwU0MmA3RDqCNwQmMwMjMmImMwJEMmAmOTJEMmImODVGMmEmNmqEN0I3MmMkMmpmMwMmMmUmNmMkMmA3RDqCNDMmMwMkMmp3RDqCNTM2NDMmNwQmMmRDNxQ1MwZDNwU0NmU2Nmx2NDQ3Mmt3NTU5MmImOTp0N0Q3QwYlNwY2OTplNwU2NwZGNmt3RDqCNmE2NDY1NmM2Qwp0NxY3MDqEN0I2RwZDNwx2RTp1Nmt3RDqCNTtmMmMjMmA3RDqCNTxmMwM1MmA3RDqCNwYmMTqEN0I3MwUkNTU0QTU1NDx0MmM4Nwp2MmQ4NEE2QmU5NxQ2QmZCNTQ2RDU2MmM1NwZENTY3OTQ5NDMmODY3NEQ2OTQkNmY0OTQ3NTI2QmVBNxQ0NwMkNwI0ODUkM0Q3RDqCNEMmMTM0MmEmMmM1N0RGRUZFJzymQXBjPTAzp2Reqw0zZ2ViTGF0nT01OS45NTUzZ2ViTG9hZm0kMC44NTxzqXNypxyjQWRxpw05MS45MC40Mv4kNTQzqXNypyVBPU1irzyfoGEyMxY1LwAeJTI4WDEkJTNCK0kcoaV4K3t4Ny82NCUmQvglqvUmQTx2LwAyMwxeR2Vwn28yMxYlMDEjMDEjMSgGnXJyZz94JTJGOTYhMCZmY2uunW49MS4jJTJDMSUlMWRyrGVlqG8hY29gJTJDMSZjoGF5ZXJBpGyJZD0zY3N1qWyxPTYmMmQ1M2E5MTY4Y2EzY2J1p3Rypw0kNwY0MmpmNwpkMwt2JzqxpHI9MSZaZHBlQ29hp2VhqD0znXNXZVBup3NHZHBlPTA= HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
content-length: 10833
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.dexerto.com
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16457
Md5:    9e6bcd3ddc0478d58462cf18933d0a23
Sha1:   7bbbd402959d35c114fb6f72fa90c60f65f0aaed
Sha256: 040981b7656831fd4b06c1ae29b04d2aacb39bfffb84909953bee1baf34f4635
                                        
                                            GET /uploads/cn21/video/users/converted/30997/video_62f26645c1a8f478994679/vid63176a781b120890570786_thumb.jpg?cbuster=1662479564 HTTP/1.1 
Host: video.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.66
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 1992
server: nginx
last-modified: Tue, 06 Sep 2022 15:43:19 GMT
via: 1.1 70d755f7200c02162c7545e4ce74649a.cloudfront.net (CloudFront), 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 06:50:50 GMT
expires: Thu, 29 Sep 2022 06:48:29 GMT
cache-control: max-age=86400
etag: "5d366ee74e094c83bcac2a275c0e9551"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P4, OSL50-C1
x-amz-cf-id: OmHr1SNaV_ZhK69lhCPimQl9Yu0M1PwNvz7JaVYDXr86mlLMWCMFVA==
age: 25964
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 162x92, components 3\012- data
Size:   1992
Md5:    5d366ee74e094c83bcac2a275c0e9551
Sha1:   785636b9e63330ea127ee5af386d3d230cb79f18
Sha256: cdd84f68fb207cef336462dd27ca4b59cea6341e30001f382a5bf2d2135ac3c9
                                        
                                            GET /content/prebid/prebidVid.6.18.0_15.min.js HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
last-modified: Mon, 22 Aug 2022 17:00:26 GMT
etag: W/"6303b62a-7fe72"
expires: Thu, 28 Sep 2023 14:01:12 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   271702
Md5:    4e72f7ac032af54118a1130cb632f783
Sha1:   eacb19dc89dee7510846bc480d96b3dc0d857b16
Sha256: aa1a992008dd1026350fed1432310fe0561f99d5681be397ff13a12f34fa9c5f
                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4090
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:13 GMT
Last-Modified: Wed, 28 Sep 2022 12:53:03 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6365
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 12:15:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /w/1.0/cm?id=476b50d3-5ccf-49a1-89b8-1ddf8ea18042&r=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D98%26advUuid%3D HTTP/1.1 
Host: u.openx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         35.244.159.8
HTTP/2 200 OK
content-type: text/html
                                        
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   56
Md5:    15669dda86db3cbff7835fa202dc0b16
Sha1:   ce788cab9c1aa7e458a3971a59702c410b37e64d
Sha256: 5cc3f958039a8885c4e9526e22d454da47d579b9a02861e7a60b41fa0ba910df
                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6069
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 12:20:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /aax2/apstag.js HTTP/1.1 
Host: c.amazon-adsystem.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.46.73
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 13:16:01 GMT
last-modified: Thu, 15 Sep 2022 20:15:32 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 fd4a8fa7c304171992e7f22fc8894904.cloudfront.net (CloudFront), 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
etag: W/"0b4d277527066dd35dd7c0288cb596b4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-C1
x-amz-cf-id: SSR4ZVx61cib-V1KBuFVmgFBnhdRfu2lWUW4kHbzJi4N8RwxeWNtVA==
age: 2713
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65458)
Size:   43861
Md5:    ea9a49d14873d621eadae259d72a6cb0
Sha1:   bd43e7a3d093995e0d83c198a4f23147c97db8dd
Sha256: d4dabbc279e4c91bd9e7840f1ed8683da59ca7873cdeb044001e4abe2d6faf03
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 350956
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:48:31 GMT
expires: Sat, 23 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 479563
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19529
Md5:    10cf8b0eeeab8ee8d5f6350c7de0df25
Sha1:   1cca672056df05501b47fe4283da13bcfdbe8a88
Sha256: 85789f7a0341d9972ee8dbe52d1fe1451eb76179cd373e8a593482f86cb3c2e2
                                        
                                            GET /cksync?cs=34&type=pri&ovsid=633453a9168ca&redirect=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D1723987475%2526pcid%253D%3Cvsid%3E%26advId%3D127%26advUuid%3D%3Cvsid%3E HTTP/1.1 
Host: cs.media.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.22
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: Apache
Content-Length: 154
Location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA
Set-Cookie: data-pri=633453a9168ca~~34;Expires=Thu, 28 Sep 2023 14:01:14 GMT;path=/;domain=.media.net;
P3P: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
X-MNET-HL2: E
Expires: Wed, 28 Sep 2022 14:01:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 28 Sep 2022 14:01:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   3884
Md5:    e00e2b219862e433f63ad73afddf516e
Sha1:   a40ef0ac006bb8f83a7577c5006798734c93c5ca
Sha256: 0b4e6318d042a5c14f43510b7df7736c8ae32658caaadea6b58e58f760b83b99
                                        
                                            GET /recaptcha/api2/logo_48.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 20:02:15 GMT
expires: Mon, 03 Oct 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 151139
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   2228
Md5:    ef9941290c50cd3866e2ba6b793f010d
Sha1:   4736508c795667dcea21f8d864233031223b7832
Sha256: 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
                                        
                                            GET /usermatchredir?s=192962&cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D99%26advUuid%3D HTTP/1.1 
Host: ssum-sec.casalemedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.19.126
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 0
location: /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1
cf-ray: 751d02879c22b51b-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YzRTqu5EirJw9GDIvVEEzQAA; Path=/; Domain=casalemedia.com; Expires=Thu, 28 Sep 2023 14:01:14 GMT; Max-Age=31536000; Secure; SameSite=None CMPS=4501; Path=/; Domain=casalemedia.com; Expires=Tue, 27 Dec 2022 14:01:14 GMT; Max-Age=7776000; Secure; SameSite=None CMPRO=4501; Path=/; Domain=casalemedia.com; Expires=Tue, 27 Dec 2022 14:01:14 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qBqb5VKIIFHNgLFCd5G6y%2BTKG%2BqrWAssgRVf5RusoBVOAf0rDf3ZadqK34sOIuB%2B6%2FMGkndBEn3lVIAIPKQ3IPNh8%2BJDLUdfKE7NJiWInxcIKbgm6u1jUQByDXhKC2h6tEd2Xy8Zh0VQCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /user-matching?id=3586&gdpr=1&gdpr_consent= HTTP/1.1 
Host: ads.stickyadstv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.77.41
HTTP/1.1 302 Moved Temporarily
                                        
Server: nginx
Content-Length: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1664373674172017-548
Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3Dddad5a05d32c1936bebfd4cbf133c8&advId=134&advUuid=ddad5a05d32c1936bebfd4cbf133c8
Expires: Wed, 28 Sep 2022 14:01:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 28 Sep 2022 14:01:14 GMT
Connection: keep-alive
Set-Cookie: UID=ddad5a05d32c1936bebfd4cbf133c8; Domain=ads.stickyadstv.com; Expires=Fri, 28-Oct-2022 14:01:14 GMT; Path=/ sessionId=5624a87f19fbd19ba741062dcef5856; Domain=ads.stickyadstv.com; Path=/

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4213
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 12:51:01 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:32:09 GMT
expires: Thu, 21 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 584945
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size:   7884
Md5:    9212f6f9860f9fc6c69b02fedf6db8c3
Sha1:   ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
Sha256: 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 584826
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /partner?adv_id=8805&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D94%26advUuid%3D%24SPOTX_USER_ID&__user_check__=1&sync_id=03ab1812-3f36-11ed-bd98-18a305860406 HTTP/1.1 
Host: sync.search.spotxchange.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         185.94.180.125
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=03c55e8d-3f36-11ed-8b36-1644f9a80306; expires=Wed, 26-Oct-2022 14:01:14 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 96
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    55fade2068e7503eae8d7ddf5eb6bd09
Sha1:   317496a096d6c86486a71d4521994bcd171a6bb3
Sha256: e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4827
Expires: Wed, 28 Sep 2022 15:21:41 GMT
Date: Wed, 28 Sep 2022 14:01:14 GMT
Connection: keep-alive

                                        
                                            GET /getuid?https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D105%26advUuid%3D%24UID HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.173.38
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Flive.primis.tech%252Flive%252FliveCS.php%253Fsource%253Dexternal%2526csuuid%253D633453a9168ca%2526pixel%253D%2526advId%253D105%2526advUuid%253D%2524UID
AN-X-Request-Uuid: 307247b2-d7ed-4020-ab8e-bc97e9dd6695
Set-Cookie: uuid2=2475424522126867591; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 27-Dec-2022 14:01:14 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 537.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            GET /ups/58627/occ HTTP/1.1 
Host: ups.analytics.yahoo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.156.0.31
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58627/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKpTNGMCEN-8Qyla_Cea8h1PHkDMDtQFEgEBAQGlNWM-YwAAAAAA_eMAAA&S=AQAAAhe264gotGxrb0phjPdnaNk; Expires=Thu, 28 Sep 2023 20:01:14 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 58511
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   18329
Md5:    93b57f0b948114b7bbd3702bbc5bc9fe
Sha1:   3b526f7879c211e867caf3db4d3838910058be4e
Sha256: a700f1afeb97452b0f97b4f7e5d188bbc559431486ebd83d721bddfcd866fa3a
                                        
                                            GET /live/liveView.php?s=111265&schain=1.0,1!dexerto.com,1 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   30622
Md5:    e07fe13a01d9e60b7d8e0a2d058b44b1
Sha1:   245625920345e05f3a6d94d2aaa910c7424d0262
Sha256: d586b02459e1a6b9ab96416a2845c60f8541cb2bee6b01943b9e6c2da17e7423
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 02:03:07 GMT
Expires: Thu, 29 Sep 2022 02:03:07 GMT
ETag: "bb777c202c09629aef61d74478158f8ad7fe6b51"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    40592c27e1240ae5fa0c853662013a8a
Sha1:   bb777c202c09629aef61d74478158f8ad7fe6b51
Sha256: 5aa272becf678cc9e6311461919c8627b9a523681739126b345b0170775a5413
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yprErfM7s7P7jJPJT-HQZ2Z_AAN4946Tjwyn1g4r7yiA6IF0yLdQTQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:22:11 GMT
age: 31143
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   46883
Md5:    6903c0b3c3f897a902fa55c2b0014602
Sha1:   fb3ae1052c9da95f323e5fa205f39582ca85223d
Sha256: db85297fff68ff9017a078593ce4dc306d9a34e9073a174732ed56d10d19a278
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
age: 58336
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   11972
Md5:    50f321eeac39099713e6be7577d62415
Sha1:   66ed387feb1f938e0ce5d4e2a1e21a06aa3175ec
Sha256: 9b5d63c39b4d40769a8a020b8486d18d275c1d81adca78b2ea2e1d2f56574ad2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 13:36:07 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CayUsrCbvLqFHUDVvBHgvkmr-C0pdUl0oecGV38In9ecO_3DXD7sTQ==
Age: 1507

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5179
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 12:34:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 313


--- Additional Info ---
Magic:  data
Size:   4083
Md5:    b5870f9c7533d33ed06009904cf5a175
Sha1:   3fc17afe8fea118398d2d6a4b44e02a084dbdc98
Sha256: 3f8ebbb7b41529c9ce204ace00838b492801a62c3490b5c3940adc16baf40329
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 58356
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   15902
Md5:    88650c44ca43e6eb94806b0ed71c8921
Sha1:   ee27d0161ddc1c7bfd905de8e4e1ce5c71b66026
Sha256: 6b1aff4115d8a6cc891a00e595a5d719fe0016030f71ac37640483dadeeb6f20
                                        
                                            GET /usermatchredir?cb=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D99%26advUuid%3D&s=192962&C=1 HTTP/1.1 
Host: ssum-sec.casalemedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.19.126
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 0
location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=&advId=99&advUuid=0
cf-ray: 751d02886d8cb51b-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZCUoCVjJU07CXOBnJoEgVK3yMVMLcydE1GEjpgxQTJlXwUftTjhD2a3bgJAFsrbaneyyAztFEij8VapR%2BgXsyzqsV7abx52F76aKZcoIJ7tDOAvtXGZXB3iYDSz3VXqG0siAqNJ7ZVhjdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:39:01 GMT
age: 58933
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /ups/58627/occ?verify=true HTTP/1.1 
Host: ups.analytics.yahoo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         18.156.0.31
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKpTNGMCEOPTi3mc5ehTKaCHruUVIuAFEgEBAQGlNWM-YwAAAAAA_eMAAA&S=AQAAAg8HTADDatHmT4D_rOVzfl4; Expires=Thu, 28 Sep 2023 20:01:14 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

                                        
                                            GET /getuid?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D259151345%2526pcid%253D%24UID%26advId%3D121%26advUuid%3D%24UID HTTP/1.1 
Host: eb2.3lift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.248.245.213
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   37
Md5:    3eacd0132310ea44cad756b378a3bc07
Sha1:   e2216a7e9b73f5cb0279351c78ce61c33475cea7
Sha256: bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
                                        
                                            GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Flive.primis.tech%252Flive%252FliveCS.php%253Fsource%253Dexternal%2526csuuid%253D633453a9168ca%2526pixel%253D%2526advId%253D105%2526advUuid%253D%2524UID HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.173.38
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://live.primis.tech/live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=&advId=105&advUuid=0
AN-X-Request-Uuid: 88714707-3ac8-4e0a-b910-1f2ef8a3cc2b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 537.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  data
Size:   3280
Md5:    491cfc939139a73e0993f8426fa56b9b
Sha1:   a8606a45be270cf1f2cd9df062b53ab76836d4e9
Sha256: 543562aabb687cb439bdf1d3948e06f95e5da3a875727019226ba69c2b1ebedb
                                        
                                            GET /api/sync?callerId=21&gdpr=1&gdpr_consent= HTTP/1.1 
Host: ssbsync.smartadserver.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.86.139.93
HTTP/2 200 OK
                                        
content-length: 0
date: Wed, 28 Sep 2022 14:01:13 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /3613a31b6329d1c17d5663d05b080db1.gif?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D793790479%25263rddpi%253D2136778551%25263rdpcid%253D%5BUID%5D%26advId%3D138%26advUuid%3D%5BUID%5D HTTP/1.1 
Host: cs.admanmedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         80.77.87.162
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 28 Sep 2022 14:01:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: admtr=808799d2-65a3-49c1-bd8c-2aa6f3298924; path=/; domain=.admanmedia.com; expires=Wed, 12 Oct 2022 14:01:14 GMT;SameSite=None;Secure ac_r=CS116; path=/; domain=.admanmedia.com; expires=Wed, 12 Oct 2022 14:01:14 GMT;SameSite=None;Secure
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Location: https://live.primis.tech/live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D2136778551%263rdpcid%3D808799d2-65a3-49c1-bd8c-2aa6f3298924&advId=138&advUuid=808799d2-65a3-49c1-bd8c-2aa6f3298924
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:14 GMT
Last-Modified: Wed, 28 Sep 2022 12:24:54 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UaW7tDDqTCl33TZrVGQL2cJrFobV2yZTQB4YQbtGBkauuLB1cufz0A==
Age: 5780

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 13:56:51 GMT
Expires: Tue, 04 Oct 2022 13:56:50 GMT
Etag: "0eb1a52924a5b9e0b4bf5608b7e5226e7c3cf4a6"
Cache-Control: max-age=517535,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751d0287ef59b524-OSL

                                        
                                            GET /pubsync?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D HTTP/1.1 
Host: mb9eo.publishers.tremorhub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.21.158.46
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 14:01:14 GMT
content-length: 0
location: pubsync/verify?redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3Dhttps%253A%252F%252Fsync.intentiq.com%252Fprofiles_engine%252FProfilesEngineServlet%253Fat%253D20%2526mi%253D10%2526dpi%253D584182936%2526pcid%253D%5Btvid%5D%26advId%3D126%26advUuid%3D%5Btvid%5D
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
set-cookie: tvid=4caf425b48b441be95f849f466f52b5a; Domain=.tremorhub.com; Expires=Thu, 28-Sep-2023 19:49:34 GMT; Path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET /sync?ssp=sekindo&gdpr=1&gdpr_consent= HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.122.40.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 28 Sep 2022 14:01:14 GMT
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=&advId=105&advUuid=0 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

                                        
                                            GET /pixel?gdpr=1&gdpr_consent=&redir=https%3A%2F%2Flive.primis.tech%2Flive%2FliveCS.php%3Fsource%3Dexternal%26csuuid%3D633453a9168ca%26pixel%3D%26advId%3D130%26advUuid%3D%24UID HTTP/1.1 
Host: ap.lijit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.52.2.30
HTTP/1.1 204 No Content
                                        
date: Wed, 28 Sep 2022 14:01:15 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
pod: X-Sovrn-Pod: ad_ap6ams1

                                        
                                            GET /live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D584182936%26pcid%3D&advId=126&advUuid= HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:14 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   76274
Md5:    844f95448b0a363c5b8ee598f51fdb8b
Sha1:   1f6abb8bcb702763c454750edc941b9bbe4e0ed8
Sha256: 4d6c18804cc0ff328782419389129083ec371371cc6b9f8414e2466d049f6685
                                        
                                            GET /c/hotjar-2987411.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.37
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 14:01:16 GMT
cache-control: max-age=60
etag: W/07063585bf39f54f9bb0f1289e26be2c
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cvCUE_NBxtWei4PLX3nsYznE1-YTfFvbnyHr_dHyZUuK1Zdp-SV7bw==
age: 17
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3790)
Size:   2314
Md5:    c04c38874e2ed3a66c25e5f4540159e1
Sha1:   6236d48e566fe14d802677ba357acf5430bd9df1
Sha256: 9f1187b004c08b78947b7770bbdee69a1a1ab7aae0a9b455f45538a5a3ae7aed
                                        
                                            GET /wrapper/v2/meta-data?hasCsp=true&accountId=1523&env=prod&metadata=%7B%22ccpa%22%3A%7B%7D%2C%22gdpr%22%3A%7B%7D%7D&propertyId=12742 HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 220
date: Wed, 28 Sep 2022 13:18:57 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=3600, s-maxage=3600
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m6ofz2khSlmKeU_euG7wi7WH6Nbiei4PZ3POhBr-KkR9z3DFrq0fVA==
age: 2539
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   220
Md5:    5dd71a2d6acd91187a3d0ff034a2096d
Sha1:   aba99d215e9778f767beec28390df6a9c0249ee2
Sha256: c2d567a1c465054ff90f6dff10f67dcf6bc303987e3928c2f7cb09ae1d1910ea
                                        
                                            GET /modules.cf44a0a6b448df1b035e.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.46
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 66148
date: Wed, 28 Sep 2022 11:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5f131c93ccff63ccc86d0067d0eebf99"
last-modified: Wed, 28 Sep 2022 11:36:53 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l-PcDH3JVwnkoYJ35qwL1RtFkT_FJveDARkY3wc6EK9jb0Ckcce_3A==
age: 8650
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5660), with no line terminators
Size:   68016
Md5:    234e0598fef03e125c9c9489e0f5cefd
Sha1:   e0d285c2881a1456670033e526c2a7f486a10c5c
Sha256: 63b89431d8ec7d64d7689b9a05d49571ff2b180d6670555add6d676f6ddb8022
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.118
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1044
date: Sun, 25 Sep 2022 03:17:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Fri, 23 Sep 2022 10:32:04 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JYw7qQDRnUtdXqPKyhcSNidb_Bpr5SeI4EK-f5trYSX4lUV1hSqX6Q==
age: 297844
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size:   1044
Md5:    f6a9ca04b0687ea3c0d98e8430c8c77b
Sha1:   35503b2deb23091a9a9c6c68d4020dbdf879588e
Sha256: 8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8LN75XD07B&cid=1143350242.1664373674&gtm=2oe9q0&aip=1&z=1078964449 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 14:01:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sessions/2987411?s=0.25&r=0.21537055662907667 HTTP/1.1 
Host: vc.hotjar.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 204 No Content
                                        
access-control-allow-origin: *
cache-control: no-store
date: Wed, 28 Sep 2022 14:01:16 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bYuqV_IGxtdXpe8otV5rlR3KQvoMMznUtNE9ujaN9FcYfO6kdHpNDg==
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:16 GMT
Last-Modified: Wed, 28 Sep 2022 12:18:21 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9aa0BgZAjfqgmpsNmmW10620Vyajp65ubK_1KUXuvbzd8MAk4f_e8w==
Age: 6176

                                        
                                            OPTIONS /wrapper/v2/messages?hasCsp=true&env=prod&body=%7B%22accountId%22%3A1523%2C%22campaignEnv%22%3A%22prod%22%2C%22campaigns%22%3A%7B%22ccpa%22%3A%7B%22alwaysDisplayDNS%22%3Afalse%2C%22hasLocalData%22%3Afalse%2C%22targetingParams%22%3A%7B%7D%7D%2C%22custom%22%3A%7B%22targetingParams%22%3A%7B%7D%7D%2C%22gdpr%22%3A%7B%22consentStatus%22%3A%7B%7D%2C%22targetingParams%22%3A%7B%7D%7D%7D%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fsourcepoint.dexerto.com%22%2C%22hasCSP%22%3Atrue%2C%22includeData%22%3A%7B%22localState%22%3A%7B%22type%22%3A%22string%22%7D%2C%22actions%22%3A%7B%22type%22%3A%22RecordString%22%7D%2C%22cookies%22%3A%7B%22type%22%3A%22RecordString%22%7D%7D%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.dexerto.com%22%7D&localState=null&metadata=%7B%22ccpa%22%3A%7B%22applies%22%3Afalse%7D%2C%22gdpr%22%3A%7B%22applies%22%3Atrue%7D%7D&nonKeyedLocalState=null HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.dexerto.com/
Origin: https://www.dexerto.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
content-length: 2
date: Tue, 27 Sep 2022 17:36:32 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization,SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=86400
strict-transport-security: max-age=15552000; includeSubDomains
access-control-max-age: 1200
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9nqKhq0074QNxDd346zD4y179i7kXiBhUGlS3K45E1E3-aXZIBU5Mg==
age: 73484
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    e0aa021e21dddbd6d8cecec71e9cf564
Sha1:   9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
Sha256: 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
                                        
                                            GET /gh/prebid/currency-file@1/latest.json?date=20220928 HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.0.1476
x-jsd-version-type: version
etag: W/"66f-H5aj4bZkqpxhdewJFk+qP7OmbCI"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 14:01:16 GMT
age: 39618
x-served-by: cache-fra19153-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 900
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1647), with no line terminators
Size:   900
Md5:    fd9500d4271b6c279faea2d67bd65264
Sha1:   11cfd1f6e41462b7f10112ee71b6ba3ce3c9951c
Sha256: fec4bf23aa3728a1a9f66f1443a0d4c5e469927037be1ac1e9e2f8d18ab44e2e
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 14:01:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "A2EE867C88A23E1DA12B630A0679F0592852CD2D"
Expires: Thu, 29 Sep 2022 01:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1030
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751d02995f94b4eb-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    e6e442d876ccac94f2c6da34b527e7a7
Sha1:   3a349e569c13eca26595e17cda3479600352f658
Sha256: a4e3c9451cbcc3669b55bc0063b543fa4a51f002e3fa2b8cc909f5023f7a6a64
                                        
                                            GET /wrapper/v2/messages?hasCsp=true&env=prod&body=%7B%22accountId%22%3A1523%2C%22campaignEnv%22%3A%22prod%22%2C%22campaigns%22%3A%7B%22ccpa%22%3A%7B%22alwaysDisplayDNS%22%3Afalse%2C%22hasLocalData%22%3Afalse%2C%22targetingParams%22%3A%7B%7D%7D%2C%22custom%22%3A%7B%22targetingParams%22%3A%7B%7D%7D%2C%22gdpr%22%3A%7B%22consentStatus%22%3A%7B%7D%2C%22targetingParams%22%3A%7B%7D%7D%7D%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fsourcepoint.dexerto.com%22%2C%22hasCSP%22%3Atrue%2C%22includeData%22%3A%7B%22localState%22%3A%7B%22type%22%3A%22string%22%7D%2C%22actions%22%3A%7B%22type%22%3A%22RecordString%22%7D%2C%22cookies%22%3A%7B%22type%22%3A%22RecordString%22%7D%7D%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.dexerto.com%22%7D&localState=null&metadata=%7B%22ccpa%22%3A%7B%22applies%22%3Afalse%7D%2C%22gdpr%22%3A%7B%22applies%22%3Atrue%7D%7D&nonKeyedLocalState=null HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 13:59:44 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cYUnlN_OL6m3LHq1VUL7yxR-YoUJOZ2HIQVkOq1TLXW5fa2fpBlCpw==
age: 92
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65451), with no line terminators
Size:   37518
Md5:    df1783f5f741fd1e1074d227f3670f9f
Sha1:   f4caf5d105c11c4361a77ab22455d45ec1aff6dd
Sha256: 875c771d22129497910198ed55292120c19d3a92b7573b43dccdb8465e7f6d51
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 14:01:17 GMT
Last-Modified: Wed, 28 Sep 2022 12:43:28 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /api/v2/client/sites/2987411/visit-data?sv=7 HTTP/1.1 
Host: in.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 149
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.30.245.126
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 28 Sep 2022 14:01:16 GMT
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   92
Md5:    e03464b4f14a1d296cb59883ae134e96
Sha1:   67e8cfe5f193093e715f15ed21b071dc13c8ee3d
Sha256: 51f23e4ba6b1a83ad7e297301a89147870b4c73952c3ae44d9ca7babb77d9955
                                        
                                            OPTIONS /wrapper/v2/pv-data?hasCsp=true&env=prod HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dexerto.com/
Origin: https://www.dexerto.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
content-length: 4
date: Wed, 28 Sep 2022 14:01:17 GMT
x-powered-by: Express
access-control-allow-origin: https://www.dexerto.com
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization,SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: no-cache, no-store
strict-transport-security: max-age=15552000; includeSubDomains
allow: POST
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lVjymhLrjqo6KgMDktgI_89gE2a_5uIVq9FISREdTsnOMxm1UgTGSw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    a02439ec229d8be0e74b0c1602392310
Sha1:   61ff81c30aa3c76e78afea62b2e3bd1dfa49e854
Sha256: 9aee6b1bcdf617d8e39bb1f2b624c68ea33deb9d48e0364aeaded836d3d00293
                                        
                                            POST /wrapper/v2/pv-data?hasCsp=true&env=prod HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2415
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 195
date: Wed, 28 Sep 2022 14:01:17 GMT
x-powered-by: Express
access-control-allow-origin: https://www.dexerto.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: no-cache, no-store
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DvVYCDxjIsVHE06buLrwYpWefGgSXUWviUQVsItVYoxUNldY39GHIA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   195
Md5:    53a90728bbf3f66258cb7919752dee0a
Sha1:   a214f26ccc9be1192417c2699aa640719ed94f1b
Sha256: 36728f2b45f50a725e6ecfcb23f0f6cf17bc62c833487caefe39e26f29cc4b78
                                        
                                            POST /g/collect?v=2&tid=G-8LN75XD07B&gtm=2oe9q0&_p=2052254235&_gaz=1&cid=1143350242.1664373674&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664373674&sct=1&seg=0&dl=https%3A%2F%2Fwww.dexerto.com%2Ffifa%2Fhow-to-get-fifa-23-rewards-on-web-app-free-packs-fut-coins-more-1937619%2F&dt=How%20to%20get%20free%20FIFA%2023%20Web%20App%20rewards%3A%20Free%20packs%2C%20FUT%20coins%20%26%20more%20-%20Dexerto&en=Next.js-hydration&_fv=1&_nsi=1&_ss=1&ep.nextjs_vitals_measurement_name=Next.js-hydration&ep.nextjs_vitals_measurement_id=1664373670197-5224098480002&epn.nextjs_vitals_measurement_value=329&epn.value=329 HTTP/1.1 
Host: region1.analytics.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.dexerto.com
date: Wed, 28 Sep 2022 14:01:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4792
Md5:    5e73ec141cbe7369ec640110899b416f
Sha1:   8e83efc807cefb6209a9b768b7a05bdca479a6f9
Sha256: 202846c143573eed0b287d72846265ffeacb8ea5b164e9eb0ff6e845e4aae1d4
                                        
                                            POST /g/collect?v=2&tid=G-8LN75XD07B&cid=1143350242.1664373674&gtm=2oe9q0&aip=1 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         64.233.165.157
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.dexerto.com
date: Wed, 28 Sep 2022 14:01:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /Notice.00036.js HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sourcepoint.dexerto.com/index.html?message_id=666670&consentUUID=null&requestUUID=6cc44791-1fc5-4dbc-84c5-166622b989d9&preload_message=true
Cookie: _ga_8LN75XD07B=GS1.1.1664373674.1.0.1664373674.60.0.0; _ga=GA1.1.1143350242.1664373674; _hjSessionUser_2987411=eyJpZCI6IjllOTBkMWNjLTkwYWUtNTZlMS1hZTg3LTRhMTBkNTU3YTU5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQxOTIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2987411=eyJpZCI6IjAzNWRhMzg0LWIyMjctNGYyNS1hMjUwLTYwMjJlZGJiOTI5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQyMTQsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _sp_enable_dfp_personalized_ads=false; dnsDisplayed=undefined; ccpaApplies=false; signedLspa=undefined; _sp_sampled_user=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 27 Sep 2022 18:33:57 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Sep 2022 13:13:08 GMT
etag: W/"39b2eed66c2616eca85ae1bf4cae0e06"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 64Jr8PtVuahK1SB_l9570WRwSN4a1iZCmNEe__wM3xGu9bPgyUzQ3w==
age: 2890
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   55946
Md5:    ef072449339816b4c8900ef6e258902d
Sha1:   bdc165caef19ce7111e96c71811206a52fb4d73a
Sha256: 5735b026d6b9afb120ff92c595bb81b138caa20c6168f2376b60b164a0c15938
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sourcepoint.dexerto.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 331192
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /live/liveView.php?hash=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 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:16 GMT
content-length: 3423
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: https://www.dexerto.com
access-control-allow-credentials: true
cache-control: no-store
pragma: no-cache
age: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (9395), with no line terminators
Size:   3423
Md5:    317a48963abb006de3c23bba6deac274
Sha1:   e5c9d32c795ae3c22c58a55e3cfc2693f36c9038
Sha256: e37cb1d3221ee9331ee83e8fafe52420a4f355e34eb72360b1429983b4ace767
                                        
                                            GET /AdServer/js/user_sync.html?kdntuid=1&p=156595&gdpr=1&gdpr_consent= HTTP/1.1 
Host: ads.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.201
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
cache-control: max-age=108779
expires: Thu, 29 Sep 2022 20:14:17 GMT
date: Wed, 28 Sep 2022 14:01:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Size:   5549
Md5:    7725e8e949141c8ded449d86975d4c04
Sha1:   8cd8c314a2002cc26f821d331ab9512f52a551a2
Sha256: a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 14:01:20 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 22:16:12 GMT
Expires: Wed, 28 Sep 2022 22:16:12 GMT
ETag: "d4834f564ce695aa123d6586a3f4009922d7a15f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    047e96796ab8871d0b0708c3d6aaa501
Sha1:   d4834f564ce695aa123d6586a3f4009922d7a15f
Sha256: e7445ace11020eeb734982ce1199c28e920e9ec31eef5e942de8bfae7b2ec35f
                                        
                                            GET /content/ClientDetections/DetectGDPR.v1.1.js HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
last-modified: Thu, 11 Feb 2021 09:45:48 GMT
etag: W/"6024fccc-1ef8"
expires: Thu, 28 Sep 2023 14:01:12 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /live/liveCS.php?source=external&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D793790479%263rddpi%3D484859127%263rdpcid%3Dddad5a05d32c1936bebfd4cbf133c8&advId=134&advUuid=ddad5a05d32c1936bebfd4cbf133c8 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /macro/gen/adsm.macro.rmb.js HTTP/1.1 
Host: macro.adnami.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.4.186
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 14:01:12 GMT
content-md5: eu6mzhsReTO6zDwDdfY+UQ==
last-modified: Mon, 05 Sep 2022 11:00:43 GMT
x-ms-request-id: c344b4e0-201e-0064-1d16-c1d085000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 6308
expires: Wed, 28 Sep 2022 18:01:12 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 751d027fbfbdb4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /unified/4.0.3/gdpr-tcf.34769ef743d92d0b8ba7.bundle.js HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 18:07:00 GMT
last-modified: Tue, 27 Sep 2022 15:50:47 GMT
etag: W/"e6c1ec962b15954d555da933c4657557"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fRVniRyNqPRSi6M8YHK5wOpn_BqDThqc5jypIVwlo4KUuk9P7RQizA==
age: 71652
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=&advId=99&advUuid=0 HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:14 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /live/liveVideo.php?vpaidManager=sekindo&s=58057&ri=6C69766553746174737C736B317B54307D7B64323032322D30392D32385F31377D7B7331373233353731307D7B433231377D7B53643364334C6D526C6547567964473875593239747D7B6266697265666F787D7B716465736B746F707D7B6F6C696E75787D7B583330307D7B593235307D7B66317D7B7251554A554943386763484A6C596D6C6B546D5633566D5679494338674D6941764947526C5A6D46316248513D7D7B4C31343133357DFEFE&userIpAddr=91.90.42.154&userUA=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&debugInformation=ABT+%2F+prebidNewVer+%2F+2+%2F+default&isWePassGdpr=0&schain=1.0%2C1%21dexerto.com%2C1&noViewableMidrollPolicy=vary&isDoublePreroll=1&autoSkipVideoSec=30&c2pWaitTime=10&sdkv=&isSinglePageFloatSupport=1&csuuid=633453a9168ca&debugInfo=17235710_ABT+%2F+prebidNewVer+%2F+2+%2F+default&debugPlayerSession=&pubUrlDEMO=&isAsyncDEMO=0&customPlaylistIdDEMO=&sta=17235710&showLogo=0&clkUrl=&plMult=-1&schedule=eyJwcmVfcm9sbCI6MSwibWlkX3JvbGwiOltdLCJnYXAiOiJhdXRvIn0%3D&content=plembed2c41nvwhpksj&secondaryContent=&x=300&y=250&pubUrl=https%3A%2F%2Fwww.dexerto.com%2Ffifa%2Fhow-to-get-fifa-23-rewards-on-web-app-free-packs-fut-coins-more-1937619%2F&contentNum=1&flow_closeBtn=0&flowCloseTimeout=0&flow_closeButtonPosition=right&flow_direction=br&flow_horizontalOffset=5&flow_bottomOffset=5&impGap=1&flow_width=350&flow_height=197&videoType=flow&gdpr=1&gdprConsent=&contentFeedId=&geoLati=59.955&geoLong=10.859&vpTemplate=14135&flowMode=below&isRealPreroll=0&playerApiId=&isApp=0&ccpa=0&ccpaConsent=&subId=www.dexerto.com HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /unified/4.0.3/ccpa.399b85f189d86f9d6009.bundle.js HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 18:07:00 GMT
last-modified: Tue, 27 Sep 2022 15:50:47 GMT
etag: W/"07293ca95c5ed7928df468e5fc861391"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vhKpMBU9Kk6LEbLhgiCF-YJO7GCaSPAJF-x5sudHa3k-9hBM0nlWvw==
age: 71653
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1 
Host: c.amazon-adsystem.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dexerto.com
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.46.73
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 09:37:07 GMT
x-amz-version-id: I95TjGhhrR3O7F99m0mjPLrSrnJRj9o4
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Sep 2022 01:57:41 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zroIhx6ARZnWFTAr3dmbQZcAFIqpyp_Bn7WDjfYgKyLSirJh8eS65A==
age: 43414
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /index.html?message_id=666670&consentUUID=null&requestUUID=6cc44791-1fc5-4dbc-84c5-166622b989d9&preload_message=true HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Cookie: _ga_8LN75XD07B=GS1.1.1664373674.1.0.1664373674.60.0.0; _ga=GA1.1.1143350242.1664373674; _hjSessionUser_2987411=eyJpZCI6IjllOTBkMWNjLTkwYWUtNTZlMS1hZTg3LTRhMTBkNTU3YTU5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQxOTIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2987411=eyJpZCI6IjAzNWRhMzg0LWIyMjctNGYyNS1hMjUwLTYwMjJlZGJiOTI5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQyMTQsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _sp_enable_dfp_personalized_ads=false; dnsDisplayed=undefined; ccpaApplies=false; signedLspa=undefined; _sp_sampled_user=false
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: text/html
                                        
last-modified: Tue, 27 Sep 2022 18:33:57 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Sep 2022 13:46:34 GMT
etag: W/"d371406dd6c36208ed1ba630b0d87e49"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dRC_YpLNcEcWJ5jKKls23nEm5bWRe0e4pYzmUSI3UlL36T_BxLurXg==
age: 895
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /Notice.9921d.css HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sourcepoint.dexerto.com/index.html?message_id=666670&consentUUID=null&requestUUID=6cc44791-1fc5-4dbc-84c5-166622b989d9&preload_message=true
Cookie: _ga_8LN75XD07B=GS1.1.1664373674.1.0.1664373674.60.0.0; _ga=GA1.1.1143350242.1664373674; _hjSessionUser_2987411=eyJpZCI6IjllOTBkMWNjLTkwYWUtNTZlMS1hZTg3LTRhMTBkNTU3YTU5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQxOTIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2987411=eyJpZCI6IjAzNWRhMzg0LWIyMjctNGYyNS1hMjUwLTYwMjJlZGJiOTI5MCIsImNyZWF0ZWQiOjE2NjQzNzM2NzQyMTQsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _sp_enable_dfp_personalized_ads=false; dnsDisplayed=undefined; ccpaApplies=false; signedLspa=undefined; _sp_sampled_user=false
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 27 Sep 2022 18:13:47 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Sep 2022 13:46:34 GMT
etag: W/"eea11fd15f6def7c408fe2be3e2b9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N_PvzKtYd9jPZRELeObo9H_9IfcdzozX355gKNwmSNdteV_SDI4Guw==
age: 894
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /live/liveView.php?hash=ozcmPTEznXRiPTEzqzyxX2V2ZW50PTQmJaNypaZypyRcoWU9MTY2NDM3MmY3MlZ2nWRspGkurWVlVzVlPTMhMS4jJaM9MTEkMwY1JaN0YT0jJat9MmAjJax9MwUjJaZcZF9jYXNmRG9gYWyhPXq3ql5xZXuypaRiLzNioSZmqWJJZD13q3phZGV4ZXJ0ol5wo20zZGVvqWqJozZipz1uqGyiow1BQyQyMwAyMxYyMwBjpzVvnWROZXqWZXIyMwAyMxYyMwAlJTIjJTJGJTIjZGVzYXVfqCZcp0FjpD0jJaNxn3Y9JaVmZXJJpEFxZHI9OTEhOTAhNDIhMTU0JaVmZXJVQT1No3ccoGkuJTJGNS4jJTIjJTI4WDEkJTNCJTIjTGyhqXtyMwB4ODZsNwQyM0IyMwBlqvUmQTx2LwAyMwxyMwBHZWNeolUlRwIjMTAjMTAkJTIjRzylZWZirCUlRwx2LwAzY3N1qWyxPTYmMmQ1M2E5MTY4Y2EzY29hqGVhqEZcoGVJZD0jJz1yZGyuUGkurUkcp3RJZD0jJz1yZGyuTGymqEyxPTAzZ2Rjpw0kJzqxpHJDo25mZW50PUNQZ0E1RUFQZ0E1RUFBR0FCQ0VOQ2yDZ0FBQUFBSF9BQUJjq0FBQVF1UUkNp1M2oXE3RwA5SGJySUyiVVFJq3J5VayBRUcISEFPSycGWVcNN29jMyZ3RTNiSTFBS3NWUVJaUWNarEJZQ3qDQUF5Q0FKQ29cSxccrFFLS1FcSFFBQW9aVxFBQUIjZxJKTEycUU1BZ0FOQWZIrEFcRUNFnXuarU1DTV8mZ0NJp1NcUW5mSEFWp09snyQloFBmp0FLQxRsrGNKYUcVQWqXQxFKnXqNnDRFqWEmRmBVYyyDQXqBQ0Elo1cBVUFDR0FFq0FSq0F5q0NPQUZYQVNwQW1JQx5aQ213Rz9aTFyBWG1BrU1CoxyEUEFHZxFOZEFwo0E5NFFBREFCSUElo0I5Z2yBNxFBNEFLQUFbZ0JeQURMQUq5QVB3QWqBQxqBQ25aRyuBTyyBZFVBLVFDSFFFnUFKp0FUp0FjRUJUWUM1QUqSZ01hQVc5QXb0QaJiRGkBSFqBUGVDZ1yaQUFaQUgBQxZBQ2NBS0FBVxFBp0FCMxFEMEFJUUFSq0FiQUJTQUN1QUyiQVNiQXJRQzNBRENBR0yBTTRBYUyBMVFCq0FEnxFIV0FQSUFbRUJKZ0VhQUcjQVRiQx93Q2yaRyFaSmuBpwRCZGqDX0FHY0FOp0FwQUE0NEJ5o0RgZ09wQWReQTuRQwZaRDJaSDqBUDZBnEyCQmBDT2qJN0FTQ0Fep0JLSUNXZ0V2QUcmQVVJQW84QyNRQ2k3Rx1aS2JBVzVBpwRCWWqDrVFGo2qMWzqYV0JxZ0M3Z0Y2QUjgQVyRQXueQzc3RFB3R21BTx9aYTBCpzNEWFFOZUFvS0Elp0J4SURdZ0uQQU9kQWRZQTqwQwq3RC1BSUJRUUZCQVyDQxyFRGqJTGqRYUFaNxJDY01BQxFvVUqaUUFBT0FDNEFJWUFnQUF5q0JmZ0Q4QUyBQVFVQWcBQyR3Q3J3Rz9BV2gBMWqCMVFENUFJZEFTSUFgq0JPq0NeUUZOZ0keQVcHQXywQz5JRFBBR2ZBTzRBY29BNaqCN3qiQUNBMz9WQVyBQW9BRU1BSzqBWEFCSEFETEFJNEFWZUF0QUMjZ0cCQVRFQW13QyRZQmJBRayBTHcBWxqBrzgCozqEUGqHqWqOrUFwo0E5NGNBRUFCSUFnn0J0UUQ1UwBGMEFCY0FGQUFWQUF5QUJ5QUQ0QVFBQXVaQzqBR1VBTxFBMUFCNUFFTUFSUUFgUUJQQUZBQUgiQVuBQXuBQz1BRGVBSE1BUFFBZzqCRFFDSUFJn0FTq0FgZ0JTq0N4QUkLQVp0QzNRRENBTU1BWxFBMFFCp2qEqxFIqEFQp0FsUUJsZ0VEQUyjQVJwQxqBQ09BRXBBS0NBVTuBpTRCWW9DMEFMU0FYTUF1o0JcZ0RuQUp0QU9JQWRRQTyBQ0uRRVFaSxJBU0yBoFFCTzqDZGqGRHqLYUFjp0JWNEN4UUZmQUkaQVuJQXUjQzQ0Qmu3R0RBTU5BWWgBrDZCn1yHU0FNoxFnY0F6n0Jhq0RSSUqeQWFTQTFVQaJBRFuRRmNaTwFaY21CrWqEoHqIV0FQSEFyMEE5NENEUxVCOEFBRUFFUUFLZ0FXQUJDQUNuQUZwQVJZQWg3QyqaQ3yBR2NBT0FBnxyCT0FDnGqGRzqLOEFlNEJxZ0NsQUqwQU9uQWReQTuRQwqZRDyaUDVBnzgDT2qFo2qKYUFTOEFgq0JRZ0NeZ0ZOZ0fgQVqJQXNeQzJNQmZ3THNBWGNBqyFCnVFESGqHZGqNX2quMEJlWURYUUq3QU5lQWNwQTU0QwA4RHFRT3FBZFyBOTZDQW9JREFRSxFaY0JCMENFWUVKq0yXn2qBSUJgU1VEY0FCQUFDq0FLQUFnQUE0QUIgQUqBQVyaQTuBQ0yBRXqBS0FBVyFBqUFCnUFETUFJYUFSQUJFZ0NPQUZLQUkJQVp0QXqaQaNaRHZBSDRBUaqBpDRCVwRDMEFMU0FYVUF4UUJ1QURkQUu5QVE2QWgRQx5aQ3uRRaNBTHRBWG1BrU1CnmRET1FHZUFNLUFuUUEkZ0Jlo0Rvq0uBQU9mQWUjQTx0Q0I1UUFJQUNRQVA0Qxc3RVFfSUcBQUM0QUgBQXFBQzgBRGgBSHqBZ2qCZ0FHVUFOQUEkQUI1QUVNQVJRQW1RQyBBRxFBS1FBVyFBrEFCoUFEoUFINEFRMEFcQUNKQUZMQUkFQXNaQzJaRENBR2yBTzgBZDuBLXqEOUFJq0FSq0FfSUJRUUNbZ0ZYQUkgQVyiQTJaQaVBRDBBSWRBU0yBnmRCTzqDZGqGRGqLYxFXS0F0QUJvQUM0QUZ5QUk0QVugQXplQzgZR1NBTW5BWzNBrzgCozqEUG9Hn0FuVEEkZ0RXUUq1Z052QWJkQTRLQayZSEgBT1uBZFyBOGNCN1FEM2qJUWqBLyyBQUFBQUFBQUFBQSZcp1qyUGFmp0qxpHI9MCZwY3BuPTAzY2NjYUNioaNyoaQ9JzNvqXN0ZXI9MTY2NDM3MmY3NDt4NCZ1nWQ9U2VenW5xo1NQoGF5ZXI2MmM0NTNuOTUjZwVvJaB1YyVloD1bqHRjplUmQSUlRvUlRaq3ql5xZXuypaRiLzNioSUlRzZcZzEyMxZbo3pgqG8gZ2V0LWZcZzEgMwMgpzV3YXJxpl1iov13ZWIgYXBjLWZlZWUgpGFwn3MgZaV0LWNinW5mLW1ipzUgMTxmNmYkOSUlRvZzoG9uqFN0YXR1pm1zYWkmZSZynWRmpD1jpzVvnWQ= HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:16 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /unified/wrapperMessagingWithoutDetection.js HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 27 Sep 2022 17:34:48 GMT
server: AmazonS3
content-encoding: br
date: Wed, 28 Sep 2022 13:56:33 GMT
cache-control: max-age=3600
etag: W/"b1934b59802f44a2e09cb38942e61c6d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m0nsXPEYXOc0P5fLajUGUQ1wW7z9NwvqGQr2xz6KxfBHLwsLNXDzig==
age: 280
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /content/video/hls/hls.0.12.4_3.min.js HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:12 GMT
last-modified: Wed, 23 Mar 2022 12:48:35 GMT
etag: W/"623b1723-409bc"
expires: Thu, 28 Sep 2023 14:01:12 GMT
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /live/liveCS.php?source=external&csuuid=633453a9168ca&pixel=https%3A%2F%2Fsync.intentiq.com%2Fprofiles_engine%2FProfilesEngineServlet%3Fat%3D20%26mi%3D10%26dpi%3D1723987475%26pcid%3D0000EEA&advId=127&advUuid=0000EEA HTTP/1.1 
Host: live.primis.tech
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dexerto.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         63.250.56.119
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 14:01:13 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
age: 0
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /unified/4.0.3/custom.64ac60063fea80d28d37.bundle.js HTTP/1.1 
Host: sourcepoint.dexerto.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dexerto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.17
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 18:07:00 GMT
last-modified: Tue, 27 Sep 2022 15:50:47 GMT
etag: W/"7ac6cc30080a0d6a6485b20bf84cd085"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BxYcIsQ-PPtAx8Z4SmhI2l0SIak11MEfl4Y3uia4_zs75z_HVSzDZQ==
age: 71653
X-Firefox-Spdy: h2


--- Additional Info ---